Posts by Hans 1 3797 publicly visible posts • joined 11 Aug 2009
>How could any OS be responsible for security...
>... if someone was numpty enough to write a server which opens a port, lets people connect without authentication, and acts on commands?
And allows the infotainment module to command the car?
Whoever wrote that piece of sh*t should never be allowed near calculators, let alone computers.
Infotainment systems must be PHYSICALLY isolated from controls, be it in cars, trains, or planes - not a single cable - I know, Tesla do not get that one either. And software that is able to command a car should not be network aware ... if it needs to be patched, let a certified garage update the firmware, after 3 way authentication. Let it be 100% traceable, as in, you cannot update the firmware for a specific vehicle without the manufacturer getting involved, and the id of garages that updated the firmware must be stored in the car and at the manufacturers - if the firmware was updated by an unqualified person, or the id's stored in the the car mismatch with the id's stored at the manufacturers, it should be considered 0wned.
iiiii will never allow that, though ...
Ok, so, star wars appears to be a franchise owned by a corp. It is a registered trademark, end of story, too bad, the idiot has lost.
Like the arseholes over at Perfect Privacy who, on the back of openvpn make tons of money, managed to take over openvpn.org and fool people into believing it was openvpn they were downloading. No, you cannot use their software to connect to your coporate openvpn server, only their paid for, bogus privacy, service.
This has to stop, next we will see starwars.biz or star.wars, squatters ... you did not write the saga, so why should you be able to fool netizens into thinking you are the official site ?
This has to stop.
Like a HMRC LLC, that would be able to cash checks issued to the HMRC, aka HM Revenue & Customs.
That anybody knowledgeable over here thinks this guy is right makes me go fscking mad!
>spreadsheets to manage data
Christ, a bunch of numpties. MMVG!
Exactly what type data can be handled in a spreadsheet that cannot be handled in an AS/400 ???
>crashed about 4 or 5 times a day
Great, is there nobody to have a look why it crashes ?
>Each year, it also cost the company concerned as much as the volume licences & CALs for all of the rest of their landscape put together for a 3 year deal.
I think AS/400 in this case is overkill. Scrap the lot, call Suse and get a 10 year deal, for a third of the price of that 3 year deal.
>Are there any recognised qualifications that I could try for to prove that I have been trained to a suitable level in the design of secure computing systems? Something like the Microsoft Certified Professional programmes.
You forgot the Joke icon, my friend. MCP, MCSE, or MCSD, to anybody knowlegeable in Casio or Texas Instruments calculators or more advanced IT systems means window and surface specialist, good with vacuum cleaners and mops, not to be allowed near anything digital.
Great, you found one, please report a bug on https://bugs.documentfoundation.org//
Mention that it is a regression. Ideally, if you could upload the word file, that would "really help" - You can, of course, remove any company identifying information from it, although, honestly, the dev's don't care about that, they wanna squash the bug.
Another excellent article!
If you look at the secureworks threat analysis, these guyz 0wn Windows architectures in no time. Weird, all their toolsets seem to target Windows systems and Microsoft software running on it, except for some other middleware.
I really do not like how Dell provide file names / domains / IP addresses to try and help mitigate your risk, these are all subject to change, without notice! rofl
Scary stuff, guyz, I do hope you have a few honeypots in your datacenter, along with strong filesystem integrity measures. Note that they can hide their DLL's anywhere on the path, under any name of their choice.
Ports, IP Adresses, domain names, user agent strings (rofl), file names etc will change.
>Publish-and-be-damned is for when the company has repeatedly ignored the warnings, refused to acknowledge anything and denied all issues - that is when you go public and let the company fry, not before.
Nobody said he had not written to them, his email was probably eaten by a hungry spam filter or simply ignored. If the bloke went through the trouble of finding a floppy, a compatible drive and computer, sure as hell he had already sent an email ... ;-)
The problem is, I am not so much concerned about my own offspring, because, I am not sure why, it is always the odd mate that turns up and wrecks havoc.
For months the system was more or less stable, the protections were in place, then a mate of one of my sons comes along and manages to turn off protections ... he even managed to reset MY PASSWORD, the kid is 12 FFS, and no, they did not know my password. Guess he came with a DVD with password resetting tools. Since then I have removed all protections, if you have physical access, you can do what you please.
