* Posts by lansalot

426 posts • joined 23 Mar 2007

Page:

VESK coughs up £18k in ransomware attack

lansalot

Unsafe computing practices, plus people with too much access = customers affected.

Nice work indeed...

Still, at least the ransomers know who to target in the future!

5
0

Half! a! billion! Yahoo! email! accounts! raided! by! 'state! hackers!'

lansalot

I was surprised to find I had a Yahoo account - it looks like it went over when I registered for flickr years ago.

Logged in to find an inbox that was full of nothing but incredibly-obvious spam. So their spam filters suck for sure. Oh, and the page design... it was like a teenagers Myspace page.. :(

2
0

Malware figures out it's running on VMs and refuses to execute

lansalot

Re: ummm

Most-Recently-Used, most likely...

There's a lot of MRU lists populated in your typical windows installation - recent word, excel, publisher documents. Recent jpegs opened, recent folders visited, network locations browsed, internet history etc. Lots of places that a "real" machine will populate with evidence of actual work.

5
0

I want to remotely disable Londoners' cars, says Met's top cop

lansalot

"You're only supposed to lock the bloooody dooors off!!!"

12
0

Microsoft snubs alert over Exchange hole

lansalot

Re: it only takes only four lines of code and a local config file

Bother because you can potentially grab credentials that will get you to other parts of the infrastructure you don't already have access to.

10
1

UK Labour man Owen Smith: If you wanna be a leader, you gotta stop with that lens

lansalot

oh..

"Clearly no harm was done"?

How do you know?

8
0

Samsung's million-IOPS, 6.4TB, 51Gb/s SSD is ... well, quite something

lansalot

*cough* how much? *cough*

9
0

Hitler ‘ransomware’ offers to sell you back access to your files – but just deletes them

lansalot

That doesn't work well when the people this most typically affects (home users) are local admins on their own machine, and the first thing the malware does is turn of versioning and deleting any existing snapshots...

2
0

Windows 10 Anniversary Update crashing under Avast antivirus update

lansalot

Re: Ahh yess

Probably just as well they removed Classic Shell then...

http://www.bleepingcomputer.com/news/security/audacity-and-classic-shell-download-server-hacked-by-pegglecrew-/

0
3

You think Donald Trump is insecure? Check out his online store

lansalot

PAH!

How dare you take credit for this, El-Reg...????

Don't you know - he ALONE CAN SOLVE!

1
0

Nitwit has fit over twit hit: Troll takes timeless termination terribly

lansalot

"Up, Periscope!" ??

1
0

15-year-old security hole HTTPoxy returns to menace websites – it has a name, logo too

lansalot

I see SNORT signatures, but has anyone come up with an easy way to scan/test for this? (SNORT being reactive of course, I'd rather know in advance..)

nmap, nessus, some funky python script etc?

0
0

NVMe SSDs tormented for months in some kind of sick review game

lansalot

Re: Use a benchmark or compile a large project

May be worth trying diskspd as well?

http://www.happysysadm.com/2016/06/measuring-iops-part-2-diskspd.html

I did see an article recently about some kit that could stress disks magnificently, but can't find it now...

0
0
lansalot

Re: cratered during file copy?

Ignore the "how were you copying" - screenshots (that I couldn't see too well on mobile) clearly show Windows Explorer.

That's buffered IO and it absolutely WILL bring a server to its knees. Next time, watch the memory tab go through the roof and when it approaches maximum, that's when your server starts dying. If you're using Windows Explorer for benchmarking to copy files, then you're doing it wrong - the amount of memory in your server is taking up the slack and your results are therefore invalid.

Next time, use "xcopy /j".

3
0
lansalot

cratered during file copy?

How were you copying, because if it wasn't unbuffered then no wonder it died...

0
0

When Capita job ads go BAD

lansalot

Re: Hertfordshite?!?

Ah.. I saw what you did !!

2
0

Firefox 48 beta brings 'largest change ever' thanks to 'Electrolysis'

lansalot

On the "many tabs open" thing, (and aware this is an FF post), on Chrome I use "The Great Suspender" extension which puts idle tabs to sleep. Works great in terms of keeping the resources low.

0
0

Is Windows 10 ignoring sysadmins' network QoS settings?

lansalot

Branchcache and WSUS - should solve most of his issues.

0
5

TeamViewer: So sorry we blamed you after your PC was hacked

lansalot

Big idea...

How about an automated email is sent to me whenever someone logs in to my account?

