* Posts by lansalot

433 posts • joined 23 Mar 2007

Page:

Mirai IoT botnet blamed for 'smashing Liberia off the internet'

lansalot

Krebs says not:

https://krebsonsecurity.com/2016/11/did-the-mirai-botnet-really-take-liberia-offline/

0
0

Appointments on hold as (computer) virus wreaks havoc with NHS trust systems

lansalot

A free hip, says it's ransomware...

3
0

Researchers expose Mirai vuln that could be used to hack back against botnet

lansalot

Fine, you don't advocate hacking back.

Now, it only takes *one* of you to deviate from that, and put a stop to these miscreants. I wouldn't lose much sleep over it in this instance, if it were done properly.

4
0

Fujitsu seeks PC exit, finds willing buyer in Lenovo

lansalot

Re: Do people really buy them

Not desktops - but their laptops are actually pretty awesome.

2
0

DNS devastation: Top websites whacked offline as Dyn dies again

lansalot

Dear whitehats

Please change all the passwords on those insecure devices to something random.

Thx

Everyone-else

0
0

Windows updates? Just trust us, says Microsoft executive

lansalot

Morning, Microsoft !

Funny you should ask about the whole "trust us" thing.

I've come in to work this morning to find 175 servers out of ~600 that are refusing to install Endpoint Protection AV updates. No known cause as of yet.

I'll keep working on it, but thanks for reminding me we can totally trust you not to screw things up.

1
0

When Pornhub meets the Internet of Fridges

lansalot

Wouldn't cause a problem if they use Deep Freeze...

3
0

VESK coughs up £18k in ransomware attack

lansalot

Unsafe computing practices, plus people with too much access = customers affected.

Nice work indeed...

Still, at least the ransomers know who to target in the future!

5
0

Half! a! billion! Yahoo! email! accounts! raided! by! 'state! hackers!'

lansalot

I was surprised to find I had a Yahoo account - it looks like it went over when I registered for flickr years ago.

Logged in to find an inbox that was full of nothing but incredibly-obvious spam. So their spam filters suck for sure. Oh, and the page design... it was like a teenagers Myspace page.. :(

2
0

Malware figures out it's running on VMs and refuses to execute

lansalot

Re: ummm

Most-Recently-Used, most likely...

There's a lot of MRU lists populated in your typical windows installation - recent word, excel, publisher documents. Recent jpegs opened, recent folders visited, network locations browsed, internet history etc. Lots of places that a "real" machine will populate with evidence of actual work.

5
0

I want to remotely disable Londoners' cars, says Met's top cop

lansalot

"You're only supposed to lock the bloooody dooors off!!!"

12
0

Microsoft snubs alert over Exchange hole

lansalot

Re: it only takes only four lines of code and a local config file

Bother because you can potentially grab credentials that will get you to other parts of the infrastructure you don't already have access to.

10
1

UK Labour man Owen Smith: If you wanna be a leader, you gotta stop with that lens

lansalot

oh..

"Clearly no harm was done"?

How do you know?

8
0

Samsung's million-IOPS, 6.4TB, 51Gb/s SSD is ... well, quite something

lansalot

*cough* how much? *cough*

9
0

Hitler ‘ransomware’ offers to sell you back access to your files – but just deletes them

lansalot

That doesn't work well when the people this most typically affects (home users) are local admins on their own machine, and the first thing the malware does is turn of versioning and deleting any existing snapshots...

2
0

Windows 10 Anniversary Update crashing under Avast antivirus update

lansalot

Re: Ahh yess

Probably just as well they removed Classic Shell then...

http://www.bleepingcomputer.com/news/security/audacity-and-classic-shell-download-server-hacked-by-pegglecrew-/

0
3

You think Donald Trump is insecure? Check out his online store

lansalot

PAH!

How dare you take credit for this, El-Reg...????

Don't you know - he ALONE CAN SOLVE!

1
0

Nitwit has fit over twit hit: Troll takes timeless termination terribly

lansalot

"Up, Periscope!" ??

