1321 posts • joined 15 Mar 2007
"Yes it has. Many organisation like banks and governments institutions have access to the source code. This is again a matter of public record."
Can I get access to this code and pass it on to a suitable organisation of my choice to check it openly? Thought not.
"I don't care if it works on Mac OS or Linux. Those are not supported desktop OSs in 99%+ of companies."
Well I do because Windows is only about 20% of my organisation's desktop use. What use is a web-based system that is OS-specific?
"As opposed to the keys being with the vendor in the cloud and you not knowing if you data has been accessed."
You really want me to trust MS on this point? Try googling "_NSAKEY" and come back with a better offer.
Sadly MS have failed here, as have Google, and most other "Cloud" vendors. The key points have to be:
1) It is OS-agnostic. Unless it covers Windows/Mac/iOS/Linux/Android then it is no use to me and going to be .
2) The encryption layer, at the very least, has to be open source and client-side, otherwise how can I verify it?
3) There has to be an easy way to migrate from provider to provider if I don't like the cost or T&C of the initial provider. Given most fail on (1) and (2) then (3) is a inevitably dead loss.
You see there is nothing inherently wrong with "cloud" storage and so on, but until there is no vendor lock-in and proper privacy then I am giving it a wide berth. I sincerely hope others do as well.
Re: AC 12:55
"Erm, no The cost of physical installs of Office is included in the rental cost. the major advantage of Office 365 (apart from no infrastructure and limited management costs) is that it scales up and don on a monthly basis as you require. Don't need it next month? No problem - just stop paying for it."
Really? I get a copy of Office for my local PC and can keep it if I stop paying the Office 365 subscription?
Re: AC 12:55
"Well firstly it's not unencrypted - all traffic and data are encrypted. Secondly you can supply a second level of protection to sensitive information via Active Directory DRM that Microsoft (or the US government) would not have access to."
Point 1: Traffic encryption means not much (even less considering the multiple points of failure in the SSL certificate generation process if someone really is out to get you), and is incidental if you encrypt before transfer.
Point 2: This "Active Directory DRM" that you speak of, has its source code been verified by 3rd parties as having no recognisable back doors? Given Office 365 is supposed to be web based, will it work using MacOS and Linux?
If the answer is no to any of those, you have failed me.
"I trust Microsoft a lot more than I do Google who are the other major alternative, and who's core business is selling your data to dvertisers. If that's not good enough then there are plenty of EU based companies like Colt that will sell you a similar platform on EU only datacentres..."
Point 3: I did not say I trusted any of the other major players else instead (Google & Dropbox have the same or worse failings). That was my point about "verifiable client-side encryption" so I don't need to trust them.
"No you don't necessary know if it is happening. There is a requirement of confidentiality on those requested to provide access to your data."
Point 4: Err, so just how do they access my encrypted data if I was using verifiable client-side encryption with a non-trivial password?
Almost impossible without demanding the key, and if they do then _I_ know they have asked.
You read, but did not understand.
Fine if you don't care about privacy
All of your data, unencrypted, in the hands of a US company. What could go wrong?
Add to that the rental cost versus just buying MS Office (or indeed using those copies you already have) and using it for 5-10 years as a lot of us have done, nope - not attractive.
Now if someone is going to offer a service with verifiable client-side encryption so travelling workers can get the on-line sharing without exposing their data to Uncle Sam (or any other company or government), that would be worth while.
Even though MS offer EU-hosting, it is still not good enough. Do you trust MS? All of its employees around the world? Any foreign gov where a data centre is hosted?
And yes I know the courts can ask for access to your data even if encrypted, but (A) that requires some form of due legal process, and (B) at least you know if is happening.
Re: I don't even use TPB...
Yes, just imagine all of the effort directed at providing stuff that people want to buy, and in formats they are happy to pay for, and at prices that reflect the major reduction in overheads of a download (or P2P transfer) compared to bricks & mortar stores.
Some smart business men/women must have thought of this?
Re: Well in the classical world...
The evidence is in the form of statues like Michaelangelo's David and various Greek and Roman ones (except those of Baccus, of course, but he epitomised drunken lewd enjoyment)..
Nice to see WiFi driver problems are not a uniquely Linux problem. MS now enjoying the responsibility of making their own hardware work correctly...
Re: you may be able to back up your server...
"how long will it take to pull all that data back?"
Is that not one of the critical issues about 'cloud services' in the sense of how easy can you migrate providers if/when the cloud provider starts tightening the financial screws?
