The hitch and the hikes with Oracle
To bring this back to Oracle and audits: "Oh no, not again."
Posts by Ozzard
115 publicly visible posts • joined 15 Dec 2011
How to Netflix Oracle’s blockbuster audit model
GitHub struggles to keep up with automated malicious forks
Sunday 3rd March 2024 10:10 GMT
Forks are helpful when upstream is slow or non-responsive
I've got a couple of forks of Puppet modules at the moment, typically where I'm running a more modern Puppet or stdlib than upstream uses and I've needed to make a few changes. Sometimes upstream is slow - or, in some cases, non-responsive. Sometimes the fork lasts a few days or weeks; one is several years old. I'm using one Terraform provider from a fork at the moment, because the maintainer wants to get a few more changes in before releasing a new version but there are showstopper bugs in the provider vs the latest version of what it's managing. So it goes. Once the fixes are incorporated and released upstream, I'll take great pleasure in changing my manifests to get the modules from the "right" place again, deleting my forks, and going back to letting other people do the thinking for me :-).
Used sensibly, forks are helpful for showing ancestry of code and providing a locus of administrative control. Like anythng else, they can be abused.
Security is hard because it has to be right all the time? Yeah, like everything else
Sunday 25th February 2024 17:00 GMT 
I disagree - a reliability incident is temporary, a security incident is permanent
One for a gentle discussion over a beer, but I class security vulnerabilities as fundamentally different because you can't recover from data theft. The exfiltrated data has been copied, and from that point on you've lost control of it. It's a permanent loss. In my neck of the woods, where I'm dealing with medical data, clinical trials data, and biometric data, such a loss can cause someone significant damage up to and including threat to life. Even less obviously deadly data, like that stolen from University of Manchester in summer 2023, can be life-changing - student accommodation data included stated gender and, in some cases, sexuality data for students from countries where non-cis, non-hetero people can be jailed or killed.
Clearly one looks at any system through the lens of risk, but I do think that some of the security risks are qualitatively different in most systems.
Mozilla CEO quits, pushes pivot to data privacy champion... but what about Firefox?
Tuesday 13th February 2024 11:18 GMT
It's all about selling advertising
"Someone at the Reg hates Firefox? And that deserves screen space because...why, exactly?"
Because every page impression is the chance* of ad revenue for The Register, and extremism attracts eyeballs.
* Reading this on Firefox with NoScript and an ad blocker, so I'm neither contributing ad revenue nor stats to anything other than a log reader.
You're not imagining things – USB memory sticks are getting worse
SSH shaken, not stirred by Terrapin vulnerability
CLIs are simply wizard at character building. Let’s not keep them to ourselves
Monday 18th December 2023 21:10 GMT
Re: GUIs were and are intended to demystify the computer
Play with Smalltalk sometime - red/yellow/blue buttons, where red is "poke whatever's at the pointer", yellow is "pull up a context-specific menu about the thing under the cursor", and blue is "pull up the system menu to do generic things" (for example close the window). Makes huge sense, very quickly, and you don't get RSI moving to small targets for menus.
It's well worth looking at Alan Kay's team's work on this stuff.
Monday 18th December 2023 21:03 GMT
Re: Intuitive GUI? My arse.
*chuckle* I've been a hardcore vi user since my apprentice days (the file server had 2 Mbytes of RAM, ten diskless clients hanging off it, plus my VT200 - and emacs was a 2 Mbyte binary). Until you know its modes, it's utterly unintuitive. Actually, even when you *do* know its modes, it's still pretty surprising.
For myself, I still wouldn't use anything else for hardcore interactive text-report munging. But I wouldn't teach it to anyone else, either. Did enough of that training UNIX in the '90s, to the point that I produced a "surVIval guide" for the editor.
Revival of Medley/Interlisp: Elegant weapon for a more civilized age sharpened up again
Friday 24th November 2023 12:13 GMT
"It's a different style of development"
Absolutely. Smalltalk and its surrounding tooling has very much the same vibe; it's an all-encompassing environment, and one uses it very differently to almost all current systems. "Debugging a program into existence" is very much a thing, where the debugger fires up on doesNotUnderstand: calls and you write the code that wasn't there yet.
Keep on doing it for fun :-). When do you reckon you'll be able to remote-control a coffee pot with it?
Raspberry Pi 5: Hot takes and cooler mistakes
Tuesday 17th October 2023 21:40 GMT
Re: "...let me count the ways..."
