nav search
Data Centre Software Security DevOps Business Personal Tech Science Emergent Tech Bootnotes
BOFH
Lectures

* Posts by stephanh

428 posts • joined 25 Sep 2014

Page:

Samsung Galaxy Note 9: A steep price to pay

stephanh
Silver badge

Re: the square root of 2n + 1

√(2n+1)

√ is on the Android Gboard keyboard.

2
0

Space, the final Trump-tier: America to beam up $8bn for Space Force

stephanh
Silver badge

Re: "There's no reason for the Air Force to exist"

I think they still need something UNDERGROUND, the "Mole Force" perhaps?

2
0

ZX Spectrum Vega+ blows a FUSE: It runs open-source emulator

stephanh
Silver badge

Re: GPL

IANAL, but I don't see how bundling a GPL emulator with some emulated games does not require the entire thing to be GPLed. This doesn't seem "mere aggregation" to me; the bundled games don't do squat without the GPL-ed code.

2
7
stephanh
Silver badge

Frankly 4/10 seems vastly overrated.

I would immediately award a base score of 0 for the promised but missing games, then start subtracting points for the shoddy case and everything else which doesn't work.

I think we should be looking in the negative 200-300 range here.

15
0

For all the excitement, Pie may be Android's most minimal makeover yet – thankfully

stephanh
Silver badge

Re: Clipboard

I recall doing something similar with OLE on Windows 3.1, embedding a widget from another app in your program.

1
0

Wondering what to do with that $2,300 burning a hole in your pocket?

stephanh
Silver badge

Re: So they tell us version 2 and 3 are already on the way?

Telling your customers a much better product is just around the corner is always a great idea, just ask Adam Osborne.

3
0

Imagine Python fan fiction written in C, read with a Lisp: Code lingo Nim gets cash injection

stephanh
Silver badge

Re: Interesting but ugly

Case-insensivity was a necessity in a time when many systems where UPPER CASE ONLY, so for interop reasons you either had to KEEP SHOUTING or settle on a case-insensitive system.

That's the reason many "old" languages (Lisp, Pascal) did it.

Everybody sane tries to spell identifiers with consistent capitalization anyway, since otherwise code becomes a complete mess. Given that, case-insensitivity bears no practical advantages anymore.

In a Unicode world, correct case normalization is incredibly complicated and language dependent, see https://www.w3.org/International/wiki/Case_folding for an overview of some issues. For extra fun, the case folding rules are updated with each Unicode version so make sure to keep your software up-to-date.

4
0

Bank on it: It's either legal to port-scan someone without consent or it's not, fumes researcher

stephanh
Silver badge

Re: Another reason do disable javascript

Fortunately in-browser JavaScript does not allow arbitrary TCP connections. The "port scan" is done by making HTTP requests and timing how long it takes to error.

So this cannot be used to connect to an unsecured X server running locally, although it may be able to *detect* such a server.

(Note that the link was to a Node module, which *can* create arbitrary TCP connections.)

1
0

Internet overseer ICANN loses a THIRD time in Whois GDPR legal war

stephanh
Silver badge

Re: Not legally binding...

"So what you are saying is that we may end up with a separate EU internet segment, without access to sites in the US, Russia, China, etc."

More likely a set of regional, independent DNS roots which have some peering arrangements between them. Except when they don't, and URLs start resolving to different sites in different countries because of some political spat.

Not the end of the world, but also far from ideal.

2
1

Chip flinger TSMC warns 'WannaCry' outbreak will sting biz for $250m

stephanh
Silver badge

Re: so installing critical security patches

@MrReal

"Some of the computers that run these fabs are stuck on obsolete versions of Windows NT"

Earlier reporting on WannaCry indicated that it could not infect Windows XP, only Windows 7. I assume NT is then also not "supported".

Based on this, I would assume that the infected computers are Windows 7 which means that a patch was available (for a long time). I realise there is always a risk in patching in an industrial system, but as we have learned many times before and now again, *not* patching also comes with a risk.

0
0
stephanh
Silver badge

so installing critical security patches

on critical infrastructure is still not a thing?