Re: In-church entertainment.
The preacher's daughter?
Maybe - can anyone answer here how good the SMART equivalent is for flash drives in telling the system about the underlying health/error rate of the storage elements that are being degraded on write?
What, are they not also supporting the Itanium processor here?
Re: Is the scary part just a page in a browser?
The weakest link is usually the user.
I gave up on supporting Windows for family friends for exactly the same reason.
Now they get Linux and its fine. The odd complaint about not being able to do something, play some game, etc, but until those malware ba*tards decide Linux is lucrative enough to target I have but a fraction of the call outs to deal with screwups.
Probably by means of the other fools who sign up for the 419'ers "we have finds to be transferred from an African prince's account" bullshit emails.
I think you will find most users do not have transferable Windows licenses, I did when I bought a machine that came with w2k, but later machines have the non-transferable OEM versions and often no CD/DVD.
You know that step when Windows suggests you make a recovery DVD? Well most folk ignore that...so those who put on "a copy of Windows" usually have got some dodgy cracked version of XP that gives them no end of grief.
The majority of folk are not El Reg readers, and they do not have anyone to setup their system securely or to teach them how to do so. That is is one major reason for the grief they suffer and (rightly or wrongly) blame MS for it and choose iOS instead.
I suspect that AC is the commentard formally known as RICHTO, who is the sort of anti-Eadon of these forums with their equally extreme pro-MS/anti-Linux views. But still we fail by feeding the Trolls...
Re: "incorporated virtual machine detection"
So why not run your windows-specific software in a VM on something else? If the malware writers self-censor to avoid analysis, then use that to protect yourself.
Re: Three systems ..
Technology is really not an answer to stupidity in society, though often our leaders seem to think so.
Re: zpool scrub == fsck
I have seen HDD kicked out of Linux md RAID for no obvious reason, no SMART errors, etc. Add it back in and after a rebuild, all is fine. Guess it is an issue of the flaky disk and/or controller and/or driver software. Were you using "enterprise" class disks and stuff?
Either way, you still have to monitor ALL systems for errors!
Also you should do a ZFS scrub regularly, same for Linux RAID or any other technology, as it helps weed out disks with sector errors or that are close to dying. What you DON'T want is to have is an HDD fail, and then find others go during the rebuild.
"That kind of undermines much of the point of having the newest and shiniest FS available now doesn' t it?"
No, because it means for most of your time the data is safe and you can consistently back-up by taking a snapshot and backing that up while life goes on.
But when you get a fire or flood in the server room, or "gross administrative error" destroying the wrong zpool as someone is doing some other work, you actually have a way of recovering.
Should read "of 1 GB RAM per TB".
Also use 64-bit Linux even if you don't have more than 4GB of RAM, as various ZFS things were designed to assume a 64-bit basic CPU as minimum.
Re: Add / Remove disks?
Google and ye shall find:
'zpool add' etc is how it is done. But play around with a couple of old HDD and test data for a while first so you find out what goes wrong before it bites you with real stuff.
Oh, and never ever forget the mantra "RAID is not Backup" - checksums and snapshots are all very good, but no backup means no safe data!
Not particularly. In the sense of what you need for a big NAS that is.
Typically the suggested value if !GB RAM per TB of storage, but that is kind of based on the expectation of more IOPS as storage get bigger, so more caching helps.
Running de-dupe is always memory intensive for a big file system, and not all usage patterns make it worth while. If you have lots of VMs then de-dupe and put in *lots* of RAM. Otherwise you can work with a couple of GB if your I/O demands are not that high.
"disk itself checksum its blocks"
The problem is disk do checksums, but sometimes they don't see an error. Could be one of the rare patterns that happens to match the algorithm and gets by, could be a similar fault on the data going to/from the HDD, etc.
Most HDD claim something like a 10^-14 error rate, but a 4TB disk has 3.2E13 bits...
Hence XFS applies additional checksums on top of the HDD checks to provide a much reduced chance of an error getting through. MUCH reduced.
There was a paper from CERN a few years back on this sort of thing, covered RAM errors, HDD controller errors, disk errors, etc. Bottom line was if you have a lot of data and/or valuable data, you need more verification than HDD offer internally!
What temptation is there?
Really, most PCs are not exciting and the prices they want too high. Like the ~£1k for a basic 1080 line screen.
What happened to anything decent that is not 16:9 crap?
