Re: Ex-queen
Errr
She could abdicate.
Posts by DJ Smiley
449 publicly visible posts • joined 14 Sep 2011
Queen's speech announces laws to protect personal data
Tesla death smash probe: Neither driver nor autopilot saw the truck
Wednesday 21st June 2017 11:30 GMT
'Giving warnings that can be ignored is pointless...'
Pretty sure the law states you are responsible for your car when driving, no matter what systems exist around it (and Captains of Boats and Planes have the same thing - even with Autopilot.)
Rules, advise and laws all exist, doesn't mean everyone will obey them.
Please do not scare the pigeons – they'll crash the network
Friday 9th June 2017 10:17 GMT
The mystery of the internet that only worked when in the dark.
I used to work on a service desk where we'd support a large chain of pharmacy stores in the UK, we had many such stories such as keyboards that only started working when you'd first flipped them upside down (The trick being that the cable in the back would come loose, and doing this pushed it back into position).
However the weirdest call I experienced was a store who told me, their internet only ever worked if they sat in darkness in the back office. The moment they turned the lights on, the internet would break. I have no idea how they originally discovered this fact, but from much testing it turned out to be true - turning the lights on in the back office caused the 56k modem to completely drop the line.
We swapped out all the equipment, part by part, wondering what on earth was going on, the modem was fine, as was the computer itself, the entire network in fact being faultless other than this very strange behaviour.
Eventually we had to call out BT to come and look at the phone lines, and for a few weeks they kept coming back after making changes to the phone line but no one could explain what was happening. In the end we had a higher up engineer turn up who had some EE expertise. He suggested they replace the bulbs and ballast in the florescent lamps they had in their back office. Instantly the problem was resolved! I'm not sure of the exact details, but basically the lights coming on was creating a charge on the phone line, large enough that it caused disconnections each time the lights were turned on.
Break crypto to monitor jihadis in real time? Don't be ridiculous, say experts
Cloud eye for the sysadmin guy: Get tooled up proper, like
First-day-on-the-job dev: I accidentally nuked production database, was instantly fired
Monday 5th June 2017 11:23 GMT
I've done this... almost!
I've done almost this. I didn't get sacked on the spot, the company learnt from it, we found some bugs in production too!
Basically I wiped out the entire testing enviroment's DB (Which was a copy of the live DB) on my 2nd day in a job. I had my boss sat with me, and we were seeing how 'good' the documentation was (not great!), for doing an upgrade of the environment. He wanted someone with no experience of the process to undertake it, to see how well it'd go. (It didn't go well, clearly!)
One of the lines was slightly unclear, stating to delete some files, I personally misread this - after asking the boss for verbal confirmation and not understanding him either, and deleted the entire db, nuking the environment.
They considered restoring from a backup but for various reasons this was decided against, and instead decided to then test out the 'build out a new env' documentation instead - from this it was discovered that a lot of the binary processes in the live db (which the testing one was built from) were in fact broken anyway and the entire stack required a whole lot of fixing. I ended up leaving about 9 months later when something similar went wrong and I decided I couldn't take the stress of 'screwing up a million customer records' by a simple finger slip up. Prior to leaving I'd be working on scripting away a lot of this processing because I felt it was a danger for the company to be doing all this manually - not sure that ever got finished... Maybe said redditor took over my old job? ;)
El Reg straps on the Huawei Watch 2
Friday 26th May 2017 10:57 GMT
Re: Reasons to be Wear-y
The idea you're listening to music while riding infinitely scares me.
While you may be one of the safety conscious who actually have headphones which allow you to hear traffic and such, or you don't ride on roads making the point mute - but 90% of cyclists who use this kit are on the road, and really shouldn't be :/
Drones over London caused aviation chaos, pilots' reports reveal
Thursday 25th May 2017 13:22 GMT
No matter how you approach it.....
It's difficult to see what can be done.