Costs nothing, low overhead, instant notification. Thankyouverymuch.

2
0

Picture this: Live 'net congestion maps for sysadmins

lansalot

CAIDA? As in AL CAIDA ???

Errr... Illuminati confirmed or something.

0
0

Database admin banned from Oxford Street for upskirt filming

lansalot

Remarks about immigrants: ✔️

Anonymous coward: ✔️

28
8

Surrey teen charged over Mumsnet hack attack

lansalot

Ironically, he's probably crying for his mum round about now...

3
0

5% of drivers want Nigel Farage to be their in-car robo butler

lansalot

puff pant...

But who will get in first with the "ah but he just kept repeating that I should turn to the right, and we ended up going round in circles" bit...?

1
0

Huge embarrassment over fisting site data breach

lansalot

...

And this is why we get a regular penetration test.

I'll skip this one tho - it's not something I want a hand in..

1
0

Linux command line mistake 'nukes web boss'S biz'

lansalot

Reeks...

Before the post was removed, he had laid a comment saying that he'd managed to recover it all. There was a further comment asking the obvious "how did you do that" which hadn't been replied to before the thread was locked.

Stinks to high heaven, this one... It has to be a troll/fake.

8
0

SQL injection vuln found at Panama Papers firm Mossack Fonseca

lansalot

So does that mean their Drupal installation is off the hook then?

Either way, some very slack admins there..

http://www.theregister.co.uk/2016/04/07/panama_papers_unpatched_wordpress_drupal/

0
0

Too Naked for the Nazis streaks to literary glory

lansalot

Never read "A cultural history of the Anus", but I did glance a "A passage of time". I presume it's a similar story.

1
0

Steve Jobs, MS Office, Israel, and a basic feature Microsoft took 13 years to install

lansalot

WORST. PUNCHLINE. EVER

4
1

I beg you, please don't back up that secret directory full of photos!

lansalot

aye...

A friend gave me her dad's PC to fix once... I fired it up, and there was a videoCD in it with a suggestive label. Being an inquisitive fellow, I double-clicked.

A couple of rather nice young ladies taking an interest in each other, so I let it play for a bit. Until one crapped in the other one's mouth. Ewww...

Plug out the wall, knock on the door, "sorry, nothing I can do with it!!". Ruined my "he can fix anything" reputation for a bit, but yikes. I can't pass a coffee table without retching any more.

7
1

HPE has released a Gen 2 hyperconverged... er, thingy. Here's the lowdown

lansalot

"one that’s 20 per cent of Nutanix's cost"

"all at 20 per cent lower cost than Nutanix.”

Which is it?

1
0

One-third of all HTTPS websites open to DROWN attack

lansalot

"A team of researchers from universities in Germany, the US and Israel as well as two OpenSSL developers - implemented the attack and can decrypt a TLS 1.2 handshake using 2048- bit RSA in under eight-hours using Amazon EC2, at a cost of $440."

1.2....

2
1

Building a fanless PC is now realistic. But it still ain't cheap

lansalot

easy done

Mine was totally fanless for a while - a Zalman reserator (basically, a big fanless external radiator tower) cooled the CPU, NB and GPU. It was a superb bit of kit. I had the drives in aluminium accoustic caddies and it was pretty eerie hearing only a beep at POST. QuietPC must have had a small fortune out of me ;-)

http://ic.tweakimg.net/ext/i/1084051489.jpg

Only sold it because the toddler was far too attracted to those lovely blue (and easy to reach) water pipes.

7
0

Brits unveil 'revolutionary' hydrogen-powered car

lansalot

What if you drive relatively smoothly and don't stand on the brakes at every junction..?

5
0

Why Tim Cook is wrong: A privacy advocate's view

lansalot

Doesn't read to me like there's a design flaw - FBI are asking if it's possible to do this ("make a new version of the iPhone OS"), and Apple are saying "we've been asked to do this and we're not, as it's a bad thing; it introduces a design flaw" - which by implication would suggest that it's not already there and as such it's currently a pretty watertight design.

Trevor's argument sounds a bit like saying "if you reprogram trucrypt and can somehow install it, then you can have the contents of my hard disk without my password". Which I don't think sounds very likely to anyone.

1
0

Ransomware scum infect Tinseltown hospital, demand $3.6m

lansalot

Re: Bastards

Targetted attack, spear phishing. Equipment doesn't need to be available from the internet for that. Also, if cryptowall, then it's files and network shares. Which would pretty much be guaranteed to be internal, behind any firewall. These things don't go out looking for open file shares on the internet to infect.