Let's just say these boards aren't going out into the field yet, where we expect them to survive a decade or more with no visits and total data traffic of under a megabyte a month. Six months or a year from now, once the firmware starts to settle down? Sure. They're good enough for what we need, and have an excellent ecosystem around them. That ecosystem is the difference for us.
As it prepares to abandon its on-prem server products, Atlassian is content. Users? Not so much
Monday 16th October 2023 21:52 GMT
I swore never to use an Atlassian product again when they announced server was going.
The day Atlassian announced the end of Server, I swore never to use an Atlassian product again and started migrating all existing data off Atlassian products onto open source alternatives. The risk of using open-source is at least manageable (as long as you don't risk anything built on PHP or MySQL, at least, as those tend to be architectural smells that reek of poor thinking elsewhere in the system as well). The risk of vendor lock-in isn't, for us.
So far, we're very happy.
EFF urges Chrome users to get out of the Privacy Sandbox
Unity apologizes, tweaks runtime install fees after gaming world outrage
OpenTF forks Terraform, insists HashiCorp is the splinter group
Monday 28th August 2023 21:50 GMT
Oh good, I chose well
When we picked Terraform a year ago, we reckoned it was too big to fail and that if it went proprietary then someone would fork it and we'd still be able to use it. Turns out we were right. We'll continue contributing PRs for the providers we use where we need more functionality.
Users of 123 Reg caught out by catch-all redirect cut-off
Tuesday 20th June 2023 19:19 GMT
Good suppliers: find a small one, migrate when they sell up and get run for profit
Unfortunately, there's only one way to find a decent supplier: use one of the small folks who are building their business and therefore trade on quality and service. When they get bought, as almost all do once the founders have built up the business and want to retire on the proceeds, then they become universally awful as they're being run for profit, not service (see icon). Move at that point.
All my domains are with Mel at Herald Information Systems, for example, but I've known her for decades. Excellent on all counts, and for some reason I don't think she's interested in selling the business to Big Provider. If she did, I'd be out of there like a shot.
This is the way the world works.
Debian 12 'Bookworm' is the excitement-free Linux you've been waiting for
Monday 5th June 2023 12:16 GMT
Please give me a boring distro that Just Works - Debian is ideal
Our entire business runs on Debian. It was that or a DeadRat tracker, and as we go from IoT devices to private cloud it made more sense to go with something that will scale. It's been very stable for our use cases - which, to be fair, don't include user desktops.
Datacenters still a boys' club, staffing shortages may change that
Friday 3rd March 2023 15:53 GMT
1U servers are right in the zone...
Taking a random 1U box (a Dell R640), it's 21kg - under the male recommended limit, over the female recommended limit. Most 1U servers are likely in that zone, which might make Elfin Safety nervous.
We do dual lifts anyway, as rotating rust doesn't bounce very well if you drop the box 2 metres onto the floor.
Best server admin I know is female, by the way.
Save $7 million on cloud by spending $600k on servers, says 37Signals' David Heinemeier Hansson
Thursday 23rd February 2023 12:01 GMT
Mainframe = fault-tolerant, many different workloads
Think of a mainframe as several racks of servers and comms, rigged such that you can put a bomb in any rack and the entire workload just carries on running. It's that fault tolerance that attracts the price tag.
I heard a story (which might be apocryphal) of one mainframe that got half-destroyed when the 6kV distribution transformer next door to it went bang. The users didn't even notice. No transactions lost. If it can't do that, I'd argue that it's not a mainframe.
Ubuntu Advantage is being wired deeper into the distro
Friday 17th February 2023 17:39 GMT 
Ubuntu was off my list a decade ago - and I architect systems for organisations
As soon as Shuttleworth demonstrated he was prepared to bend a Linux distro out of shape for commercial reasons, I stopped using Ubuntu. The fleets of machines I've specified and implemented for various organisations over the decade since have all run on Debian.
And, yes, I contribute effort and regular money to multiple FOSS projects and encourage the organisations who use my services to do likewise. Free-as-in-speech needs support that doesn't come for free-as-in-beer.
Two signs in the comms cabinet said 'Do not unplug'. Guess what happened
Friday 2nd December 2022 17:04 GMT
Always check for odd habits
Also always, always, always check for cleaners with odd habits. We had a Sun workstation at a hospital in the early '90s, on a 4-way multiplug, which was plugged into the right-hand socket of the double 13A socket near the door. Note "right-hand". This is about to become important. The left-hand socket was empty, so as to leave a socket free for the cleaner.
