Feeds

* Posts by Funky Dennis

46 posts • joined 3 Mar 2008

Most browsers leave fingerprint that can ID users

Funky Dennis
Thumb Up

Changing fingerprints won't save you

A lot of commenters here are saying that your browser fingerprint will change very often, as you upgrade plugins, etc. This is true, but it's not like how a digital hash changes completely when you change just one bit of the input data; the browser fingerprints only change slowly.

They cover this in depth in their paper:

https://www.eff.org/deeplinks/2010/05/every-browser-unique-results-fom-panopticlick

From the abstract:

"By observing returning visitors, we estimate how rapidly browser fi ngerprints might change over time. In our sample, fingerprints changed quite rapidly, but even a simple heuristic was usually able to guess when a fingerprint was an "upgraded" version of a previously observed browser's fingerprint, with 99.1% of guesses correct and a false positive rate of only 0.86%."

And that, as they admit, is only using a very crude algorithm.

The best way to look at this is as a very power "super-cookie" -- like a Flash Cookie but much harder (currently) to defend against. This _is_ a big deal. It gives any website that you visit regularly the ability to know that you are the same visitor as earlier, even if you don't log in and don't accept cookies. And if you have ever identified yourself to that website in the past, they will know who you are even when you visit the site again but don't log in.

This technique must be a favourite of the spooks. And only the browser makers can really fix it -- an add-on that homogenises your fingerprint will only be as good as the number of people who use it, which will be a very small number indeed.

1
0

Sarah Palin to testify in email hack trial

Funky Dennis
Thumb Up

Bravo!

Well done for condemning rape and murder and then wishing rape on the accused! Are you the Jon Venables commenter from the Daily Mail the other day?

2
0

Irish ISP downed by DDoS

Funky Dennis

DNS hacked?

According to the forum posts, or this:

http://www.irishtimes.com/newspaper/breaking/2009/0714/breaking15.html?via=mr

the DNS servers were sending people to porn sites during the first attack (last week). Does this imply the DNS servers were hacked? Did eircom perhaps fail to apply certain recent critical DNS patches? Or could the high traffic volumes alone have caused this?

0
0

No-go woe for doughnut co after Vo-Vo blow

Funky Dennis
Happy

Seems like

Arnott's like a good court battle:

http://www.youtube.com/watch?v=Kco6mXH2aJY

0
0

FoxIT update defends against PDF peril

Funky Dennis
Pirate

Eating in the dark

Back in the day, sailors used to eat in the dark so they wouldn't see the maggots that had infested the foodstores. That kind of reminds me of Foxit. A few days ago it was safe:

http://forums.foxitsoftware.com/showthread.php?t=13598

Now it isn't:

http://forums.foxitsoftware.com/showthread.php?t=13657

But it's more fun to hate Adobe, right?

0
0

Hitler ordered Luftwaffe to spare Blackpool

Funky Dennis
Happy

Steven says

"In the seaside town

...that they forgot to bomb

Come, Come, Come - nuclear bomb"

0
0

NASA talks little green men with Vatican

Funky Dennis
Stop

It's all a numbers game

"the first humans don't arrive until 11:58 pm. In that same minute, Jesus is born, said Coyne."

So that would mean that humans have been around at most 4,030 and a bit years. (Assuming Jesus was born in 7BC and remembering that there is no year 0. Oh yeah!)

Never trust a journo's figures. Nor a priest's, it would seem. As for me, I'm just approximating.

0
0

Ohio prof develops CCTV people-tracker 'ware

Funky Dennis
Thumb Down

Poor show, El Reg

This kind of research has been going on for years. You are reporting, I think, on the work presented in a 7-page paper from three and a half months ago ("A Fast Linear Registration Framework for Multi-Camera GIS Coordination")

http://www.cpl.uh.edu/html/LocalUser/avss2008/programarea_files/day3.html

I would guess that this is a small advance, like most research - not the solving of Computer Vision that you like to report breathlessly every few months. You would do better to try to understand the limitations of these systems and take comfort from how ropey they are.

0
0

HP cancels Christmas in the UK and Éire

Funky Dennis
Stop

Stop

calling it Éire. Unless you are writing the whole article in Irish. It makes you sound like Terry Venables. That is all.

Yours,

A crank.

0
0

Portsmouth gets crime-predicting CCTV

Funky Dennis
Stop

What the council fails to understand

is that Computer Vision is shit. Systems like this never work. The false alarms will piss off the operators so much that they will disable the software.