Yeah, I understand these systems were "air-gapped". Supposedly.

1
0

ZX Spectrum reboot latest: Some Vega+s arrive, Sky pulls plug, Clive drops ball

stephanh
Silver badge

Re: Over on eBay

Now all we need is a port of "E.T." to the Vega.

12
0

Well, this makes scents: Kotlin code quality smells better than Java

stephanh
Silver badge

40 per cent less code than they would with Java.

Only 40% ? Man, Kotlin is verbose.

6
0

Basic bigot bait: Build big black broad bots – non-white, female 'droids get all the abuse

stephanh
Silver badge

Re: Last time I checked Spain was in Europe...

Many Caucasian Americans identify as Irish-American or Italian-American. Others do not.

Many African-Americans don't know precisely from which African nation their ancestors came.

Finally, African-American is a label people choose to apply to themselves. If they do so, one should respect that choice.

3
7

Linux kernel 4.18 delayed: Bug ate my rc7, says Linus Torvalds

stephanh
Silver badge

Re: Linus should really learn from Microsoft

Unix won because worse is better.

https://www.jwz.org/doc/worse-is-better.html

"...especially worthless is consistency of interface."

2
6

Ecuador's Prez talking to UK about Assange's six-year London Embassy stay – reports

stephanh
Silver badge

Re: definition of "rape" in this case is a broken condom

"That is rape according to British law."

Indeed, and note that the UK will only allow extradition if the accusation is also a crime under UK law, and that the receiving country (Sweden) is not allowed to bring additional charges unless approved by the UK.

There wouldn't be a case if the accusation was not considered a crime under UK law.

19
0

Facebook's React Native web tech not loved by native mobile devs

stephanh
Silver badge

Re: Facebook?

My thinking about (JS) frameworks is basically as stated here (I am NOT the author):

https://bitworking.org/news/2014/05/zero_framework_manifesto

Tldr: reusable libraries good, frameworks bad.

0
0
stephanh
Silver badge

Re: Facebook?

@JLV

What about this framework?

let shoppingList = document.createElement('div');

shoppingList.className = 'shopping-list';

Which is to say, just plain old built-in DOM.

And if you need to do that twice, put it in a function, like mother told you to.

1
0
stephanh
Silver badge

Re: Over the air updates

Apparently Apple allows CodePush (which is what Walmart is using).

https://github.com/Microsoft/react-native-code-push/issues/748

"Apple’s guidelines explicitly permit you to push executable code directly to your app, bypassing the App Store, under these two conditions:

* The code is run by Apple’s built-in WebKit framework or JavascriptCore

* The code does not provide, unlock or enable additional features or functionality"

5
0

Well, well, well. Crime does pay: Ransomware creeps let off with community service

stephanh
Silver badge

Re: Punishment in proportion.

"... the better sentence would have been to assign a number of C.S. hours for EACH proven incidence of infection."

The 240 hours is in fact the maximum community service which can be given under Dutch law.

Note that under Dutch law infecting multiple computers would be considered a single "strafbaar feit" ("punishable event"), hence limits apply to the whole punishment. This is the principle of the "meerdaadse samenloop".

2
1
stephanh
Silver badge

Re: "notoriously difficult language"

"I think Frisian is closer."

Frisian and English are considered part of the North Sea Germanic, or Ingvaeonic, subgroup of West Germanic.

Of course, English is unique among Germanic languages in that it took an enormous amount of vocabulary from (Norman) French and from Latin. And then Shakespeare came along and invented about 1700 of the most common English words.

5
0

Yakety-yak app HipChat whacked in Slack chat chaps' tech snatch pact

stephanh
Silver badge
Headmaster

"baled-in integrations with practically every other enterprise tool on the planet."

Mmm, baled-in? Let's see https://www.dictionary.com/browse/baled

1. noun:a large bundle or package prepared for shipping, storage, or sale, especially one tightly compressed and secured by wires, hoops, cords, or the like, and sometimes having a wrapping or covering: a bale of cotton; a bale of hay.

2. a group of turtles.

3. verb (used with object), baled, bal·ing. to make or form into bales: "to bale wastepaper for disposal."