2m across is a pretty big drone, someone some where will of seen this taking off. However the question really is, what do you do about them - you can't just 'shoot them down' or any such thing as the danger of it landing on someone is real (even if unlikely) and while the loss of said drone would be a deterrent it still wouldn't stop a bad actor from using one to do some real damage.
I honestly don't see the problem with licencing drone users, the same way HAM radio users are licences - with a test if required. While I believe 'some/most' drone manufacturers are saying they have put in (or are going to put in) means to stop the drones going into these such areas, clearly it hasn't happened yet, or isn't working.
Google now mingles everything you've bought with everywhere you've been
Network-sniffing, automation, machine learning: How to get better threat intel
Wednesday 24th May 2017 14:15 GMT
Until we can get the basic's right....
We can't go any further.
Finally some actual realistic fines - lets just hope they get enforced.
Wannacrypt hitting 100k pc's shows that systems just aren't patched. And why? After all currently there's no more than a slap on the wrist generally from the ICO for being breached. Once the fines some how match the impact to the people who's data is being released, then we'll see rapid improvements.
O2 will be carrying out UK IoT connectivity trials later this year
You think your day was bad? OS X malware hackers just swiped a Mac dev's app source
Avast blocks the entire internet – again
Script kiddies pwn 1000s of Windows boxes using leaked NSA hack tools
Doctor Who-inspired proxy transmogrifies politically sensitive web to avoid gov censorship
Radio hackers set off Dallas emergency sirens at midnight as a prank
Miss Misery on hacking Mr Robot and the Missing Sense of Fun
Wednesday 29th March 2017 17:04 GMT
Re: I have enjoyed it
As someone who's had a really out there experience (not due to drugs but tiredness - I walked home thinking I was in some real life game of CS to the point at which I was imagining seeing my ammo number in one corner of my vision), I can imagine the whole 80's sitcom thing actually happening to some body.
Wednesday 29th March 2017 17:00 GMT
Re: Seen some of the first season.
They had a guy who was basically responsible for making the hacking look authentic. He did a talk at DefCon I believe - most of the 'onscreen' animation is recorded in flash because that's the easiest way to make it authentic - someone can tap away at a keyboard and the letters would appear at the right time, and never a typo in sight!
If you can find the talk it's really good to hear how 'respectful' of real hacking the directors and such were. Rather than being a case of them not listening to what would make sense and pass for 'real' they actually listened to genuine hackers for inputs. As such, there's even a few sneaky shout outs to various hacker groups and such in the series too.
Honeypots: Free psy-ops weapons that can protect your network before defences fail
The gospel according to Blockchain, or is it the other way round?
Brit ISP TalkTalk blocks control tool TeamViewer
Watt the f... Dim smart meters caught simply making up readings
Tuesday 7th March 2017 11:45 GMT
Re: Working as intended
I believe - don't quote me - that the reduced usage comes from 'awareness' of how much power you're using. The smart meters allow readings every 30 minutes (it's never been clear to me why you can't get a minute/second accurate reading locally). Due to this, people tend to 'watch' the figures more - become more aware of usage and generally use less.
Same thing is well documented with water metering...
Stop the press: Journos not happy losing jobs to journo bots, say journos
Linus Torvalds lashes devs who 'screw all the rules and processes' and send him 'crap'
Cloudbleed: Big web brands 'leaked crypto keys, personal secrets' thanks to Cloudflare bug
Scottish court issues damages to couple over distress caused by neighbour's use of CCTV
Friday 10th February 2017 10:37 GMT
Re: 5 days
I thought this too, concidering my CCTV records for about 3 months at a time, 5 days is laughable.
But mine only covers my drive (which I don't really consider private anyway) and the public road where both neighbours park their cars sometimes. Both neighbours are aware and happy for the CCTV to be there (It was installed by the person who lived here prior) and it's managed to capture two break in attempts on cars which were passed onto police.
Why you'd have CCTV recording a back garden is questionable - you could have it covering the part of the garden concidered 'shared access' but by the sound of things this was directly setup to monitor the entire garden including that which is the other tenants.