0
0

Online identity card scheme aims to remove password headaches

Funky Dennis
Happy

May I recommend...

KeePass for anybody who isn't using it? It doesn't solve the "problems" that Equifax supposes exist - it simply stores all your usernames and passwords in one encrypted file, and can auto-type them for you.

This means that you can pick ridiculously complicated passwords that are different for each site, so if somebody compromises one site everything else will be safe - the very opposite of the Equifax approach. It's the best program I've discovered in ages.

0
0

NZ chaps' sperm not quite up to scratch

Funky Dennis
Coat

Technique

Maybe the difference is that the Aussie guys spanked the monkey underarm. No wonder the Kiwis, em, came off second best.

0
0

MS apps division architect to be fired into space, again

Funky Dennis
Stop

@Evil Graham

Actually, Apps Hungarian notation is excellent:

http://www.joelonsoftware.com/articles/Wrong.html

It's MS's Systems Hungarian notation that's shite.

0
0

EFF sues Dubya over warrantless surveillance

Funky Dennis
Stop

@Webster

Well done, you have been taken in by the DIRTY BOMB, possibly the least worthwhile endeavour a terrorist could pursue.

Idiot.

0
0

Microsoft breaks IE8 interoperability promise

Funky Dennis
Thumb Down

Standards!

Now I like to bash MS just as much as the next guy, but almost all browsers have problems with rendering:

http://en.wikipedia.org/wiki/Acid3#Desktop_browsers

Shock, horror! Eric Raymond LIED to me!

Also, standards are hard, mainly because there are lots of laissez-faire knobjockeys out there (not Joel):

http://www.joelonsoftware.com/items/2008/03/17.html

0
0

MessageLabs takes smut-blocking tech in-house

Funky Dennis
Thumb Down

Sony rootkit

Just a reminder that Fortium Technologies (then known as First 4 Internet) developed the technology behind Sony's wonderful rootkit.

And any analysis of false positives and false negatives is meaningless without two numbers, e.g. "90% true positives and 2% false positives".

I have personally developed a system that detects 100% of pornographic images. It simply marks all images as pornographic. The false positive rate is crap, though.

0
0

FCC votes to silence 700MHz lurkers

Funky Dennis
Stop

@The USA is a foreign country

Pipe down, Johnny Englander! All of us from the colonies have got you seriously outnumbered.

0
0

Suprise at spelling snafu sanctions

Funky Dennis
Thumb Up

@Sarah Bee

Did you change

"Email hacker banged up for exposing boss' sex life"

to

"Email hacker banged up for exposing boss's sex life"?

If so, thank you. I learn with sadness that the first version is now apparently acceptable.

0
0

Microsoft 'proves' six degrees of separation theory

Funky Dennis
Black Helicopters

@AC, 11:28

Well, if I was that closely associated with Bertie Ahern, I'd want to remain anonymous too.

0
0

Cuil confesses 'serious file corruption'

Funky Dennis
Thumb Down

@Mage

Nope,

"Cuíl" would be pronounced "koo-eel". "Cúil" is what you're looking for, although not even I could face a DNS that allows accents.

"Bean" means "woman".

That is all.

0
0
Funky Dennis
Thumb Down

Let me guess

The file corruption was caused by a race condition. Only manifests itself under heavy usage. Something that's probably taught in Servers 101. But these guys got all their back-end PHP coding done by a spotty summer temp who isn't paid enough to care and wouldn't understand anyway.

Am I getting close?

@This Guy

Spot on!

0
0

Thales swoops on nCipher for hardware encryption goodness

Funky Dennis
Thumb Up

Ah, Thales!

Thales! The company whose radar failed this week in Dublin airport for the fifth time in as many weeks, causing hours of mayhem for thousands of people. And on this occasion their engineers actually diagnosed the problem, so it _might_ not recur.

Go Thales!

0
0

US retailers start pushing $20 Ubuntu

Funky Dennis
Thumb Down

The average computer user

never reinstalls their operating system. They don't even know what "operating system" means. When their computer seems sluggish and is over a certain age (2 years?) they buy a new one. Or perhaps they get their chump^H^H^H^H^Hmate to fix it. But they never reinstall Windows.

This move will, sadly, change nothing.

