Re: Don't click the link !
.....and also making sure the link is not one spscific to your received email.
Even http://potato.example.com/ could be dodgy - if I wanted to hide a unique id, i'd probably stick a random word on as a subdomain..
Posts by Jamie Jones
4302 publicly visible posts • joined 14 Jun 2007
Page:
A little phishing knowledge may be a dangerous thing
Monday 19th November 2018 11:24 GMT 
"Could you help us all out by providing your email address?"
I've posted it here before. It's also easily googleable.
For some strange reason, some people here assume that I use a mail system that launches external programs on command from an email message. Why on earth would anyone do that?
Apologies to the downvoters (yeah, yeah, bring it on!) for assuming you were at least mildly technical, and didn't live is an MS bubble.
Monday 19th November 2018 11:17 GMT
"We had someone like you at a company where I worked a year or two ago ... he got a phishing email - decided to investigte a bit and then did a "forward to all" on the message along with a comment "if you get an email like this delete it as I've checked and the attachment contains <list of viruses>"."
In other words, nothing like me at all.
Scumbag who phoned in a Call of Duty 'swatting' that ended in death pleads guilty to dozens of criminal charges
Thursday 15th November 2018 11:21 GMT
Re: Hostage situations...
"All of this confirms what I think I will do if ever I find myself facing a bunch of US cops with their guns out for me: hands up, drop to my knees, hit the ground and spread-eagle. If they want to talk to me after that, I'll be listening, but I won't move until they tell me I can or come and cuff me."
Even that doesn't work all the time :-(
And even then the cops get away with it ... This guy was innocent of any crime, but this is how his execution went down:
The body camera footage shows Shaver on his knees in the hotel hallway, a few feet away from the barrel of a police officer's gun.
"Hands up in the air," an officer says.
Shaver puts his hands on the floor, then behind his back, then moves them forward again before an officer yells "Hands up in the air!" Shaver moves his hands up above his head.
"You do that again, we're shooting you, do you understand?" the officer said.
"Please, do not shoot me," Shaver said.
"Then listen to my instructions," the officer said.
"I'm trying to just do what you say," Shaver said.
"Do not put your hands down for any reason!" the officer later says to Shaver. "You think you're going to fall, you better fall on your face. Your hands go back in the small of your back or down, we are going to shoot you! Do you understand me?"
"Yes, sir," Shaver says, sobbing.
An officer then orders Shaver to crawl toward him. As Shaver crawls, he appears to reach behind him with his right hand.
That's when Brailsford fired five rounds, killing him.
More: https://edition.cnn.com/2017/12/10/us/arizona-jury-acquits-ex-cop-of-murder/index.html
Huawei Mate 20 Pro: If you can stomach the nagware and price, it may be Droid of the Year
Monday 12th November 2018 21:06 GMT
Re: 3d dots in space...
"Just spoof the dots. Block the IR emitter, and have a pre-printed "hash crash" dot matrix. "
.... or just drug the owner, and hit him with this $5 wrench until he tells us the password....
Ref. (that-eveyone-knows): https://xkcd.com/538/
Bruce Schneier: You want real IoT security? Have Uncle Sam start putting boots to asses
Monday 12th November 2018 20:45 GMT
"That's not a bad idea, but a monitor of equivalent size is absurdly expensive and they tend not to have good viewing angles because they're designed for one person. I've considered a projector, though."
I have a projector. Best decision I made.
For £400, I have a 100 inch (it can go bigger) 1080p screen which works great for video, and also great for accessing El Reg from my sofa (as I am now!)
I have the ACER H6510BD... Weirdly it was £400 new when I bought it about 2 years ago, but now appears to be at least £600...
Friday 9th November 2018 18:00 GMT
The lifespan for consumer goods is much more than our phones and computers, this is a very different way of maintaining lifecycle," Schneier said.Other then a few companies - most consumer goods won't survive beyond 10 years - at best.
Re-read the bit you quoted. He's saying that newer white goods (even newer models) will not have an IT refresh so often - in 20 years time, yowu'll buy a new fridge (or hover-board/jetpack/flying car/clothes made of aluminium...!) and it will have the same IoT hardware/software as the one you bought 10 years earlier.
Junior dev decides to clear space for brewing boss, doesn't know what 'LDF' is, sooo...
In news that will shock absolutely no one, America's cellphone networks throttle vids, strangle rival Skype
Friday 9th November 2018 01:11 GMT
Re: Spectrum grows on trees
It is evil. Who are you to decide that your cell call to your girlfriend is more important than someones training by video? (See, it's easy to make sweeping examples to prove your case when generalising so much)
If someone has paid for data, they have as much right to use that data anyway they want, just as you have.
Now, if the terms and conditions say that general connection speeds may be slowed down across the board to prioritise cell voice traffic, then fair enough.. Other network managements techniques can also be used if they are in the terms and conditions.