1
0

15-year-old security hole HTTPoxy returns to menace websites – it has a name, logo too

lansalot

I see SNORT signatures, but has anyone come up with an easy way to scan/test for this? (SNORT being reactive of course, I'd rather know in advance..)

nmap, nessus, some funky python script etc?

0
0

NVMe SSDs tormented for months in some kind of sick review game

lansalot

Re: Use a benchmark or compile a large project

May be worth trying diskspd as well?

http://www.happysysadm.com/2016/06/measuring-iops-part-2-diskspd.html

I did see an article recently about some kit that could stress disks magnificently, but can't find it now...

0
0
lansalot

Re: cratered during file copy?

Ignore the "how were you copying" - screenshots (that I couldn't see too well on mobile) clearly show Windows Explorer.

That's buffered IO and it absolutely WILL bring a server to its knees. Next time, watch the memory tab go through the roof and when it approaches maximum, that's when your server starts dying. If you're using Windows Explorer for benchmarking to copy files, then you're doing it wrong - the amount of memory in your server is taking up the slack and your results are therefore invalid.

Next time, use "xcopy /j".

3
0
lansalot

cratered during file copy?

How were you copying, because if it wasn't unbuffered then no wonder it died...

0
0

When Capita job ads go BAD

lansalot

Re: Hertfordshite?!?

Ah.. I saw what you did !!

2
0

Firefox 48 beta brings 'largest change ever' thanks to 'Electrolysis'

lansalot

On the "many tabs open" thing, (and aware this is an FF post), on Chrome I use "The Great Suspender" extension which puts idle tabs to sleep. Works great in terms of keeping the resources low.

0
0

Is Windows 10 ignoring sysadmins' network QoS settings?

lansalot

Branchcache and WSUS - should solve most of his issues.

0
5

TeamViewer: So sorry we blamed you after your PC was hacked

lansalot

Big idea...

How about an automated email is sent to me whenever someone logs in to my account?

Costs nothing, low overhead, instant notification. Thankyouverymuch.

2
0

Picture this: Live 'net congestion maps for sysadmins

lansalot

CAIDA? As in AL CAIDA ???

Errr... Illuminati confirmed or something.

0
0

Database admin banned from Oxford Street for upskirt filming

lansalot

Remarks about immigrants: ✔️

Anonymous coward: ✔️

28
8

Surrey teen charged over Mumsnet hack attack

lansalot

Ironically, he's probably crying for his mum round about now...

3
0

5% of drivers want Nigel Farage to be their in-car robo butler

lansalot

puff pant...

But who will get in first with the "ah but he just kept repeating that I should turn to the right, and we ended up going round in circles" bit...?

1
0

Huge embarrassment over fisting site data breach

lansalot

...

And this is why we get a regular penetration test.

I'll skip this one tho - it's not something I want a hand in..

1
0

Linux command line mistake 'nukes web boss'S biz'

lansalot

Reeks...

Before the post was removed, he had laid a comment saying that he'd managed to recover it all. There was a further comment asking the obvious "how did you do that" which hadn't been replied to before the thread was locked.

Stinks to high heaven, this one... It has to be a troll/fake.

8
0

SQL injection vuln found at Panama Papers firm Mossack Fonseca

lansalot

So does that mean their Drupal installation is off the hook then?

Either way, some very slack admins there..

http://www.theregister.co.uk/2016/04/07/panama_papers_unpatched_wordpress_drupal/

0
0

Too Naked for the Nazis streaks to literary glory

lansalot

Never read "A cultural history of the Anus", but I did glance a "A passage of time". I presume it's a similar story.

1
0

Steve Jobs, MS Office, Israel, and a basic feature Microsoft took 13 years to install

lansalot

WORST. PUNCHLINE. EVER

4
1

I beg you, please don't back up that secret directory full of photos!

lansalot

aye...

A friend gave me her dad's PC to fix once... I fired it up, and there was a videoCD in it with a suggestive label. Being an inquisitive fellow, I double-clicked.

A couple of rather nice young ladies taking an interest in each other, so I let it play for a bit. Until one crapped in the other one's mouth. Ewww...