0
0

MS DNS patch snuffs net connection for ZoneAlarm users

Funky Dennis
Thumb Up

Re: all you Zone Alarmists

"Software 'firewalls' are a joke. Zone Alarmist is probably the worst of them...

get real, get rid of it, & get over it"

Amen brother!

@Gis Bun

Has ZoneAlarm EVER saved you from anything?

Security theatre, anybody?

0
0

Moody's to fix sub-prime computer error

Funky Dennis
Stop

Models

If you think that implementation bugs are the beginning and end of problems in high finance, may your buy-to-let property turn into a crack den that smells of wee. All models are riddled with dubious assumptions.

0
0

God makes you stupid, researchers claim

Funky Dennis
Stop

Correlation does not imply causation

Across European countries there is a correlation between the number of abortions performed and the number of condoms sold.

Across European countries there is a correlation between the number of abortions performed and the number of lollipops sold.

The hidden variable is population size -- bigger countries have bigger populations, a higher number of abortions and higher lollipop sales.

I haven't read the original research article, so I did know if he really did assert a _causal_ relationship (which way?) or just a correlation.

Either way I don't like people who aren't willing to question their beliefs, religious or otherwise.

0
0

Pinnacle Video Transfer

Funky Dennis
Thumb Down

I'm hardcore

£20 Hauppauge card, AVISynth and XviD. Cheap and not at all simple, but then I'm a purist.

0
0

Control your PC, with a lemon wedge

Funky Dennis
Flame

So these guys...

are claiming that they've solved a very hard problem in Computer Vision: tracking arbitrary objects moving in unconstrained ways in 3D through a scene imaged only by a webcam? And the segmentation problem implied by the initialisation phase?

Notice how the example objects are all very distinctive wrt the background. How convenient.

0
0

Teapot backdoor probed by German telescope boffins

Funky Dennis
Black Helicopters

Has anybody

read a book called Supernature : a natural history of the supernatural? (c1973)

It mentions people with vision so acute that they can read text off other people's eyeballs. At least, I think it's that book. Anybody care to confirm/refute? A fantastic book at any rate.

0
0

When code goes bad: What to watch for

Funky Dennis
Stop

@Rich

>I also deeply dislike things like i_variablename (ie - indicating the >type by sticking a tag on the beginning or end of the variable).

I agree that using i_variable to denote an int or szString for a zero-terminated string is a waste of time (and worse). This is called Systems Hungarian Notation.

But the original idea was that the "kind", not the type, of the variable should be encoded (Apps Hungarian Notation), and is a very useful naming scheme.

E.g. i_largest_element -- the _index_ of the largest element in an array, etc. Neither type checking or IntelliSense will give you this sort of semantic information.

See

http://www.joelonsoftware.com/articles/Wrong.html

for more on this.

0
0

Google Translate speaks in (more) tongues

Funky Dennis
Thumb Up

To paraphrase Colin Farrell...

...in In Bruges,

That's the good thing about Europe: you don't have to learn their languages.

0
0

Vatican star watcher says aliens may be out there

Funky Dennis
Coat

How can you tell...

How can you tell that E.T. is a Protestant?

Because he looks like one.

(Mine's the green, white and orange one.)

0
0

How ComScore can track your mouse clicks

Funky Dennis
Pirate

This company has hit upon something very important,

Namely, that there are so many people who will

-sell their privacy for a geegaw

-fail to read T&Cs (even the gist)

-stay wilfully ignorant of the dangerous computer environment in which we live

that they can bag up millions of them perfectly legally. They don't even need to break the law!

Whenever I read a story like this I get angry at the company, but I also get angry at the computer users who don't even TRY to educate themselves. You all know the kind of person I mean.

0
0

Google trumpets PageRank for pics

Funky Dennis
Paris Hilton

@Picking the wrong pattern

While some pattern recognition systems are "black box", not all are. As AC above says, most image analysis software is _very_ unsophisticated in the features it uses, but it can still perform surprisingly well.

In classifier systems the most important element by miles is the the features you use as input. The classifier (neural net vs support vector machine vs decision tree etc) can't turn a sow's ear into a silk purse.

Paris, because a home video was leaked onto the internet showing her engaging in various sexual acts, including sexual intercourse and fellatio, with a man called Rick Salomon.

0
0

Ubuntu man says Microsoft's about to 'swallow a hand-grenade'

Funky Dennis

Re: 'Just works' clarification

My spleen-venting about "just works" is mostly based around the install.