This worked well for a year or so. Then the machine started becoming unreliable - it'd reboot between about 5.30pm and 6.30pm many weekday evenings. Aha! Must be a new cleaner or a dodgy vacuum cleaner! So we put some tape over the plug with a nice neat "Please do not unplug" notice. The following evening... reboot. The morning after that... check the socket. The tape had been peeled back, the plug presumably removed, then at some later time the plug had been put back in and the tape replaced. The empty, inviting left-hand socket next door was unused.
This was... mysterious. Time for some overtime! Hover outside the office after hours and see what happens.
The hover revealed the cleaner coming down the corridor, cleaning each room. When they got to ours, they peeled the tape back and... were just about to pull the plug on the workstation when our spy intervened. It turned out that when the new cleaner had received their training, they'd been shown how to use a vacuum cleaner (new technology for them) and the person showing them had plugged it into the right-hand socket of a double. Therefore the cleaner had assumed that they had to do it exactly the same way, and had been unplugging anything on the right-hand side of a double in order to plug in the vacuum.
Our spy promptly shut down the workstation, moved the multiplug to use the left-hand socket, and restarted the workstation. And we never had a problem again.
Lloyd's to exclude certain nation-state attacks from cyber insurance policies
Arrogant, subtle, entitled: 'Toxic' open source GitHub discussions examined
Thursday 30th June 2022 16:00 GMT
ASC *requires* communication difficulties with neurotypicals for diagnosis... surprise!
(Background: Yes, I have an ASC diagnosis. Yes, I'm involved in autism research. No, I'm not a great fan of Baron-Cohen's deficit model - few autistic folks are.)
It's worth looking at the double empathy problem here - https://en.wikipedia.org/wiki/Double_empathy_problem (and I recommend papers by Catherine Crompton in particular for some well-thought-out further research) where autistics communicate well with autistics, neurotypicals (NTs) communicate well with neurotypicals, and communication between the two groups is confused, confusing, and full of emotional and technical misunderstanding. "Why are they so rude? We're not even through the intros!" "Bored now. Why is he telling me his life story when the meeting's already thirty seconds in and we're still on small talk? And I can't disguise that boredom on my face."
I strongly suspect that NTs find autistic comms terse, arrogant, and entitled. Given the strong presence of ND and especially autistic people in tech - and remember, an ASC diagnosis *requires* you to have communication difficulties with neurotypicals or you don't get the label - then the fast, efficient, and open comms between autistics is going to come across as toxic. We don't dress things up. Mostly we don't say please, because the other autistic person doesn't care about hearing it and it's a wasted word. We say what we want. Toxic? Depends which side of the mutual incomprehension barrier you're on. I'd much rather receive clear, simple comms where the position and intent of the other side was clear; I spend far less time parsing it and I'm far more certain of the intent of the comms.
I'd be fascinated to see a version of this study where a group of autistic people rated the threads for toxicity, and a parallel group of non-autistic people did the same. I think the comparison of those scores would be very, very interesting.
Sick of Windows but can't afford a Mac? Consult our cynic's guide to desktop Linux
Tuesday 31st May 2022 21:11 GMT
I've spent quite a long time trying to port a moderately complex WinForms app so that it will run under WINE. I have access to the source, and it's .Net (presently Core 3.1) and, as far as we can, adheres religiously to the published APIs with no weirdness.
It doesn't port cleanly, because one third-party library (DevExpress XtraRichEdit - I ain't writing my own word processor!) does something deep in its innards that causes WINE to display cross-hatched scrollbars.
WINE might change that, but it's going to have to do so app by app, and it'll be hard to shift the line-of-business apps because at the moment the DevExpress and Infragistics of this world couldn't care less.
Microsoft revises software licensing, cloud policies amid EU regulator scrutiny
Blizzard co-leader Jen Oneal leaps into escape pod after just three months in the role
De-identify, re-identify: Anonymised data's dirty little secret
Thursday 16th September 2021 18:07 GMT
Re: Change the way it's done
* You can turn off querying from organisations that break the rules.
* You can bring down the portcullis completely if you want.
* You can put a human between the request and the response, running the query past the Caldicott guardian in healthcare for example.
I was the architect of one such system.
Tachyum's Prodigy emulator achieves first boot, runs Linux and says 'hello, world'
Friday 3rd September 2021 10:10 GMT
Amulet (and Spinnaker)
An ex-housemate worked on AMULET. Apparently Steve was really quite peeved that the first silicon had more than zero bugs in it, as everything he'd previously designed had come back bug-free first try. I mean, the design was only an order of magnitude bigger than anything asynchronous that anyone else had ever attempted...