Not concerned about my kids watching porn, yes I have explained the basics to them, told them that some people enjoy watching that and that it is meant to be watched by adults. Also told them that that has nothing to do with what you actually do with the opposite sex. After all, porn is just for perverts and the insane.
I do monitor websites they go to, though, on an irregular basis, and they mostly go watch youtube and play flash games on the intertubes with their browsers.
Move away from each and every proprietary piece of junk you're running, switch to FS.
Get PostgreSQL on GNU/Linux, switch all desktops to Linux ...pay a flatrate for support, I am sure they would end up paying 1/1000 of the price for licensing, compared to what they pay now.
They would have to train everybody for Windows 8/10 anyway, might as well train them to use Linux.
>Here's the thing: those faithful love Microsoft. There's a reason that most (90 per cent!) people happily prefer Windows to Mac OS X, and buy Windows machines. They're comfortable with the experience.
No they are not, most cling to Windows XP/Vista/7 with claws out, THEY DON'T WANT 8, I am talking drones, here, like, for example, the receptionist. They won't want 10, once word comes out MS has NOT re-instated the start menu and COMPLETELY REMOVED Metro-style apps.
They mostly cannot afford a Mac and don't know where to get a decent OS without bothering an IT friend.
>Those same people run Android or iOS on their phones – because they like the experience and have yet to be convinced that Microsoft offers something better. But they're converts waiting to happen, if only Microsoft would give them something to love.
Read my response above, you sir, are full of wishful thinking.
>Oh, the Register isn't full of Microsoft haters, it's full of people who hate everything. Go look at a story about linux, or OSX and see how many comments there are slagging off those OSes.
I think most of us like Linux, especially the Mint distro ;-) Most on here are not window cleaner and surface specialists who managed to fool HR into an IT position.
The weird thing is, that BB10 is more stable than Acer android devices, when it comes to running some android apps. I have two Acer tablets, two BB10 Z30's in my household and the one game we play on all devices is the most stable on the BB10's.
The Acer devices don't like to wake from sleep (as in, the screen goes off), on one, you have to make a swipe up movement (after you have unlocked the device) to to get the touchscreen to register your input in the game, the other needs you to restart the game after you unlock it.
I want an upgraded z30.
A great number of people have been secretly imprisoned, tortured, and killed over the years, usually at small airports or allied military bases. If they survive torture, they usually get trialed by a secret court, happens abroad aboard aircraft, or in small dark, wet rooms the NSA rents out in military bases. It has happened, is happening right now, and will be happening tomorrow - that is the daily task of several forces of the iiiii.
There are countless reports of people being secretly withheld and tortured, some till death, happens mostly by the hands of US personnel in military bases in countries like Poland, Belgium, Germany for example - that is where most reports come from, at least.
Some people are taken into "custody" because they wear a type of watch - you won't believe me, that is fine, read wikileaks, it is all in there.
Joe, one piece of advice, leave that amateur club, now!
>running the lab wasn't really a part of my role
Don't do it, get the manager to find somebody who's role that is.
>A newly-installed anti-virus product wouldn't let anyone do remote access unless their machine ran the same AV software. And Joe's machine was locked down by IT, so he couldn't just install the software himself and get on with things.
This guy is a techy and they lock down his PC, really ? I can remotely understand that you lock down machines the drones use, but techies ???
If he had gotten the manager to move off his backside and find the right guy for the task, with matching AV on the laptop, they could have saved quite some dosh ...
>What really troubles me is that several decades after the first hard drive crashed, we still have people who don't back up their stuff.
Well, what use are encrypted backups? It will certainly encrypt your backups if you do not disconnect the drive prior to installing the ransomware, and who does that ?
Windwows 10 is ransomware, you will see come 2016 ...
>1. Windows Phone is not hardware. It is software. You might want to learn the difference.
Software they are giving away for free, so the only cash they could make is on hardware, which they keep writing off ... it's dead, Jim.
>2. <RandomBS>
cf 1.
> 3. <MoreRandomBS>
cf 1.
4. <YetMoreRandomBS>
cf 1.
