* Posts by Gotno iShit Wantno iShit

242 posts • joined 16 Jan 2009

Page:

Winning Underhand C Contest code silently tricks nuke inspectors

Gotno iShit Wantno iShit

The scenario is irrelevant.

The point is to get people thinking about devious code. Something that in other circumstances would be called a bug but here is deliberately coded to game the system and be subtle enough to not be seen in a code inspection.

This is exactly what any number of TLAs must (and should, it's their job) be up to and it is good to see a different kind of spotlight on it. It's exactly the sort of thinking the Open Truecrypt Audit needs to engage.

14
0

Assange will 'accept arrest' on Friday if found guilty

Gotno iShit Wantno iShit

Re: Maybe not Friday.

According to the beeb a few moments ago the UN has indeed flushed away it's last shred of credibility.

Unbe-f##king-lievable.

4
6

HPE's London boozer dubbed the 'Hewlett You Inn?'

Gotno iShit Wantno iShit

Heat death of the universe

Whatever plan you come up with just make damn sure it doesn't involve anything travelling through FAA controlled airspace.

2
0

Thinking of buying a Surface? Try a modular OLED Thinkpad first

Gotno iShit Wantno iShit
Meh

plonk

Oh good more 16:9 screened systems, the market place is desperately short of those.

10
0

Face, meet book: Zuckerberg plans to dabble in AI this year

Gotno iShit Wantno iShit
Thumb Up

I fart in your.....

Took a couple of readings for the 'general direction' part of that to wake the relevant synapse from slumber but it was worth it when it did. Superb work Mr LeCun, I believe the young 'uns of today might even call it lush.

5
0

Microsoft leaks Xboxlive SSL server cert

Gotno iShit Wantno iShit

Even servers?

"All supported releases of Microsoft Windows carry the Xboxlive certificate"

Why? What will I lose if I kill this?

I suspect the answer is nothing unless I want to do some kind of interaction with my own XBolx or with other owners. Since I don't own one and never will (I have enough ball ache with Microsoft in my day job so R&R money goes on Sony & Nintendo) I suspect I'll lose nothing. Even if I were an XBolx owner why on earth would I want this certificate on my servers?

3
0

Amazon resets account passwords feared compromised – report

Gotno iShit Wantno iShit

Nail on the head Mr Overlord

There was an Amazon.co.uk phishing email doing the rounds last week. The latest reset email, if genuine, has possibly gone out to suckers who took the bait.

0
0

Car radars gain sharper vision after ITU assigns special spectrum slice

Gotno iShit Wantno iShit

Re: Interesting link

The rules of the road are to drive such that you can stop in the distance you can see is clear. There is no need to see through fog if you observe this. If a person prefers to drive at a fixed speed regardless of conditions then technology that can counter their stupidity will be a boon. To them at least, the Gene pool loses out again.

9
3

Mixing ERP and production systems: Oil industry at risk, say infosec bods

Gotno iShit Wantno iShit

I wrote a long post knocking holes in the ERPScan claims. While they clearly know a great deal about SAP they know close to squat about control and automation in oil & gas. Then I decided to check the linked pdf and found this:

"It is the first Oil and Gas Cybersecurity research ever so far."

That is so epically untrue I just cannot be arsed to read any further.

7
0

Commentard achieves bronze badge, goes directly to jail

Gotno iShit Wantno iShit

Re: I've been around here for ages

You presumably need to maintain >100 posts in the past year, drop below that and you temporarily lose the badge.

I got close and chased it for a while but struggled finding two articles per week that satisfy all of; a) A subject I am knowledgeable upon, b) I have a thought upon that hasn't already been expressed, c) I give a crap about enough to post. Usually someone writes what I'm thinking expressed better than I would have and faster. So do I post lots of shite and/or 'Here, have an upvote' noise. Or do I STFU and remain badgeless?

The system seems to encourage inane chatter to me. X upvotes or net X in the past 12 months would be a more beneficial metric.

27
0

BitLocker popper uses Windows authentication to attack itself

Gotno iShit Wantno iShit

Sadistic?