The spiritual descendant is really Furber's Spiking Neural Network (Spinnaker) work - neuron simulation using only kilowatts of power, rather than megawatts. Worth the look.
Start or Please Stop? Power users mourn features lost in Windows 11 'simplification'
Friday 27th August 2021 21:28 GMT
I'd love a foldable phone... sort of
As I get older and my eyesight gets worse, screen real-estate becomes more and more valuable. I'd love a device that I can fold to put in a pocket, then get out and open to tablet size so that I stand a chance of reading it. Doesn't need 400ppi, just needs lots of degrees across my field of vision with my varifocals!
Having trouble getting your mitts on that Raspberry Pi? You aren't alone
Zoom incompatible with GDPR, claims data protection watchdog for the German city of Hamburg
Wednesday 18th August 2021 11:37 GMT
Far more entertainingly, Zoom may route call traffic between non-EU nodes
GDPR says nothing about whether or not personal data is encrypted; merely that personal data is processed.
Zoom is not a peer-to-peer network; it uses traffic routing nodes worldwide, and explicitly states in its T&Cs that it may use any node or combination of nodes to route traffic.
Net effect: your video traffic, even if allegedly "end-to-end encrypted" (show me the code, the design, and the architecture), may be processed through one of Zoom's US routing nodes on the way from an EU source to an EU destination. And if video traffic ain't personal data, I don't know what is.
Then add in users who use VPNs and deliberately appear to be in different countries, and EU offices of US organisations where the Internet traffic from the EU users pops out of a US Internet peer. Zoom has no way of knowing where any given user is physically sited, so its only recourse would be a re-architect of its entire system that routes all video and audio traffic peer-to-peer (and doesn't provide cloud recording or transcription services). Then it would only have the more common kind of user data to worry about... :-)
Sysadmins: Why not simply verify there's no backdoor in every program you install, and thus avoid any cyber-drama?
Monday 2nd August 2021 09:14 GMT
Possible? Clearly yes, for small enough and/or critical enough projects. One ex-colleague of mine wrote his own BCPL compiler for PDP-11, which he bootstrapped from his own PDP-11 assembler, which he originally hand-assembled. Then he wrote his own OS using that compiler. I didn't check what he used for storage and access to the PDP-11 while doing this, but it wouldn't surprise me if he went from scratch there as well.
Practical? That's a cost-benefit analysis :-).
Sunday 1st August 2021 20:56 GMT 
Your mission, should you choose to accept it...
... is to verify:
* the processor and system architectures for side-channel attacks, such as power or speculative execution;
* the microcode on the CPUs;
* the code on the management processor on each CPU die;
* the firmware on the network cards, disk controllers, and everything else that can DMA or can affect data ($deity help you with Thunderbolt);
* the microcode and firmware running on the flea on each server;
* the BIOS;
* the entire code of the kernel you're running and any loadable modules;
* the entirety of the user space of the operating system(s) you're running;
... and *then* you can get onto your own application(s) and the third-party libraries on which they depend.
No, you can't rely on these being checked against some suitably complex hash (remember that MD5 and SHA-1 are both considered compromised, so it'll have to be better than those) - how did you obtain that hash, and how do you know your channel to obtaining that hash hasn't been compromised?
No, you *really* can't rely on downloading the application and then comparing against the hash that you... wait for it... *downloaded from the same site*. Pure security theatre.
No, you can't rely on the browser or program you are using to download code or hash being uncompromised. Or, for that matter, the code you are using to calculate the hash.
No, you can't rely on your firewall. How do you intend to verify its firmware and its application definitions?
No, you can't rely on your network switches for data transfer. How do you intend to verify the switch's data and control planes, and its management software?
No, you can't rely on printouts. How do you intend to verify the application producing the printed version, the printer driver, the printer firmware?
No, you can't rely on your verification tools. How do you intend to verify them?
Second point: "Doing it right" would cost more than the entire revenue of most businesses - which means 100% chance of failure of the business. That's a higher chance of failure than "ignore it and hope it never happens to us". So, quite correctly, businesses try to hit the sweet spot of minimum overall chance of failure of the business - which means the standard risk management approach of choosing which ones you even bother trying to mitigate.
Final point: Overall - and I expect to be roundly downvoted for this - if the risk management is done without rose-tinted glasses, *this laziness is good for humanity*. There's no point spending more effort on verification than it takes to recover from the attacks that succeeded due to missing or failed verifications.