Plug out the wall, knock on the door, "sorry, nothing I can do with it!!". Ruined my "he can fix anything" reputation for a bit, but yikes. I can't pass a coffee table without retching any more.

7
1

HPE has released a Gen 2 hyperconverged... er, thingy. Here's the lowdown

lansalot

"one that’s 20 per cent of Nutanix's cost"

"all at 20 per cent lower cost than Nutanix.”

Which is it?

1
0

One-third of all HTTPS websites open to DROWN attack

lansalot

"A team of researchers from universities in Germany, the US and Israel as well as two OpenSSL developers - implemented the attack and can decrypt a TLS 1.2 handshake using 2048- bit RSA in under eight-hours using Amazon EC2, at a cost of $440."

1.2....

2
1

Building a fanless PC is now realistic. But it still ain't cheap

lansalot

easy done

Mine was totally fanless for a while - a Zalman reserator (basically, a big fanless external radiator tower) cooled the CPU, NB and GPU. It was a superb bit of kit. I had the drives in aluminium accoustic caddies and it was pretty eerie hearing only a beep at POST. QuietPC must have had a small fortune out of me ;-)

http://ic.tweakimg.net/ext/i/1084051489.jpg

Only sold it because the toddler was far too attracted to those lovely blue (and easy to reach) water pipes.

7
0

Brits unveil 'revolutionary' hydrogen-powered car

lansalot

What if you drive relatively smoothly and don't stand on the brakes at every junction..?

5
0

Why Tim Cook is wrong: A privacy advocate's view

lansalot

Doesn't read to me like there's a design flaw - FBI are asking if it's possible to do this ("make a new version of the iPhone OS"), and Apple are saying "we've been asked to do this and we're not, as it's a bad thing; it introduces a design flaw" - which by implication would suggest that it's not already there and as such it's currently a pretty watertight design.

Trevor's argument sounds a bit like saying "if you reprogram trucrypt and can somehow install it, then you can have the contents of my hard disk without my password". Which I don't think sounds very likely to anyone.

1
0

Ransomware scum infect Tinseltown hospital, demand $3.6m

lansalot

Re: Bastards

Targetted attack, spear phishing. Equipment doesn't need to be available from the internet for that. Also, if cryptowall, then it's files and network shares. Which would pretty much be guaranteed to be internal, behind any firewall. These things don't go out looking for open file shares on the internet to infect.

1
0

This Android Trojan steals banking creds and wipes your phone

lansalot

Re: Is it just me?

Because "full device encryption"...?

5
0

School network manager wins £10,000 in NCC Group Cyber 10K challenge

lansalot

...

10 grand for that?

Fuck me.... what must the other entries have been like !

Already exists anyway:

https://ninite.com/updater/

http://www.flexerasoftware.com/enterprise/products/software-vulnerability-management/personal-software-inspector/

5
0

Did a hacker really pwn the FBI, US Homeland Security and the DoJ?

lansalot

Yawn.. Call me when it's Steven Avery and aliens...

0
0

Land Rover Defender dies: Production finally halted by EU rules

lansalot

also..

It's a Land Rover - if there isn't a pool of oil underneath it, that means there's none in it.

30
2

Still running IE10? Not for long, says Microsoft

lansalot

Re: How many corporate pages will break

Doesn't work in XP, but neither does IE11. It's not supported.

Out of interest, Server 2012 latest supported is IE10, and Server 2008 (not R2) latest supported is IE9.

0
0
lansalot

Re: How many corporate pages will break

That's why they have IE11 Enterprise Mode. Basically, you can via GPO deploy an XML file which says "load this site in IE8 mode", "this site in IE10 mode" etc.

1
0

VW's Audi suspends two engineers in air pollution cheatware probe

lansalot

All well and good except..

Saw an American senator (I think) who was a former engineer, and on some committee who said that if such advances had been made that gave significantly better emissions, and/or performance, then it would be quite the discovery. The sort of thing that any responsible corporation would rush to patent.

So the question isn't "how come nobody except the dodgy engineers knew", but "how come VAG were so uninterested in their awesome technical advances that they somehow didn't patent it"?

Unless of course, they're lying....

3
0

Page:

Forums