nav search
Data Centre Software Security DevOps Business Personal Tech Science Emergent Tech Bootnotes
BOFH
Lectures

* Posts by Drew 11

178 posts • joined 28 Sep 2009

Page:

Apple macOS Mojave: There's goth mode but developers will have to wait for the juicy stuff

Drew 11

Speaking of Snow Leopard, if you had a "enable Snow Leopard UI" option in the next OS I might be tempted to go out and buy a new Mac. All my Mac's now run Debian/XFCE. My 24" computer IS NOT A FUCKING iPHONE!!!

43
2

Trump pulls trigger in US-China tit-for-tat tariff tiff: 10% slapped on $200bn of imported kit

Drew 11

Kerplunk

So no one in the west wing has figured out how to explain US debt levels to a dyspraxic 5 year old yet?

http://ticdata.treasury.gov/Publish/mfh.txt

11
0

Google keeps tracking you even when you specifically tell it not to: Maps, Search won't take no for an answer

Drew 11

Re: "Privacy? Get over it / This is the way the world works"

Don't forget to stop visiting any dogsbreakfastxxxxx wordpress sites because by default they'll be using Google Fonts and Google "Tag Manager"

13
0

Did you know: Lawyers can certify web domain ownership? Well, not no more they ain't

Drew 11

Re: Drew 11

What I'm not happy about is the browser authors refusing to bake DANE into browsers which is what is holding up DNSSEC.

You're in a position to do some forensic journalism and find out exactly why that is. Are they being handed cash by their CA mates to kill it off?

What is SSAC's view of the matter?

2
1
Drew 11

Yet another Reg article on certs that ignores the obvious answer: DNSSEC.

C'mon Kieren, how about an expose on why the hell the browser authors refuse to bake DNSSEC/DANE ?

5
0

Google Chrome: HTTPS or bust. Insecure HTTP D-Day is tomorrow, folks

Drew 11

Re: Not about encryption

Not if the domain is running DNSSEC.

0
0
Drew 11

Re: Money talks...

Errr, if someone is able to hijack your DNS record, then no amount of security is going to help you.

0
0
Drew 11

Re: Money talks...

Errrr, you CAN have a DNS record that shares your public key. It's called DNSSEC and it's running right now.

I have it all set up, but browser's still complain because DANE isn't baked in because the big browser owners don't want to lose control.

ICANN and their SSAC should be complaining loudly but they're too busy feathering their own nests with the very browser writers that are the problem. Allegedly.

0
0
Drew 11

Re: Now how about a way to get a hassle free cert

The tech is already there.

It's called DNSSEC and DANE. No need to go to LetsEncrypt (who are owned by...?)

The only thing holding up DANE are the browser manufacturers who refuse to bake it into their code.

High time TheReg went to them and asked them "why the hell not?"

0
1

In non-startling news, EFF says STARTTLS email crypto is mostly done wrong

Drew 11

Re: Actually...

DANE is dead in the water until the bowser manufacturers bake it into their browsers and Apple allow their OS to accept the certs from mail servers.

Perhaps ICANN's SSAC could lean on them to adopt, but that's too obvious.

0
0

Whois? Whowas. So what's next for ICANN and its vast database of domain-name owners?

Drew 11

Any reform of ICANN should start with domain owners (who fund most of it via the ICANN domain tax) actually getting voting power.

6
1

SpamCannibal blacklist service reanimated by squatters, claims every IP address is spammy

Drew 11

Re: Nothing to see here, move on

"Practically any domain name that expires is immediately taken over by domain hoarders looking to monetize it in some way"

Correction. Practically every domain that expires is hijacked by the Registrar utilised by the domain owner, who then resets the DNS to their own and counts the traffic in order to monetise the domain and then auction it off prior to the time limit when they're supposed to release (delete) the domain.

Registrars like doing this because they usually get to keep the domain under their control (which is anti-competitive) and make a LOT more money at auction than they would if it was deleted and re-registered. ICANN, of course, has turned a blind eye to this matter.

5
0

UK regulator bans slasher-flick parody ad for OnePlus 5 mobe

Drew 11

Irony alert: Check out google images results for the actress Caitlin-Rose Lacey taking the piss out of duck face selfie takers in this advert.

0
0

Surprise UK raid of Cambridge Analytica delayed: Nobody expects the British information commissioner!

Drew 11

It's only a raid if it is sudden and unannounced.

Too late for that now.

3
0

Tiangong-1 re-entry window shrinks: Duck from March 30 to April 3

Drew 11

"When that happens, its rotation will affect the likely impact zone, how the space station breaks up once it enters the atmosphere, and weather conditions at the time."

The station's rotation will affect the weather?

21
0

BOOM! Cambridge Analytica explodes following extraordinary TV expose

Drew 11

I say pop these fellows in a Mexican jail for a few years. I think they'll lose their gleefulness regarding the corruptability of public officials.