"Only sadistic sysadmins whose users suffer having to enter pre-boot passwords are immune, Haken says."

What on earth is sadistic about that? Last place I worked just about every aspect of the IT was an utter shambolic disaster. One of the few examples that wasn't was the (iirc) McAfee drive encryption with pre-boot authentication. When it got installed it just worked. Every morning it just worked. Every password change, once you knew to wait an hour and log off/on before shutting down, it just worked. Why is entering your password before boot rather than after sadistic?

Even there if you didn't know the password change trick you soon learned that for one boot cycle you'll enter the old password before boot and the new one at log in. Is that, typically once a quarter, really so insufferable?

4
0

Edge joins Explorer in bumper crop of security patches

Gotno iShit Wantno iShit

Re: Reboot reboot reboot

No they don't and they never have. The sane world has called it Patch Tuesday but not Microsoft.

This has clearly irritated Microsoft so rather than do the sane thing and fall into line they are instead phasing Patch Tuesday out. Instead of a predictable, reliable schedule of updates that the world can plan for Microsoft is soon going to start pushing out whatever they like whenever they like and for added fun not tell us what updates are about any more. Planning for the arrival and deployment of f##k knows what, f##k knows when is going to be an 'opportunity' for the sane world.

It is an effective way for Microsoft to persuade the world to stop using the term Patch Tuesday. It is not, by any stretch at all sane.

1
0

GCHQ 'smart collection' would protect MPs from spies, says NSA expert

Gotno iShit Wantno iShit

Re: Much as I like....

It's not tough at all, either everyone's data is hovered or no ones is. I prefer the latter.

There's no justification in saying MP's should be exempt so that their constituents communications are confidential because the constituents email is hovered at their ISP.

There's no justification for saying MP's should be exempt because of national security because it's our spooks doing the hovering we're talking about.

Everyone or no one - anything else is Animal Farm.

10
1

Top telematics: Black box helps driver swerve speeding fine

Gotno iShit Wantno iShit

Re: Cop Braked to Provoke Incident

Have an upvote for a) driving a TR6 and b) _using_ it as opposed to just taking it out on fine days to park in a field like some kind of self propelled ornament.

5
0

Speed freak: Kingston HyperX Predator 480GB PCIe SSD

Gotno iShit Wantno iShit

Can PCIe SSDs be run RAID 1? I don't trust anything.

0
0

UH OH: Windows 10 will share your Wi-Fi key with your friends' friends

Gotno iShit Wantno iShit

My router does MAC filtering, I've not bothered 'till now. I shall be switching it on this weekend.

Not that I'm at risk yet, only one person I know has >7 and that's on a desktop. Still, the time to act is now.

2
0

SGI sales mushroom with Atomic Weapons Establishment deal

Gotno iShit Wantno iShit

Re: Can someone explain....

Oh go on then, I'll bite.

First up they are not used to "to work out that a nuclear war will wipe most of humanity of the face of the earth". That's not AWE responsibility. They serve 2 functions.

First they verify that these things we taxpayers pay craploads of money to have still work decades after one was last tested. I as a taxpayer am interested that this is done. It is an economic viewpoint that is totally unrelated to my opinions as to whether we should have/keep them.

Second they verify that as they get old they aren't going to go kablooey unrequested. I'm interested that this is done from every viewpoint.

8
0

Assange™ lawyers demand Swedish prosecution files or no London interview

Gotno iShit Wantno iShit

Re: He twists and he turns

[speculation]

Or he's guilty, he knows it, and he's stalling because there's a statute of limitations nearing.

[/speculation]

No such thing for his breach of bail. I wonder if he's made any money as a result of being in the Embassy rather than in jug. Hope so, POCA should then ensure the taxpayer gets some money back for the cost of plod being on his doorstep for 4 years.

25
6

You're outta here! Baseball star strikes out sleazy trolls who targeted teen daughter

Gotno iShit Wantno iShit

Re: Dare.

Turtle, your shot at a Wooden Twig of Fail is transparent. You shall not receive the downvote you crave. I simply cannot accept that someone dumb enough to genuinely believe your twaddle would remember to breathe. Ergo it has to be a shot at a WToF.