1
0

This Android Trojan steals banking creds and wipes your phone

lansalot

Re: Is it just me?

Because "full device encryption"...?

5
0

School network manager wins £10,000 in NCC Group Cyber 10K challenge

lansalot

...

10 grand for that?

Fuck me.... what must the other entries have been like !

Already exists anyway:

https://ninite.com/updater/

http://www.flexerasoftware.com/enterprise/products/software-vulnerability-management/personal-software-inspector/

5
0

Did a hacker really pwn the FBI, US Homeland Security and the DoJ?

lansalot

Yawn.. Call me when it's Steven Avery and aliens...

0
0

Land Rover Defender dies: Production finally halted by EU rules

lansalot

also..

It's a Land Rover - if there isn't a pool of oil underneath it, that means there's none in it.

30
2

Still running IE10? Not for long, says Microsoft

lansalot

Re: How many corporate pages will break

Doesn't work in XP, but neither does IE11. It's not supported.

Out of interest, Server 2012 latest supported is IE10, and Server 2008 (not R2) latest supported is IE9.

0
0
lansalot

Re: How many corporate pages will break

That's why they have IE11 Enterprise Mode. Basically, you can via GPO deploy an XML file which says "load this site in IE8 mode", "this site in IE10 mode" etc.

1
0

VW's Audi suspends two engineers in air pollution cheatware probe

lansalot

All well and good except..

Saw an American senator (I think) who was a former engineer, and on some committee who said that if such advances had been made that gave significantly better emissions, and/or performance, then it would be quite the discovery. The sort of thing that any responsible corporation would rush to patent.

So the question isn't "how come nobody except the dodgy engineers knew", but "how come VAG were so uninterested in their awesome technical advances that they somehow didn't patent it"?

Unless of course, they're lying....

3
0

Mostly harmless: Berlin boffins bleat post epic TrueCrypt audit feat

lansalot

Re: Well, hurray..

Bold and italics are AWESOME.

(as are caps).

1
1

Teenage boy bailed until November over TalkTalk incident

lansalot

Re: this lad

Option 4 (and the most likely) - a script kiddie.

5
0

TalkTalk incident management: A timeline

lansalot

it's a shame that "I have no faith left in you, you incompetents" isn't considered a valid enough reason to leave.

14
0

New mystery Windows-smashing RAT found in corporate network

lansalot

finally...

"A test in our labs revealed that under certain circumstances Moker communicated with a server registered in Montenegro. The Montengro-based server was referred by several other domains registered in African countries. It’s important to note however that these registered domains cannot give an indication of the threat actor’s identity or physical location as it certainly makes sense to think that the threat actor either used compromised servers or purchased dedicated-only servers in other locations to confuse researchers and law enforcement agencies."

Makes a change - shame everyone else just jumps straight on the "it communicated with a server in China, therefore it's clearly the Chinese" idiocy-bandwagon?

13
2

AdBlock blocker biz bought

lansalot

...

I'd be more worried about the fact that the codebase is now in another's hands. Who knows if their intentions are perhaps quite as honorable...

40 million machine botnet, anyone?

0
0

Facebook's security now sexier, with killer curves

lansalot

What better way to get a huge sample of similar mail ("OMG!!") encrypted with a thousand different keys, to see if you can factor a brute-force?

1
0

Sony's 4King with us now: Xperia Z5 mobe has UltraHD screen, cam

lansalot

hmm...

I have a Z1 for the past 2 years... For most of that time, the camera has been unreliable. Then, they upgraded it recently to lollipop and hooray - camera fixed!

Unfortunately, with minimal apps loaded (and I even did a factory reset), the phone is now rendered so slow it's incredible. You can watch the icons draw. I'm not alone in this. There's a lot of people waiting for a fix - you'll frequently find yourself re-pressing buttons thinking you must have just missed them the first time round. For a jump into chrome, it might take >5 seconds for example. Come back out to the home screen, you'll randomly find a 5 second delay as the screen gradually fills in.

So, beautiful hardware - but what's the point if the software lets it down? For over a year, I was plagued by the camera popping up, seeing what you wanted in the viewfinder, pressing capture and then getting "camera not available". As a camera, it was totally worthless to me. Now it's just an unfeasibly slow brick.

0
0

Page:

Forums