Oh yes, all that is left is the Apple MacBook Pro and Google's new Chromebook Pixel. They might see my money at some time in the near future, not the pedlars of crap stuff to watch DVDs on.
Oh, sorry, no DVD drive any more and still technically illegal to rip my own disk to play it from the HDD...
Re: Hey, you, get on to my cloud
You forget the "electricity" has no unique properties, my amperes do just the same as yours.
With IT it is the underlying problems of:
(1) Data protection. How many providers have client-side encryption by default so they (and foreign gov) can't spy on you?
(2) Bandwidth. If your task is computing-heavy, then you have a real problem with (1) (can't secure it remotely as it is on someone's VM so can be imaged while unencrypted) but not much with I/O bandwidth. However, if you work on a lot of data-heavy tasks then your ISP link will become a serious bottle neck and could run up a mighty bill.
(3) Redundancy. Oh sure, the likes of Amazon, MS, etc, have lots of hardware redundancy and similar, but also they may have a single point of failure (e.g. certificate recently in MS' case) and your ISP is likely to be the same. While your own building is also at risk, given the number of failure points for the ISP(s) between you and them it is much worse. And paying serious money for another provider is no guarantee it won't share the same fibre trunking, etc. (Actually, a local JCB mistake is more likely than large scale ISP outage).
Some may argue without an Internet like, your business is stuffed, but not always. Quite a lot of jobs (CAD, video editing, writing up reports, business planning, general HR duties, etc) can be done for a while with no external link at all.
(4) Lock-in. Once your balls are in the vice, they can turn the screws on you and what can you do? How do you migrate TB/PB of data from one cloud to another? Is that data really open, or locked in to some software they had you use? Have you actually tested such a migration to see if and how painful it can be?
Sadly the article is probably right, as a lot of "youf" seem to care little about privacy or the long-term implications of their choices.
In this era of "free" minutes the caller should be in a position to know the price of all such numbers independently of the network.
It could be made to work for you as well.
For example, you get a fixed 7-digit number and it is prefixed 0845 for a given price, say, 5p/min. If they want to change more commission (if not fixed percentage by Ofcom) and on VodaFone you dial 0846, or 0847, etc for 6p/7p/etc. That was you get the same in all cases, and callers get to see which network is charging the most for non-"free" calls.
Morons at Vodaphone
Really? Why can't they simply fix the price of pay-numbers in to a standard table and make any sex lines, etc, change their number prefix if they want to change the cost?
Then you can see at a glance from the first 4 digits (or via an app that performs the look-up) what a call is going to cost. No need to tell kiddies anything about what those numbers are actually for then.
Muppets, and desperate ones at that.
Re: Jimmies rustled - Mission accomplished
I must have missed something, I always read El Reg as a leading on-line lesbian magazine...
1) You are assuming these people have the mobility, etc, to get to a library.
2) you are assuming they would know what to do when presented by the computers there.
3) you are assuming the spending cuts won't close the majority of libraries, etc, in the not too distant future.
Re: All Watched Over by Machines of Loving Grace
The Devil makes work for idle hands - or was that glands?
Re: Horizon of 35+ years ago
The other thing is aircraft are hugely expensive and have very strict regulations on servicing schedules, etc, due to the safety impact of anything going wrong.
Will these driverless cars turn out to be too expensive to achieve an acceptable degree of fail-safe hardware, software, and maintenance? How will insurance companies deal with the risk, will it then be based on your model & firmware revision due to its history of crashing?
Numeric porn, something with 69 in the equation?
Re: Please don't happen here too...
True, El Reg is advert-sponsored as well, but given its rather tech-orientated nature those adverts are often of stuff I actually am needing/interested in.
OK, maybe not as interesting as some "speciality" sites, but here the adverts are less shame-provoking...
Re: Sponsor message
Well trolled sir (madam?), have an upvote for being this first on this page.
Re: physical DRM
What are you scanning in your pocket? Or are you just please to see us?
True, but if it is a case of money from Apple that is less than x86 or Apple staying with Samsung and getting nothing, not so simple.
I suspect the bigger worry for Intel is if this indirectly leads to more interest in ARM for servers running massively threaded code where lots of cores at high MIPS/Watt is far more attractive than high-profit high-end x86 chips.
"seem to point towards the new x86 chips being very close to competitive with ARM"
But how much of that is down the the chip design (i.e. logical structure) and how much of that is down to Intel having a ~2 year lead on advanced manufacturing processes?