8
2

He can't give it away FAST ENOUGH: Bill Gates richest man in world again

Gotno iShit Wantno iShit

Re: Most philanthropic American...

I'd prefer he continues to take his time giving it away. So far he has backed some extremely good causes and successfully avoided buying London Bridge. The faster he shovels it out the harder it will be to avoid the scammers & freeloaders. His foundation will outlive him and do good for a very long time to come.

9
0

SIM hack scandal biz Gemalto: Everything's fine ... Security industry: No, it's really not

Gotno iShit Wantno iShit

It's a shame so much ire is being directed at the victim of this attack and not the perpetrators.

1) Spies spy, it's what they do.

2) This attack is not the same as mass hoovering of metadata, they keys taken cannot be used indiscriminately because they are only used between the handset and base station.

3) Any attempt at mass hoovering would require intercept equipment in the vicinity of every cell site in the target country. Impractical.

4) An attack using these keys forces the handset to drop to 2G, if that were happening on a mass scale someone would notice.

5) These spies have no need of the keys for targets in friendly countries, they can simply request an intercept.

So this raiding party facilitates targeted attacks against parties of interest in unfriendly countries. Pretty much what GCHQ and the NSA ought to be up to.

What I am left wondering is why within the EU they needed to go on a raiding party. It should have been possible to acquire what they needed via gagged court orders. Did they suspect a leak that would reveal their actions should they take the legal route?

2
14

Get yourself connected: GrovePi+ Starter Kit

Gotno iShit Wantno iShit

Comprehensive...

...set of modules for it, I'm particularly pleased to see the 'electricity detector'. There's no shortage of devices to allow me to turn a mains powered device on or off but very few easy ways to get a pi to react to a mains powered event. E.g. when appliance X turns on then turn on appliances Y & Z as well. This is much neater than a relay.

3
0

I'm the wire starter: ARM, IBM tout plug 'n' play Internet of Stuff kit

Gotno iShit Wantno iShit

Re: Potentiometer + cloud

With management in the cloud....

Yes all those cloud devices can do those things. Right up to the point your ISP goes down, a JCB goes through the fibre to your exchange, the server goes titsup, the cloud service gets retired or an incompatible upgrade or a gazillion other things you have no control over.

Or you could go the extra mile to get the smart devices to talk directly to one another and have independence & privacy. Plus, when it stops working you will know that the scope for where the problem lies rather than being 'somewhere on the planet' is 'somewhere in your house'.

17
0

Hello Barbie: Hang on, this Wi-Fi doll records your child's voice?

Gotno iShit Wantno iShit

Re: A chill just went up and down my spine at this....

I would hope against hope that at least the "conversations" are encrypted?

RTFA?

The child's replies are recorded, encoded, and sent in an encrypted form to ToyTalk's servers

3
0

Never mind Samsung, GOOGLE will EAVESDROP as you browse on Chrome

Gotno iShit Wantno iShit

Who's upset? I use Firefox with an appropriate sprinkling of blockers. I use duckduckgo mostly but am using yahoo for a few months to help pay the bills. I only use anything google as a last resort if searches elsewhere have failed and then it will be in a private window. I'm not upset about any of those decisions.

3
3
Gotno iShit Wantno iShit

“Are you comfortable with a ‘few’ seconds?”

Negative.

12
1

Win! The Ultimate Cash 'n' Carrion Survival Kit

Gotno iShit Wantno iShit

Hmmm, do I value the data you're asking for above a 1-in-lots chance to win some clutter? Yep, I most certainly do. You can already contact me by email so the only reason for wanting more info is to sell that info.

3
0

Trouble comes in threes: Yet ANOTHER Flash 0-day vuln patch looming

Gotno iShit Wantno iShit

Uninstalled

This is officially my toys out of pram moment with Flash. I am sick of unselecting crapware, selecting bloody notify only, closing tabs before the sodding 'you may also be interested in' adverts appear and all the rest of the shit. I only still have it because TomTom insist on it. Poke it Adobe. Poke it TomTom if you don't get rid on Flash before my next renewal.