It picked a screen res that could have been damaging my monitor, and it left me permanently locked out of Windows.

I can easily accept that there are many things that won't work straight away, but the install _must_ work flawlessly. It's a showstopper.

0
0
Funky Dennis
Flame

@Just works

So I installed Hardy Horseshit at the weekend.

First it picked an impossible resolution for my monitor, so that I couldn't even _see_ the Start button (or whatever it's Gnome equivalent is) to go about fixing it.

Then the sound wouldn't work in YouTube and another app simultaneously. Any ideas, anybody?

And then I couldn't boot back into Windows, possibly because the boot loader choked on an extended partition. Cue Windows reinstallation (after trying to fix the MBR).

So, "just works", eh? Christ, Mark, I _want_ it to work. How about you get the devs to focus on making it work for everyone, instead of three dollops of FAIL?

0
0

Web infection attacks more than 100,000 pages

Funky Dennis
Thumb Down

Re: To all web programmers on El Reg

And another problem, Steve:

The MySQL syntax is

INSERT [INTO]

i.e. your code will miss any INSERT queries that don't use the INTO part.

This is voodoo programming, and it will get you in the end.

@Dennis

I knew it, you're all still racist against the Paddies, aren't you?

0
0

Transcript disappears minister's 'hack-proof' ID register claim

Funky Dennis

This isn't the first time

Check out

http://en.wikipedia.org/wiki/Talk:Hansard#Dodgy_Hansard

Falling slowly, indeed.

0
0

How an app called WarmTouch nailed a grenade-stockpiling cyber extortionist

Funky Dennis

Total bollox

Here's a little (a lot of) light reading about criminal profiling, kindly pointed out to me by a Reg reader a while back:

http://www.newyorker.com/reporting/2007/11/12/071112fa_fact_gladwell?currentPage=all

It's just cold reading, and it can do more harm than good.

“I would say that on the whole you can be rather a quiet, self effacing type, but when the circumstances are right, you can be quite the life and soul of the party if the mood strikes you.”

What chance that this software is any better? SFA.

0
0

Wikipedia scores $3m donation

Funky Dennis
Thumb Down

One of the problems

with Wikipedia is that Jimbo and Co. have done Jack Shit to curtail vandalism. If they just raised the bar slightly so that you had to be logged in to edit articles, most vandals wouldn't bother. (And to register you'd have to provide a valid email address and click on the link that they'd send you. All very standard stuff.)

Jimbo is doing very nicely out of his minions, but treating them like chumps.

0
0

Security researchers show how to hook phishers

Funky Dennis
Stop

Illegal?

Just because some gobshite phisher has compromised a server doesn't mean that you can also enter the server (without permission).

Although this seems more of a shortcoming in the law than anything else.

0
0

Intel and Microsoft dump $20m on researchers to avert software crisis

Funky Dennis
Thumb Up

Multi-threading is hard

So hard, in fact, that most programmers don't seem to be able to manage it. The easiest gains will probably come from software libraries that use multiple cores but hide it from the programmer - it has to look like single-threaded programming even if under the hood it's not.

Of course, there are only certain types of algorithms that are inherently massively parallel, but many of them seem to be related to processing video (including computer vision!), and video on desktop PCs has only been practical for about 5 years. With hi-def catching on big-time, that's one area where multiple cores will be useful. But I'm not sure how many people actually run transcoding jobs that take 12 hours. Editing home video is a bit more common.

So in summary then, they'll find a way of making us want this shit.

0
0

'Magnet boy' freezes Xbox

Funky Dennis

@Floppy Disk Destroyers

So your boyfriend has a floppy problem. Ooo-er missus!

0
0

Local councils dish out shoddy computer recycling advice

Funky Dennis
Stop

@Brian Miller

The idea that it is possible to use microscopes to see the overwritten 1s and 0s is just a claim by Peter Gutmann about intelligence agencies - an unverified claim, obviously.

I few passes of the DBAN CD should be enough for almost everybody - you flatter yourself if you think your data is _that_ valuable. Any angle-grinder approach is just wasting a computer which could do some good somewhere else.

0
0

Two centuries of Hansard to move online

Funky Dennis
Coat

Isn't there enough

of Hansard on the web already, what with his "amazing" Oscars speech. Twat.

0
0

Polish builder sacked for humping hoover

Funky Dennis
Coat

His life is ruined

How will he fill the vacuum?

0
0