9
1

Tim Berners-Lee says regulation of the web may be needed

Drew 11

Re: What's the problem?

>Educate people better.

From what I've seen Google's gathering up all the private student data that schools can throw at them.

3
1
Drew 11

Re: It's already fucked

Blame the webmasters. Too lazy to run webstats locally, helped spread the googleanalytics virus. Likewise "tagmanager", fonts and a multitude of JS nonsense. Then adsense/adwords. And they all signed up to webmaster tools and did exactly what google told them to do HTML-wise.

Then along came chrome and it's game, set, match.

9
1

Dutch name authority: DNSSEC validation errors can be eliminated

Drew 11

Re: Solution looking for a problem

"DANE does, but it's not being used for anything."

Because Google and Mozilla refuse to bake it into their browsers.

That's the only thing holding it back.

0
0

Use of HTTPS among top sites is growing, but weirdly so is deprecated HTTP public key pinning

Drew 11

Re: I only just noticed...

One word - DANE.

Oh, wait, Google and Mozilla refuse to bake the standard into their browsers. Their old excuse was "pinning is the way to go".

What's their new excuse? Could make for a good REG article.

0
0

Meltdown, Spectre bug patch slowdown gets real – and what you can do about it

Drew 11

Re: PCID implementation in Linux?

Debian Stable is on 4.9.0, I believe, so no PCID support for you!

Next!

1
0

Hewlett-Packard history lost to Santa Rosa fires

Drew 11

Idiots.

4
0

Hurricane Irma imperils first ever SpaceX shuttle launch: US military's secret squirrel X-37B

Drew 11

Re: Leave...

I survived Wilma (Cat 5) in Cancun. It went right over us. Mexican houses are concrete block (including roof) so hold out a lot better in hurricanes. Not so good in earthquakes.

Only 2 deaths IIRC, both ventured outside during the high winds, one got nailed by a flying sheet of iron, the other by a downed power conductor.

12
0
Drew 11

Looking at the forecast cone, it could bypass Florida and whack Cuba and Texas.

Too far out to be certain.

2
0

It's official: Users navigate flat UI designs 22 per cent slower

Drew 11

Bring back OSX 10.6.8 I say.

Or at least have a version of Linux that has a "make this perform exactly like OSX 10.6.8" install option without having to kark around with a ton of config files spread all the fuck over the hdd.

2
0

Japanese sat tech sinks Sea Shepherd anti-whaling activists' hopes

Drew 11

Re: a matter of pride?

Japan is full of Donald Trump's?

2
6

GTFO of there! Security researchers turn against HTTP public key pinning

Drew 11

Perhaps now Google and Mozilla can drop the "pinning is better" line and finally bake DANE into their browser software?

Please.

7
0

DMARC anti-phishing standard adoption is lagging even in big firms

Drew 11

Perhaps if the email clients started colouring all non-DMARC emails red, the uptake would increase?

Although since the browser authors are dragging the chain on DANE, I'd suspect this idea wouldn't fly either.

3
0

Intel CEO Krzanich quits Trump's Manufacturing Council over response to Charlottesville rallies

Drew 11

Re: Response time

Wel, if you equate being a KKK member to being a "real piece of work", then yes, Fred Trump was a real piece of work.

He probably disowned Donald for being Orange.

13
1

systemd'oh! DNS lib underscore bug bites everyone's favorite init tool, blanks Netflix

Drew 11

Re: Alternate

8.8.8.8 ?

Stop giving away all your private information to Google for free!

48
14

Trump backs off idea for joint US/Russian 'impenetrable Cyber Security unit'

Drew 11

"so that election hacking, & many other negative things, will be guarded"

Guarded as in protected?

Pardon me, Mr. President, your slip is showing.

15
1

America 'will ban carry-on laptops on flights from UK, Europe to US'

Drew 11

Just. Stop. Flying. To. The. USA.

76
3

O (n^2) Canada! Code bugs knacker buses, TV, broadband, phone lines

Drew 11

I was hoping Canadians didn't use the word "gotten".

Oh well.

2
0

That apple.com link you clicked on? Yeah, it's actually Russian

Drew 11

In fact it's become some a huge mess that Verisign, having successfully applied for 12 transliterations of .com and .net, have only launched two of them - .コム for Japan and .닷컴/.닷넷 for Korea - and that was over a year ago. They have abandoned launching the rest. That would make for an interesting article in itself- why would a powerhouse like Verisign not be able to handle launching the lot of them at the same time, given they're for completely different markets?

1
0
Drew 11

Just another ICANN cockup

With the launch of IDN equivalent TLD's for CNO along with the newGTLD's, ICANN had an ideal opportunity to fix this problem for good. Instead they made it worse.

What should have happened: Complete banning of mixing scripts between levels. All IDN's in CNO should have been moved over to their equivalent IDN newGTLD (eg cyrillic .com's should have been grandfathered over to .ком, etc,) and the system returned to only ASCII registrations allowed in the plain old ASCII CNO TLD's.