And, breathe.

11
0

The new Falcon Heavy: MOST POWERFUL ROCKET since the Apollo moonshots

Gotno iShit Wantno iShit

Re: Is it?

Good question, at 53 tonnes the payload on its own is pretty falcon heavy.

6
0

Care.data refuseniks will be DENIED CANCER SCREENING invites

Gotno iShit Wantno iShit

Re: Easily fixed

Just coming here to say much the same. Are they going to add another line for the next national campaign, and another for the next after that? What a dumbass suggestion.

2
1

FUMBLE! NFL app drops privacy ball just before Super Bowl Sunday

Gotno iShit Wantno iShit

Re: <facepalm>

Who writes these apps

The lowest bidder.

2
0

SPACE the FINAL FRONTIER: These are the images of COMET PROBE ROSETTA

Gotno iShit Wantno iShit

Re: Always the same

So is herpes.

2
0

Whisper keeping schtum over abuse of user data

Gotno iShit Wantno iShit
Happy

Gurgle gurgle

Still enjoying watching this lot circle the drain.

3
0

$500 TEDDY BEAR teaches tots to spit up personal data

Gotno iShit Wantno iShit

Au contraire ukgnome, the problem is well known - how to part a fool and their money.

9
0

Adults-only Chrome add-on grabs you by the Googlies

Gotno iShit Wantno iShit

Re: Does the world really need another remote desktop option?

Indeed, and is there a worse place than in the browser to implement one?

7
0

Google casts about for wireless audio

Gotno iShit Wantno iShit

Re: Concept OK, Execution Weak

If it's only any good for one source & one speaker set then yes Bluetooth does that just fine. If OTOH they've achieved multi room sync without the complete walletectomy associated with existing players, including the recent new players in the field, then it is novel.

Personally, since it says Google on the tin it is certain not to work if your router blocks it reaching the mothership so it's not the multi room solution I'm looking for.

3
1

Seagate makes CES splash with $99 drive, 'personal' cloud offerings

Gotno iShit Wantno iShit

Re: Please...

There probably is no internal SATA connector as such, the external one the cable plugs into will be straight on the drive PCB & poke through the case. I suspect this having dismantled a Samsung/Seagate M3 last week in the hope of having a usable case after giving up on the drive. I was disappointed. The drive didn't work right from the day it arrived and like an idiot I did not keep the packaging so could not return it. 3 minutes with a ball pein hammer did wonders to relieve the tension caused by weeks of failed backup attempts.

1
0

Armouring up online: Duncan Campbell's chief techie talks crypto with El Reg

Gotno iShit Wantno iShit

Re: really?

And to disagree with steve gibson once again (why break a good habit), using a security package that isn't being maintained any more is not the most clever move.

Why? TrueCrypt 7.1a is one of the most heavily vetted lumps of code one could choose to run. It's weaknesses are known and in the opinion of those who understand crypto deeply not significant.

Let's look at 4 scenarios and think what would happen in each:

1) A new vuln in TrueCrypt 7.1a is found by a whitehat; It would be publicised widely immediately, it would be headline news absolutely everywhere. Sensible folk then stop using TC.

2) A new vuln in TrueCrypt 7.1a is found by a blackhat or TLA; they keep it quiet and use it.

3) A new vuln in <something else> is found by a whitehat; It would be reported to the devs, some time later a new version would likely appear, there would then be full disclosure one hopes and some press coverage.

4) A new vuln in <something else> is found by a blackhat or TLA; they keep it quiet and use it.

2 and 4 are identical so lets discount blackhat attacks. I would know I was vulnerable far quicker in 1 than in 3 so I choose 1. It also put's the onus on me to do something should I become vulnerable rather than relying on the author of <something else> which is the way I like it.

YMMV.

3
0

HUMAN HAIR will soon be FOUND on MOON: Brit 'nauts aim for SPAAAACE

Gotno iShit Wantno iShit

Re: celebrity rockstar physicist Brian Cox

Indeed, it's not as if the bloke has a history of involvement in a chart topping band.