If not, it's the cell companies fault for not provisioning enough capacity, and/or selling contracts to the public that they can't meet.
And, in keeping with the whole Net Neutraility point of the article, there should be no distinction between data traffic from skype and data traffic from youtube...
GDPR USA? 'A year ago, hell no ... More people are open to it now' – House Rep says EU-like law may be mulled
If Shadow Home Sec Diane Abbott can be reeled in by phishers, truly no one is safe
Friday 9th November 2018 00:53 GMT
Re: Eh?
The fact she's a Labour MP 100% behind state education, but sent her kid to a private school.What, hypocrite, moi?!
I'm no Dianne Abbott fanboy, or private school advocate, but I can't see why that makes her a hypocrite.
Labour aren't in power. She could easily say "I'm 100% for supporting state schools, but the current government has left them in such a mess that they are not up to scratch. We all want the best for our children, and as I'm in a fortunate position to be able to do so, I've had to send them to private schools"
Now, if she was the minister in charge or education, then she'd be a hypocrite, much like the moron "Betsy de Vos" in charge of the American system (who was well placed, because Republicans are determined to screw up state education)
CNN: DeVos struggles to answer questions about schools in home state (YOUTUBE)
UK rail lines blocked by unexpected Windows dialog box
Friday 9th November 2018 00:32 GMT
Re: It's not that Windows failed, it's that it failed in public view
They should use this error message: https://54below.com/app/uploads/error-message-1024x576.png
(Yes, yes, I'm still living in the 90's)
Premiere Pro bug ate my videos! Bloke sues Adobe after greedy 'clean cache' wipes files
Friday 9th November 2018 00:18 GMT
Re: Man...
Backups is one thing, but putting your cache on the same physical drive as working material or archives is just day zero stupid.
No it isn't at all. Especially if you only have one disk, and even more especially if you're Jo(e) Public.
Even using the same directory isn't stupid - just because it is to us.
When Jo(e) is told that "cache is where the system creates temporary files which it needs to do when it's working - they get deleted automatically afterwards", there is nothing silly in then thinking "they may as well be put in with my other movie files.. keeps all the movie stuff away from my documents."
Thursday 8th November 2018 02:18 GMT
Re: Man...
Yeah.. I do think it's a bad cock up on adobe's part, but using the line "my files are worth $250,000" and not having any backups makes you look stupid.
And also, he seems to have scrambled ineptly with a recovery tool rather than get in a professional.
And back to the legal issue. How can he prove what was deleted, or how much it was worth? And who made the evaluation? Legally, does he have to prove the files were there, or do adobe have to prove they weren't?
European Union divided over tax on digital tech giants as some member states refuse free money
Apple's launch confirms one thing: It's determined to kill off the laptop for iPads
Wednesday 31st October 2018 16:30 GMT
Re: Would they allow it if...
Don't forget Nob End and Bell End!
Finally, pronounce this house address aloud! 4 Kinell Street
Bomb squad descends on suspicious package to find something much more dangerous – a Journey cassette
Assange catgate hearing halted as Ecuador hunts around for someone who speaks Australian
Monday 29th October 2018 11:06 GMT
Re: How are they breaching his human rights?
In the same way that blocking unregulated immigration is a human rights violation despite the fact that any illegal immigrant can leave if they don't like how the receiving country runs the show.
Give me your address.. I'm coming to kip in your spare bedroom.
We asked 100 people to name a backdoored router. You said 'EE's 4GEE HH70'. Our survey says... Top answer!
'The inmates have taken over the asylum': DNS godfather blasts DNS over HTTPS adoption
Wednesday 24th October 2018 23:00 GMT
Re: "AND the header-level clues that DNS resolution is being requested."
Lets start with the SNI header !
To be fair, SNI was designed to solve a different problem - correctly handling certificates for different domains on the same IP.
As the only working alternative was one-host-per-ip there was no security compromise - before SNI you just sniffed the IP address from the packet headers!
(I'm not saying you don't know this - I just thought it worth pointing out to any one stupid enough to read my posts!)
Euro eggheads call it: Facebook political ads do change voters' minds – and they worked rather well for Trump in 2016
Wednesday 24th October 2018 16:17 GMT
Re: @The Tick
"A little riled"? Sure did!. It sure angers me to see our country being flushed down the toilet, especially when the reasons for it are untrue.
Stlll, it motivates me to spread the word even more, so cheers for that!
Time and time again, governments (of all flavours) have blamed 'the EU" for all that goes wrong, when it reality it has nothing to do with the EU.
You really think Rees-Mogg, boris and trump have the UK's best interest at heart?
You realise the US will only allow trade on their standards?