Revealed: Malware that skulks in memory, invisibly collecting sysadmins' passwords
GitLab.com melts down after wrong directory deleted, backups fail
Wednesday 1st February 2017 14:52 GMT
At my 2nd day of a job, I deleted the entire stack of the test system with a misplaced rm -rf.
I crapped myself thinking I'd be instantly fired. My boss made some 'angry' sounds, then told me it's not the biggest issue as they needed to try a fresh install of the new version anyway (as thats' how the new version would be rolled out in production rather than upgrading, which is what they normally did on the test servers.)
This also allowed them to fully test the backups, pulling the older data from the production backups, anonymising it as required and also finding some faults with various processes that were included but didn't work after the upgrade. In all the test system was down for about 4 days instead of 1, but the fixing of the systems to allow it to get the go ahead in production took a month or more. If I'd not 'slipped up' then they wouldn't of known these issues until trying to go live in production and if so, it would of been a very long night of around 6-8 hours reinstalling the older version back into production (after the 6-8 hours of installing and testing the new version).
This attitude of 'we can't afford to test it' is utter bollocks. You fire up as many vm's as required in the cloud, and you at least verify the _data_ is there, even if the functionality isn't. It's bad to find the code for the production system isnt' backed up as much as you think it is, it's unrecoverable to find out the data is gone.
These guys got lucky, if he hadn't taken that copy 6 hours before they'd be dead in the water and the company would be gone.
Chevy Bolt electric car came alive, reversed into my workbench, says stunned bloke
Home Einsteins help turn up 13 new pulsars
Insane blackhats behind world's most expensive ransomware 'forget' to backup crypto keys
How the NYE leap second clocked Cloudflare – and how a single character fixed it
'Upset' Linus Torvalds gets sweary and gets results
Major outage at broadband biz 186k
Tuesday 13th December 2016 15:51 GMT
Re: Safety Net
That's because, despite how much the energy companies would like you to believe otherwise, they don't actually 'handle' the energy.
They simple broker how much usage they think they'll require, and make sure they put the numbers in, in good time for the production to be done.
Not quite the same with ISP's, where they are actually handling the data from point to point (and so when it falls over, it isn't actually 'still there').
Top tech company's IP was looted by China, so it plans to hack back
Sysadmin told to spend 20+ hours changing user names, for no reason
Google turns on free public NTP servers that SMEAR TIME
SHIFT + F10, Linux gets you Windows 10's cleartext BitLocker key
Thursday 1st December 2016 10:10 GMT
Re: What's wrong with that, Microsoft...?
Anyone doing remote/unattended upgrades should be capable of reading the articles on how to do this manually, create a clear key and save it to the drive - along with the appropriate warnings about doing so (I'd be worried if anyone has un-monitored access to their physical servers anyway).
Doing it by default is just plain ignorant, stupid and possibliy malicious.
It's not impossible for me to have dns claim my server is updates.microsoft.com (or whatever the address is now) and tell windows I have a 'new upgrade' package for it to install. Suddenly this looks very dodgy indeed.
Thursday 1st December 2016 10:02 GMT
Re: This, because we can't overwrite files that are in use.
No you don't.
You need to remotely have the system request the password of a user who has the ability to create the clear text key, you then save that key, get to the system whenever you want (and however you want); put the key back; reboot it.
It reboots back up, and unencrypts the drive for you while it does it.
A cardboard desk? I won’t stand for it (actually I will)
Small ISPs 'probably' won't receive data retention order following IP Bill
Friday 25th November 2016 16:17 GMT
Re: Dear Santa
Erm no it isn't.
The idea is the traffic cannot be viewed in transit, and not MitM'd unless they are placing the Man after your vpn exit point (i.e. another country.).
Of course to get around this will mean most companies will soon be hosted out of places where they can't be reached, along with moving their tax paying dollars there too.... oh, wait.
Biting the hand that feeds IT