OK, so afterwards you end up with a big bale of enterprise tools, all tightly compressed and secured by wires, hoops, cords, or the like. Sounds about right.

2
2

You can take off the shades, squinting Outlook.com users. It has gone dark. Very dark

stephanh
Silver badge
Facepalm

So this great technical breakthrough was achieved....

....by editing the colors in the CSS?

Well, I can see that taking all of a day, if the CSS was particularly badly factored.

6
0

Hooray: Google App Engine finally ready for Python 3 (and PHP 7.2)

stephanh
Silver badge

about bl**dy time

With only 17 months of life left in Python2, Google App Engine customers can finally start porting their code.

4
0

Insecure web still too prevalent: Boffins unveil HSTS wall of shame

stephanh
Silver badge

Re: Fearmongering, Uncertainty and Doubt

FYI, the Japanese, Dutch and Taiwanese government have their own CA.

4
0

On Android, US antitrust can go where nervous EU fears to tread

stephanh
Silver badge

Breaking up AT&T worked so well

...now it's bigger than before the breakup.

26
4

Microsoft still longs to be a 'lifestyle' brand, but the cupboard looks bare

stephanh
Silver badge

Re: Once Upon A Time......

You forgot the most famous one: they bought 86-DOS and re-badged as MS-DOS

9
0
stephanh
Silver badge

Re: I've got a solution - straight out of the automotive industry

They have XBox as "cool" consumer brand. It has been suggested at the time that Windows Phone should have gone for an XBox branding ("XPhone").

It didn't look like desktop Windows anyway. And didn't have windows.

6
1

Microsoft Visual Studio Code replumbed for better Python taming

stephanh
Silver badge

explaining Jedi

Jedi is a autocompletion/static analysis engine which is widely used in the Python ecosystem. For example, by IPython/Jupyter notebook, and also by Vim's YouCompleteMe plugin. And so far by Visual Studio Code.

That's why you *disable* Jedi to get the new thing.

I suppose it is sad but unsurprising that Microsoft chose to roll their own thing rather than contribute to Jedi.

8
2

ME! ME! ME! – Intel's management tech gets a quartet of security fixes

stephanh
Silver badge

I 've got the Power

Looked at the "Talos™ II Desktop Development System".

At $5,120.00 for the entry-level model, it is almost conceivable to own one.

1
0

♫ The Core i9 clock cycles go up. Who cares where they come down?

stephanh
Silver badge

i9 works great in a suitable chassis

Check out the MSI GT75 Titan.

4.5 kg full of ventilators and heat pipes to keep things cool. And apparently it works.

Perhaps Apple and Dell can learn from this design.

Did I mention the Titan has *two* power bricks?

13
0

Windows Server 2019 tweaked to stop it getting clock-blocked

stephanh
Silver badge

Re: Just do what my company's IT folks do...

After all, it's Windows, you were probably due for a reboot anyway.

[ducks]

4
1
stephanh
Silver badge

Re: how do we progress beyond using this irregularly spinning rock?

There are tons of applications which require accurate time but don't care a bit about what the spinning rock does. Makefile timestamps, log timestamps...

Leave the translation from TIA to "on the morrow of the Ides of March" to some user interface layer.

0
0

IBM attempts to graft virtual machine security onto container flexibility

stephanh
Silver badge

2x more secure

So it was 200 Securons for Nabla while only 100 Securons for Docker?

0
0

Samsung’s new phone-as-desktop is slick, fast and ready for splash-down ... somewhere

stephanh
Silver badge

linux on android

You can nowadays run a complete Linux distribution on Android.

https://github.com/sp4rkie/debian-on-termux/blob/master/README.md

This does NOT require root.

Desktop is provided through the "Xserver SDL" app.

1
0

People hate hot-desking. Google thinks they’ll love hot-Chromebooking

stephanh
Silver badge

Re: Mainframe?

"So what is it that's new again?"

Well the *claim* is that, unlike a VT100, the chromebook is still somewhat useful when the network goes down, because stuff is cached locally.

How well this works out in practice, I have no idea, having managed to avoid Chromebooks so far.