Me? I don't plan on eating maggots (https://www.independent.co.uk/news/uk/home-news/food-standards-brexit-uk-us-trade-deal-maggots-rat-hair-worms-insects-mould-products-a8575721.html) any time soon
For example, US producers are allowed to include up to 30 insect fragments in a 100g jar of peanut butter; as well as 11 rodent hairs in a 25g container of paprika; or 3mg of mammalian excreta (typically rat or mouse excrement) per each pound of ginger.
In the EU there are no allowable limits for foreign bodies in food products.
By the way, you seem to assume I think the EU is perfect. Nothing could be further from the truth, but we can affect change when we're in, rather than bow out like wimps.
Again, the MEPs are voted for. Any shit they get up to is therefore the responsibility of the voters. If they are undemocratic, then the UK government is too.
Anyway, this isn't some romantic idea of being in some buddies club - the dilusion is on the leavers side, who seem to think that everything will magically come better. I mean, we can even stop the EU making it rain all the time, and making England crap at football!
The issue is economic, and political. There are loads of articles out there showing the problems and costs we will incur (we *WILL* be poorer, period). There are far more good laws for us from the EU than the UK regarding our personal rights (which the UK have been trying to erode for years)
https://www.echr.coe.int/Documents/Convention_ENG.pdf
Take special care to read articles 9, 10 & 11 specifically the second paragraphs on each. If you still think we have human rights after reading that then there's no hope for you.
I guess there's no hope for me then. I did read it, and whilst there were some bits that could be taken badly, on the whole they are common sense.
Anyway, not bad, only 3 small subparagraphs in a document so large, but I'm saving the real zingers for last:
1) The declaration of human rights has NOTHING to do with the EU.
2) It was mostly written by the BRITISH.
Plenty of links to help you here: Is the ECHR part of the EU/
So... "oops"
What I was referring to are the things that the EU are actually responsible for - polution-less beaches and seas, workers rights (https://www.independent.co.uk/news/uk/home-news/brexit-latest-news-10-ways-eu-protects-british-workers-rights-in-danger-european-union-a7531366.html), anti-snooping laws, and so on.. Just google it, and compare against what the UK has done (despite mass dragnet snooping operations)
The Kalashnikov thing was a bit of sarcastic fun - surprised you took it so seriously lol.
My comment implying someone strolling through customs with a Kalashnokov was returned with just as much sarcasm. However, your key underlining point was meant seriously, and was not based in truth. Hence the reply.
Still, at least you bothered to reply, unlike the other spineless chumps who downvoted without saying why.. I guess the truth hurt their feelings.
I'm out of this thread now. It's sad that you voted for something when you are so uninformed on what you actually voted for.
I've posted enough facts and debunked most of your points, that any future posts would just be pissing contests, and I've no time for that.
No-one here is going to change anyone elses mind.. it's become a religious war.
</this-thread-exit>
Wednesday 24th October 2018 11:09 GMT
Re: lots of capitals in mid sentence there
The UK turned around on that and all we can hope is that they stay in their little tent and let the EU continue to bring wealth and human rights to all those under an increasingly bigger one.
Dear anonymous, whilst your opinion of the EU is accurate, and the UK leaving is stupid, the fact is that nearly half of the UK wanted to remain, and now more than half want to remain, and the vast majority of El Reg commentators want to remain.
So the rest of your snide comment simply shows that you are the sort of obnoxious prick that the brexitters use as an example to denigrate all Europeans
Wednesday 24th October 2018 11:02 GMT
@The Tick
Ahhhh, typical ignorant response from a brexitter.
"The Tick", you posted so many easily demonstrative lies, I don't know where to start.
You guys keep thinking you're the clever ones despite wanting to stick to an avowedly anti-democratic and anti-human rights EU with no hope of reform.
Anti-democratic? All the MEPs are voted in democratically.
You mean "anti-democratic for the UK"? Well, there are 73 British MEPs - all voted for by us.
Are there more non-UK MEPs in total than UK MEPs? Of course. If you think that is undemocratic, then Wales isn't in a democracy because there are less Welsh MPs than non-Welsh MPs.... Gettit?
And yes, a lot of work is done by unelected civil servants..... Just as it is in the UK - Do you really think everyone that works for government has been voted for? UK civil servants are employees.
"human-rights" - Most of the recent significant rules improving human rights have come from the EU, not the UK. In fact, the UK challenged the EU's complaint that the government was doing groundless slurping of UK citizens data.
All while the UK is still in the EU and subject to EU rules with it's free movement of Kalashnikovs.
Firstly, "freedom of movement" doesn't mean "freedom from checks". Unless you are implying that the EU mandates than anyone can cross borders carrying Kalashnikovs - without passport control stopping them, then I assume you are refering to the Schengen Area (https://en.wikipedia.org/wiki/Schengen_Area) which allows unchecked movement across borders.