Faster Python: Mark Shannon, author of newly endorsed plan, speaks to The Register
Saturday 10th July 2021 15:07 GMT
First define your supported backward-compatible surface; the rest is "mere engineering"
I think that backward compatibility is going to be an awful lot of fun to define.
Imagine, for example, the race conditions that nobody has ever found in their multi-threaded code because the existing code has particular performance characteristics such that one thread always gets there ahead of the other / the code is slower than the hardware being controlled. Now consider a project that *only* varies timing, and makes no other change. You've already lost backwards compatibility, in that code that work{ed,s} in the old environment no longer works in the new one.
I confess I'm going to sit back, grab the popcorn, and watch the fun, continuing to avoid as far as I can the trio of Topsy-ish "just growed" P languages that were originally fucked by their lack of architecture and are now *utterly* fucked by their requirement for backward compatibility: PHP, Python, and Perl. Spawns of Santa, all of them, hence the icon.
Microsoft defends intrusive dialog in Visual Studio Code that asks if you really trust the code you've been working on
Audacity fork maintainer quits after alleged harassment by 4chan losers who took issue with 'Tenacity' name
Audacity users stick the knife – and fork – in to strip audio editor of unwanted features
Microsoft wasn't joking about the Dev Channel not enforcing hardware checks: Windows 11 pops up on Pi, mobile phone
Microsoft releases Windows 11 Insider Preview, attempts to defend labyrinth of hardware requirements
Tuesday 29th June 2021 07:32 GMT
Check out Pi-Hole - run on a VM if necessary
Our remaining Windows boxen and VMs are finding they're having a hard time of it reporting telemetry back to the mothership; they suddenly can't resolve any of the DNS names. Might have something to do with me blocking 53 outbound for anything except the household DNS server, which is running Pi-Hole... *innocent whistle*
Ad-free on mobile is another blessed relief.
Hubble’s cosmic science is mind-blowing, but its soul celebrates something surprising about us
Report picks holes in the Linux kernel release signing process
Thursday 24th June 2021 19:01 GMT
Well done to the Linux Foundation
It's never much fun to invite independent auditors in who you know will publish their findings openly. The first time you do that, you *know* there's going to be stuff you hadn't seen hauled out into the open, and a certain amount of egg on face as a result.
Much kudos to the folks who chose this approach, and co-operated with it, despite the inevitable findings.
University duo thought it would be cool to sneak bad code into Linux as an experiment. Of course, it absolutely backfired
Thursday 22nd April 2021 18:38 GMT
It touched the IRB - which is an alternate name for an ethics review board
https://en.wikipedia.org/wiki/Institutional_review_board is worth the check.
As the article noted:
"The paper describes how the authors submitted what's described as subtly subversive code contributions that would introduce error conditions into the operating system software, and it claims the researchers subsequently contacted Linux maintainers to prevent any bad code ending up in an official release of the kernel.
"It further states that the experiment was vetted by the university's Institutional Review Board (IRB), which determined that the project did not constitute human research and thus granted an ethical review waiver."
Browser tracking protections won't stop tracking, warns DuckDuckGo
Tuesday 30th March 2021 23:00 GMT
*checks Firefox add-ons*
AdBlock Plus (blocked 3 items on this page)
NoScript (blocked 6 items on this page)
DecentralEyes
Facebook Container
Containerise
HTTPS Everywhere
Privacy Badger (blocked 2 items on this page)
Don't Track Me Google
... yeah, no wonder Google doesn't want add-ons being able to access arbitrary features of your browser; some of these would be impossible in upcoming Chrome versions.
Ever felt that a few big tech companies are following you around the internet? That's because ... they are
Microsoft announces a new Office for offline fans, slashes support, hikes the price
Saturday 20th February 2021 14:29 GMT
Microsoft owns the de-facto interchange format, so can do this indefinitely
As I've said on a number of occasions in these comments, the *only* way to stop this is for someone to spend a few million to a few tens of million to set up a bug-for-bug-compatible free and/or open project that exactly tracks Office. No "improvements". No "doing it our way". No "but that's patented", even. A drop-in replacement so that users don't need re-training, investment banks can be certain that their traders' complex derivatives (many of which are *defined* in Excel spreadsheets) will keep the same values, and designers can round-trip documents without fear of formatting whoopses.
Until that point, Microsoft wins.
Biting the hand that feeds IT