If they are matched simply because a 2 year advance makes the x86 equal to the ARM for power-critical tasks, then ARM is still a winner for most, and if Apple do get access to the best fab service then they will have a major advantage over all others.
That alone, far more than not paying Samsung for fabbing, would help Apple in the premium smartphone arena.
Why just FRAND?
Really, stop all of this injunction business on patents and allow the courts to swiftly decide the 'value' of such claims and then get party A to pay party B what is reasonable for it, and to enforce a transparent settlement so cartel-like operations to price out newcomers is not an option.
Considering there are hundreds, if not thousands of patents, for any complex product we should see more sensible settlements of a few quid per half-dozen patents on a ~£200 device.
Re: Just as I expected.
That could well be due to not being able to do much of note on a Chromebook, unlike a full-flavoured penguin.
<= He may look cute, but turn away and he will eat you Uncle Fester.
As I asked before, what law?
Please quote the text of this law, or cite some reference to it in any EU documents, or as a last resort give us a link to a Wikipedia article on it.
I say this is simply a case of MS licensing strong-arm tactics.
"EU laws say "maschines sold to privat users must include an OS""
Can you be specific about that?
AFIK this was something MS insisted on to get good DOS/Windows pricing for OEM deals, which of coure all the big PC vendors want. You can buy a PC from small custom-build PC shops without an OS, so I smell BS here.
Laptop screens are crap
Really, its true. The "best" of almost all (excluding Apple retina) are 1080 lines, that is poorer than my 17" CRT monitor of 10 years ago! Almost gone are the 1200 line models or 4:3 aspect ratio, both much better for everything except watching DVDs. But that is cheap, so the computing industry has gone to using TV screens instead of 'better'.
I would be perfectly happy with normal (i.e. non-retina) resolution if I could get more height, but today you pay stupid prices for an "ultrabook" that has less display area then my father's ancient el-cheapo 15" 4:3 laptop.
I for one am not buying!
Re: Why a file system...
Of course there is also other tasks such as security & auditing, etc, that a file system currently performs. The memory management of most CPUs can also enforce access control but there is still some need for a structure & metadata to match.
Why a file system...
The problem with flash memory, which it shares with HDD in many ways, is it is block-orientated. Also the block erase operation is many orders of magnitude slower than a read. The job of organising reads and writes in to blocks is one task of a file system.
The other, of course, is to provide the organisation of said blocks in to logical entities as files, and to do so in a manner that is reasonably fault tolerant of (partial) media failure or unexpected crash/power-off events.
Until someone has NV memory that can be word-addressed for writing without the erase speed penalty and the limited write numbers of flash, it still makes sense to treat 'storage' and 'memory' as different things. You could have fancy RAM caching over flash with battery back-up so it can be committed to NV storage on an unexpected event, but I guess we already have that with a laptop's suspend feature.
Re: How do they not get this?
Same here - the only laptop I could find with a decent screen so far is the Apple retina with 16:10 and high resolution, but very high price and I am deeply unimpressed by the "features" such as glued-in battery and no standard Ethernet port.
The Chromebook with another version of Linux on it is looking more like it, but really why can't I buy anything that has a decent vertical size/resolution any more?
Yes, I know they all use TV screens and pass on the cost saving which is why the new ultrabooks are so affordable. Oh, did I get that wrong? Damn :(
Re: So Long
Apparently she is moving it to something involving tentacles, my initial thoughts involved a speciality Japanese form of cartoon, but sadly probably not :(
<= Still, have a virtual one from me
Not working is not the problem
My problem is when some IQ=80 thief thinks it will work! The loss of my hand is far, far more worrying than my bank account.
Re: @Graham Newton
Also the arcing problem tends to be during out-gas when the pressure get low, and you have high electric fields (e.g. radio transmitter filters with high Q resonators). Less of a problem one you really have near-vacuum.
I wondered about that - more specifically about the phone's battery still being fitted and/or out-gassing from the LCD panel.
No - saviour of the universe!
An alternate one, at least to here...
- Video Hubble snaps SPACE CRUMBLE enigma 'roid
- CIA snoops snooped on Senate to spy spy torture report – report
- Google offers up its own Googlers in cloud channel chumship trawl
- Updated Newsweek knocks on door of dad-of-six, tells him he invented Bitcoin
- Interview Global Warming IS REAL, argues sceptic mathematician - it just isn't THERMAGEDDON