Instead, ICANN sat on it's hands and even let mixed scripts proliferate into the ASCII new GTLD's! So now you can register chinese scripts in .xyz. How useful.

SSAC were asleep at the wheel.

But don't get me started.

12
0

Shadow Brokers crack open NSA hacking tool cache for world+dog

Drew 11

Ever notice that Donald has very similar interior decorating tastes as various 3rd world dictators?

A bit of a worry.

8
3

Apple’s premium TV plans – the hobby doomed to stay that way

Drew 11

Or just wait a few years and watch it on Freeview.

I'm a few seasons behind on GoT etc etc. I care not.

I stopped following F1 when it disappeared from TV3 in NZ and went to Sky where you have to pay for an entire sports channel which is 60 bloody percent rugby, just to watch ~16 F1 races each year. No thanks.

I'm not paying for bundles just to watch a few shows. Sod that.

7
0

An echo chamber full of fake news? Blame Google and Facebook, says Murdoch chief

Drew 11

Blame must be shared with the browser writers that sold out to the google search home page, and all the silly webmasters enslaved to google analytics (and thus giving away all their visitors information to google) - along with google tag manage, google fonts etc etc.

Oh and all the facebook/google etc "like this page" icons that are served from the data slurpers servers instead of locally.

2
6

Ubuntu UNITY is GNOME-MORE: 'One Linux' dream of phone, slab, desktop UI axed

Drew 11

Just give me a Linux Desktop with the look and feel of OSX 10.6.8 (peak OSX) and I'll be a happy chappy.

8
7

US border cops must get warrants to search citizens' gadgets – draft bipartisan law emerges

Drew 11

Only idiots still transit via the USA. Plenty of other options.

29
0

Bloke cuffed after 'You deserve a seizure' GIF tweet gave epileptic a fit

Drew 11

Re: settings-autoplay=off

You forgot to mention Apple Safari in your "dumbing down" comment.

3
0

UK's Association of British Travel Agents cops to data breach

Drew 11
Coat

Computer says yes.

0
0

Headphone batteries flame out mid-flight, ignite new Li-Ion fears

Drew 11

Re: You may have a point...

X-ray detection of Li-Ion batteries?

0
0

Marissa! Mayer! out! as! CEO! of! Yahoo! corpse! post-Verizon! gobble!

Drew 11

Dear Google. I have found you a new CEO. Regards...

2
0

Online shops plundered by bank card-stealing malware after bungling backend Aptos hacked

Drew 11

"So if you shopped online around November last year, and you get a note from one of the 40 affected websites confessing your payment card details were stolen, you know who to blame.

Aptos, its CEO Noel Goggin, and his team."

A software company, whose "Technology Leader" is right down the bottom of the "leader list", below the "Growth Leader" and the "Strategy Leader".

Give you an idea of what his security budget level was. Surprise.

12
0

WordPress photo plugin opens 'a million sites' to SQLi database feasting

Drew 11

Along with lazy plug-in devs who attach unneeded CSS and JS files, leading to wordpress websites that download sometimes 100 or more .css and .js files full of unused code.

Which is why people have to go out and get a faster computer or more RAM just to get a website to function half-pie decently.

But don't get me started. The entire WordPress system is a dog's breakfast.

4
1

'At least I can walk away with my dignity' – Streetmap founder after Google lawsuit loss

Drew 11

"Note the big clickable Google Map and the “spelling correction” suggested by Google, both prominently above the actual Streetmap result"

Bzzzzt. That's not a spelling correction SUGGESTED by Google. Google has APPLIED their spelling correction suggestion and produced results for "aspley guise street map" and the user has to click the link to get the search they asked for.

In this case, that's an important point. It's actually a "Street map" result.

I wonder if they do automatic spelling corrections on fcuk? No I thought not.

0
0

New PayPal T&Cs prevents sellers trash-talking PayPal

Drew 11

What really annoys me is that their system is transaction based. Every transaction costs the same for Paypal to process no matter what the transaction value is.

So how do they get away with charging a percentage rather than a fixed fee per transaction?

Next thing you know, motorway toll systems will be stopping your car and counting the number of people in it so they can charge per-person instead of per-car.

1
0

Grumpy Trump trumped, now he's got the hump: Muslim ban beaten back by appeals court

Drew 11

Re: Ahh, guys, any of you ever hear of the Constitution?

'the US Constitution grants the President as the only decider as to what constitutes "National Security"'

That's deciderer to you, fish face.

3
0

FYI: Ticking time-bomb fault will brick Cisco gear after 18 months

Drew 11

Anyone have one of these and can open it up and tell us the brand/model # of the crystal oscillator?

1
0

Page:

The Register - Independent news and views for the tech community. Part of Situation Publishing