The UK IS NOT part of the Schengen agreement
We do NOT have to have open borders (Ireland is our choice)
Why the hell do you think immigrants try to smuggle themselves into lorries, or sneak through the channel tunnel if we have unrestricted open borders?
Now, we *are* subject to free movement rules for Europeans (free movement DOES NOT mean no border checks) but as an aside, if you're worried about "Europeans sponging off our benefits", I assume you don't know that if a foreign EU citizen can't financially sustain themselves after 3 months, the UK can legally deport them.
From DIRECTIVE 2004/38/EC OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL, sub-paragraph 9 (https://eur-lex.europa.eu/legal-content/EN/TXT/HTML/?uri=CELEX:32004L0038)(9) Union citizens should have the right of residence in the host Member State for a period not exceeding three months without being subject to any conditions or any formalities other than the requirement to hold a valid identity card or passport, without prejudice to a more favourable treatment applicable to job-seekers as recognised by the case-law of the Court of Justice."
The fact the UK hasn't acted on this is entirely due to the UK government, not the EU.
FINALLY...
That's 4 or 5 complete untruths in just 2 posts of yours.
I have to asume you are down right lying, as whilst being wrong or being misinformed or being ignorant would be tolerable in many situations, you obviously made sure you were well aware of the facts before voting, right?
Wednesday 24th October 2018 08:41 GMT
Re: Gosh
And the Democrats/Remoaners tried the same but it didn't work?
If my 5 year old came out with the word "remoaners" in that context, I'd congratulate him on his clever manipulation of words, but when he leaves the room, tell my wife that I'm concerned about his mental ability.
Maybe that's because the Trump/Brexit messages were actually better, more persuasive arguments?Oh no it's because we're all easily influenced thickos isn't it.
There you go! You got it in the end!
Microsoft points to a golden future where you can make Windows 10 your own
WD shoots out 96-layer embedded flash chips
Sure, Europe. Here's our Android suite without Search, Chrome apps. Now pay the Google tax
Wednesday 17th October 2018 21:51 GMT
Re: TANSTAAFL
I find these two societal trends quite disturbing. We should expect to pay for things that we receive that are of value, and when we are at work, we should expect to be working.
There are lots of free emai services out there. It's not unreasonable therefore to ask around for any suggestions on a "free or low cost mail solution"
It's completely different to the never-ending comments you see on android apps saying things like:
- "this game is a con. i loved the first level, but why should we have to pay to play the other"?
- Game would be brilliant if it was free. 1 star.
- I appreciate the amount of work that must have gone into this app, but it would be much fairer if we got daily tokens rather than having to pay real money for them.
<cheapshot>Incidentally, how much did you pay for Linux ? ;-) </cheapshot>
As for the 'personal mail on work time' - yes, if people are taking the piss. But you can't assume that of dropbear, indeed, i'd assume most people here would not take the piss, and work for people who treat them as such.
I can look at non-work related websites in work, make and receive personal phone calls, and my boss doesn't give a crap. Probably because he also knows that if the shit hits that fan at 4.59pm, i won't be rushing out the door at 5:00.00 - it works both ways, and I wouldn't work in an environment where I have it any other way.
Wednesday 17th October 2018 21:35 GMT
yep, I remember at one stage they tried to discourage that (something about losing their trade-mark???) whilst when bing was launched, they actively tried to get people to 'just bing it".
But yeah, many (including me!) say "it's googleable" or "just google it", when i mean just-use-search-engine-of-your-choice!
Anyway, must go, the sellotape came off my biro, so now I have to hoover up the mess!
Wednesday 17th October 2018 10:09 GMT
Re: Is this a joke?
Then use a mailer that doesn't use "web based authentication'
I'd say that I've NEVER had any issues with aquamail, which i've used daily for years.... but if I do, you'll probably downvote me again!
And I don't care if loads of people are complaining. It just means they are doing it wrong.
Wednesday 17th October 2018 09:16 GMT
Re: Is this a joke?
As for GMail, Google has been trying everything to nail their GMail shut. They even invented their own authentication mechanism just to break competing e-mail clients. Most new clients can deal with it again, but Google will simply keep blocking your client randomly, bombarding you with “Suspicious sign in prevented” messages.
That's a bit unfair. They did switch to oauth 2 which obviously didn't work with non-oauth2 imap clients, but they still let you "downgrade" your account to allow the usual user/password authentication.
And the oauth2 stuff is a standard, and well documented: https://developers.google.com/gmail/imap/xoauth2-protocol
Take my advice: The only safe ID is a fake ID
In the two years since Dyn went dark, what have we learned? Not much, it appears
Thursday 11th October 2018 23:46 GMT
Re: Bind/Named
[ Not directed to crazy ops guy ]
A PI will comfortably run "unbound". Hell, if your router has ssh access, you could install it there.
Biting the hand that feeds IT