Oh, wait...

(Just be facetious, I couldn't agree more with your comment)

1
1

LOHAN's Plucky Playmonaut touches down at Spaceport America

Gotno iShit Wantno iShit
Happy

Here's the initial view of architect Sir Norman Foster's impressive space arse, as it appears at first glance.

Lovely. Just lovely.

0
0

How HAPPY am I on a scale of 1 to 10? Where do I click PISSED OFF?

Gotno iShit Wantno iShit

Re: Although a fairly accurate and amusing portrayal of LHR security...

"the real problem with airport security is the number of morons in the queue who have to be repeatedly told what to do. Thus slowing the whole process down."

Not to mention those too slow witted to take their wedding ring, watch etc off & put them in their laptop bag while queueing. Or those so poor at thinking ahead they wear badly fitting trousers needing a belt on the day they are travelling. Similarly hard soled shoes, wear flat ones that don't need to be removed. If the airport supplied liquids bag isn't up to your exacting standards bring your own.

My top level of ire is reserved for those idiots who when their bag is diverted into the search and swab row get angry with the poor sod who is just doing his job. All but one of these guys in the numerous times its happened to me has been careful and respectful of with my property. Like the scanners 1 in X bags gets a random search and swab.

3
10

Pub time for NASA bods? Orion spacecraft test launch called off

Gotno iShit Wantno iShit

They did do something with the wind gauge, they decided to ignore it. The automatic detector was taken offline and the meatsack on that console was going to do the monitoring if the 14:44 attempt had gone ahead.

As for the valves (two were sticking) they tried various things but I didn't hear them discuss your suggestion. Volunteers for the job might have been thin on the ground :-)

0
0

Is EU right to expand 'right to be forgotten' to Google.com?

Gotno iShit Wantno iShit

Re: And stories like that are why I oppose the reform of the Lords @ Shrimpling

I wouldn't. We already have one house full of self serving, power seeking lying bastards. What use is another house full? Until Blair screwed it over the Lords was as close as you could hope for to the Douglas Adams principle.

5
2

Part 3: Docker vs hypervisor in tech tussle SMACKDOWN

Gotno iShit Wantno iShit

I'm still confused about your quote that you stood by in the comments to part #2

"I might write it for Docker, once Docker has things like FT, HA and vMotion, but I'm honestly not sure why I'd bother, Docker seems like more work than AWS and doesn't offer a fraction of the flexibility you get when using a proper hypervisor."

Why should containers do this, surely that is the job of the hypervisor? Indeed you state in this article that containers will add to and not replace established technology and will run perfectly inside the hypervisor. We all know what happens to a promising new technology when it tries to be all things to all men. Is it the cost of requiring both that keeps you from using containers 'till the above condition is met?

3
0

The Glorious Resolution: Feast your eyes on 5 HiDPI laptops

Gotno iShit Wantno iShit
Unhappy

And still only Apple understand that 16:9 is shit for real work

14
8

Ten excellent FREE PC apps to brighten your Windows

Gotno iShit Wantno iShit
Pint

Re: Paint.net

Thanks to JDX and others for the paint.net tip, have one of these -->

0
0

Bitcoin laid bare: Boffins beat anonymity

Gotno iShit Wantno iShit

Re: Does anyone really care

Yes. Your point about cash being anonymous is exactly why we should care. Given the way western society is moving it doesn't seem at all far fetched that one day good old anonymous cash will be withdrawn. There are many things in the UK that you used to be able to do with cash but now can only be done with traceable payment means. If I ask myself whether the UK govt would like to be able to track and trace all money movements the answer is a resounding hell yes.

16
0

Megaupload overlord Kim Dotcom: The US HAS RADICALISED ME!

Gotno iShit Wantno iShit

Innocent until proven broke?

24
2

Blackpool hotel 'fines' couple £100 for crap TripAdvisor review

Gotno iShit Wantno iShit

Re: No sympathy on either side.

Have you looked at the reviews? I suggest the ones on Laterooms as the trolls haven't waded in there yet.

0
0

Page:

Forums