1
0

Official: The shape of the smartphone is changing forever

stephanh
Silver badge

But 4/3 is not equal to 1.33

You are 1/300 short.

If we use repeating decimal notation, I am OK: 1.3̅

2
0

Trump wants to work with Russia on infosec. Security experts: lol no

stephanh
Silver badge

Gas wasn't used much *on the battlefield* in WWII because it had already lost its effectiveness during WWI once suitable protective measures were developed.

Of course, gas saw plenty of use in murdering unprotected civilians.

10
0
stephanh
Silver badge

Re: Don't get sheep herded by the fake news media

Putin is emulating Augustus[1]. Like Augustus, he takes on an office, then releases it when constitutionally required. But in any office, he holds absolute power.

Putin is a bastard, but a magnificant bastard. And Trump is an oaf.

[1] the Roman emperor, not the month

16
1

Gov.UK to make its lovely HTML exportable as parlous PDFs

stephanh
Silver badge

Re: Been there, done that

"If only HTML were XML structured data."

That would have been nice. But since XHTML went nowhere, it isn't.

1
0
stephanh
Silver badge

Re: Print to PDF

"It's that they need to format the HTML in particular ways so that the generated PDF is accessible, functional, etc."

Actually Chrome's print-to-PDF is pretty good at this, frankly. The resulting PDF document is fully searchable, text can be selected, etc.. I presume this means a screen reader would be effective (since clearly the original text is preserved as text). Hyperlinks in the original HTML become hyperlinks in the PDF.

If there is something missing, it would make sense to contribute it to the open-source Chromium codebase rather than invent a wheel with more corners.

Of course, if your original HTML was sh*t from an accessibility POV to begin with, print-to-PDF is unlikely to improve upon the situation.

1
2
stephanh
Silver badge

Re: Print to PDF

You can even automate this with Chrome, since it can be invoked from the command line.

chrome --headless --disable-gpu --print-to-pdf https://www.theregister.co.uk/

See also: https://developers.google.com/web/updates/2017/04/headless-chrome#create_a_pdf_dom

0
0

GitHub to Pythonistas: Let us save you from vulnerable code

stephanh
Silver badge

pickle

"While the Python language has very few known vulnerabilities"

What do you consider a known vulnerability?

From Python docs:

"The pickle module is not secure against erroneous or maliciously constructed data. Never unpickle data received from an untrusted or unauthenticated source.Unpickling data from an untrusted source, allows an attacker arbitrary code execution."

And of course, tons of other modules use pickle under the hood.

0
0

One two three... Go: Long Pig Microsoft avoids cannibalising Surface

stephanh
Silver badge

Re: Does not run Fortnite?

Fortnite runs on the ipad. So do tons of other games. Ipad has much more GPU oomph than the Intel HD 615 in the Go.

0
0
stephanh
Silver badge

Re: "It's an office runtime for students"

I imagine students care more if it runs Fortnite. Which it doesn't.

(Apparently you need at least a core i3 @ 2.4GHz to scrape by at the lowest settings.)

4
0

That went well – not! Broadcom’s value dives after CA biz gobble

stephanh
Silver badge

it's obvious

They are going to port all that mainframe software to the Raspberry Pi.

6
0

Forking hell. It's summer, and Windows 10 is already thinking about autumn

stephanh
Silver badge

Re: Why use Edge?

There exists nowadays even Edge for Android, and it is surprisingly good. Although I don't see how I can install an adblocker, which is the reason I normally use Firefox on Android.

Posted from Edge for Android.

0
0

Crumbs. Apple has tweaked the MacBook Pro keyboard

stephanh
Silver badge

"an improved third-generation keyboard for quieter typing"

Well, sure happy they have resolved the main issue with the keyboard then. The noise. Right.

18
1

'It's legacy stuff brute-forced in': Not everyone is happy with Citrix's cloud

stephanh
Silver badge

Re: "Citrix Cloud"

"It's not-yours all the way down."

*Especially* when it is down.

2
0

Page:

The Register - Independent news and views for the tech community. Part of Situation Publishing