>Ever been to where they're made? As I recall, both wind and photovoltaic require plenty of rare earths which are tricky to mine and have toxic byproducts such that countries that don't care about the environment (like China) are pretty much the only places to get them.
BS, they make them in France and Germany, utter none-sense ...
> PS. Here's an interesting comparison of scale. The largest solar-thermal plant in the world (capable of generating even at night) produces enough electricity for 100,000 homes. Thing is, nearby Los Angeles County has over 10 MILLION homes. Meaning it barely meets 1% of the demand of that tiny little part of California. And that's in a sun-rich area in the California desert. Imagine trying to do this up north where the sun is weak enough in the summer and practically useless in the winter.
The biggest enemy of solar panels is heat, in the north, you use solar panels, go and ask the Germans, I am sure they can teach you a lesson or two.
There is a solar-thermal plant in Spain that produces leccy night and day, they use a wateraccu, I guess, much like you guyz in Californication.
The thing is, how much did it cost ? I mean, it is a few pipes, a turbine, quite a a few mirrors, pretty massive, however, no toxic/dangerous materials involved - this is just a guess from the Spanish counter-part. Now imagine the cost of that ... how many can you build with 10 billion ? The price of a nuke plant ... knowing that a nuke plant with three reactors cannot cope with 10 million homes, you would need a second and third, so that's 30 billion. When you are finished with the Primary School maths you will realized that you can STFU.
Sad, I know ...
> New reactor designs are slated to totally eliminate waste storage by milking existing nuclear waste for all it's got.
BS, of course, you fall for that ? Incredible.
> And Fusion will complete the solution.
Insider info suggests they are getting nowhere, the prototype, promised last year, will not be done before 2025. They still have not reached 5 seconds sustained operation, spend months replacing parts inbetween runs, consume humungous amounts of nrg to get to the point of fusion ... looks like a dead end. An excuse to continue to operate fission plants, which arguably have nothing to do with fusion.
>We just have to decide to do it, instead of wasting resources on buddy-financing wind or solar programs that are, apparently, supported by the Mafia.
LOL, godda be kidding, pulling the Mafia string ... of course, renewable is easier to implement since you are not dealing with highly toxic, explosive, and otherwise dangerous material. Since mafias have quite some dosh, they can get into it also ...but mafias also control vineyards, should we all stop drinking it because of that ? Thought not.
>"The company is committed to ensuring that the transition is seamless and transparent to its community and clients, while working to maintain high levels of quality as it does today," DHI said.
Fsck, NO, we do not want it to be a seamless transition, you a$$holes, we do not want your "high levels of quality", they are piss poor, we think.
I just hope some FSF-aficionado will grab those.
@Adrian, did you read the article ?
He read Whitehurst's book and decided to write up an article on the matter, then, he also got some info from a bloke apparently working for a research center named "Forester Research", you know, the shop that is competing with Gartner for the "Purveyor of Most Gullible BS of the year" award.
For el Reg, it would be greatly appreciated if you could do a little more research into this nasty ... we would all be very thankful, after all, this appears to be virus string #8 for Linux, in over 20 years ... In this article, you have literally copy-pasted the first few lines of the virus database entry and made an article out of it.
The problem I see is that you used their incorrect wording.
Another problem is, that you have only linked to their page about this. Has this been confirmed in the wild by anyone else ?
Ok, so, a backdoor means there is a vulnerability in the target system that can be used to alter/take over the target machine.
In this case, it seems to be a virus.
From the linked article on DrWeb.com
>The file is encrypted with Base64.
Thanks for the laugh, they actually mean "encoded" which is totally different from "encrypted".
>However, I thought DOC/XLS had long since been cracked by everyone and their dog to the extent that support for DOC in mobile devices is far better than DOCX.
Considering even official MS Office releases cannot reliably display XLS/DOC files which were made with another version .. now, don't get me started on cross-platform compatibility ... Office for Mac is even worse in this respect.
Hove you ever opened the XML in a DOCX ? They cut sentences off randomly, formatting is all over the place ... worse than frontpage, and no, I did not think that possible, either.
The Register 
Biting the hand that feeds IT
Copyright. All rights reserved © 1998–2024
