* Posts by Mark 65

2250 posts • joined 11 Jun 2009

Snowden 'ready to return to US', claims lawyer

Mark 65
Silver badge

Re: DJV @ Matt Bryant

The moronic part would seem to be your attempt at a reply. I notice you seem completely unable to counter the points I raised (honest, this is my surprised face).....

Matt, nobody bothers because they cannot be arsed playing reply-to-post-ping-pong with someone capable of arguing with themselves.

17
1

National Rugby League boots 'metadata' right into Australia's face

Mark 65
Silver badge

Hmmm

It merely states they'd need to provide phone records. Now, the only record I have after the fact (depending upon how long after the fact, of a phone interaction is merely date, number, duration as provided by my carrier. Hardly going to provide much of anything really. Given we're talking NRL here, a 2 hour call at 3am could be a drunken redial that happened in the process of passing out with the recipient already in the target state.

0
0

FREAK show: Apple and Android SSL WIDE OPEN to snoopers

Mark 65
Silver badge

A Question

The list of how to use items has something along the lines of: convince to use crap key, factor key, then can inject what they want into the stream. Now, given we are also told that to factor the key would require about $100 of processing on AWS would I be right in suggesting this is more of a TLA flaw or highly targeted spear-fishing exercise toolkit rather than something your average pleb should fear? i.e. for the man on the street it is more of a theoretical exercise than a reality if we ignore for a moment those special folks at the NSA and GCHQ?

2
3

Tony Abbott says food importers deserve help denied to telcos

Mark 65
Silver badge

Instead, the government's line has been that as the implementation costs of metadata retention “is less than 1 per cent of the $43 billion in revenue generated by the telecommunications industry annually” it can easily carry the burden after an initial cash grant.

Revenue is not the same as profit. If that's a low margin business, which is likely, then that 1% cost might be nearer 20, 30, 40 etc.

0
0

And the buggiest OS provider award goes to ... APPLE?

Mark 65
Silver badge

Re: Apple OSX, Quick and dirty or...?

Mavericks? You modernist you. Still on Mountain Lion here as I think the first 3 or so Mavericks releases all had fix one issue create another.

0
0

Britain needs more tech immigrants, quango tells UK.gov

Mark 65
Silver badge

Re: Zigackly

Nick, please do us the service of letting us know what it is you do and how you found your teleworking roles? Perhaps El Reg could fit you into the expat/working abroad articles?

0
0
Mark 65
Silver badge

Re: Here we go again

It's that timeless trick of advertising for a C++ quantitative programmer with 10 years experience on a salary somewhere less than a typical grade wage. Nobody applies, therefore there's a skills shortage. Brilliant. What is truly brilliant is that they managed to convince some dickhead in the migration quango to believe them.

2
0

Don't pay for the BBC? Then no Doctor Who for you, I'm afraid

Mark 65
Silver badge

Re: We should pay for TV we dont want

So how does "The Discovery Channel" and "The Disney Channel" survive?

By selling formulaic tat to subscription TV services.

0
0
Mark 65
Silver badge

Re: Just stop there.

Surely it is far easier and far more efficient to remove the license fee and recover the money through fiscal drag on tax thresholds?

2
0

Salesforce boss: One day I'll run a $10bn... er, software biz?

Mark 65
Silver badge

“Salesforce.com [is] now the sixth largest software company in the world, the number one cloud computing company in the world, very unique in the industry,” he said.

And yet loses $240+m per year. Way to go. How does that compare with those others (VMWare etc)? I see little point in having huge revenues and bigging up the size of your company if it is still just a loss-maker.

3
0

Gemalto: NSA, GCHQ hacked us – but didn't snatch crucial SIM keys

Mark 65
Silver badge

I'm going to play devil's advocate and say that it happened, happened real bad, and they are totally fucked and headed to the corporate graveyard. However the top level execs are trying to keep it going long enough to offload all that stock and stock options they're sitting on which will be worth fuck all soon enough.

3
0
Mark 65
Silver badge

Re: Well they would say that

@AC: The difference is that the NSA and GCHQ have proved their capability time and time again.

<quote>

"While the intrusions described above were serious, sophisticated attacks, nothing was detected in other parts of our network", the statement continued, adding:

No breaches were found in the infrastructure running our SIM activity or in other parts of the secure network which manage our other products such as banking cards, ID cards or electronic passports. Each of these networks is isolated from one another and they are not connected to external networks.

</quote>

"Each of these networks is isolated from one another and they are not connected to external networks." could just mean separate VLANs. My money goes on the spooks being in their network equipment and their sysadmin accounts - remember the "I hunt sysadmins" line the other day? That they didn't detect them in other parts of the network doesn't mean they're not there. They have every incentive to go after this treasure trove of warrant avoidance.

2
0

Not even GCHQ and NSA can crack our SIM key database, claims Gemalto

Mark 65
Silver badge

Hmmm

To be honest my money is on Gemalto not knowing what the fuck has happened, like some punch drunk journeyman getting up off of the canvas, and are hoping that all this bullshit will save their company. A company whose business relies utterly on trust in their security practices. The fact they started by denying everything then changing tact does not bode well for them. I predict there will be some contract renegotiations by major clients including the Aussie comms that all use them.

It'd also be almost TV drama-like if the NSA couldn't hack them but did hack their nearest rival and were planting doubts in order to send customers to the vulnerable vendor.

I'll go with the simplest option though.

18
2

Greens want better metadata access oversight

Mark 65
Silver badge

Speaking to the IT Leaders Forum, a weekend conference for technology media. Ludlam said the opposition is likely to “send a few good, stout-hearted people out to make statements” before caving in.

All the more reason for the Reg Southern Desk to pump out that "best VPNs for poor bastards living in Orwellian internet zones" article.

While Ludlam said he sees it as reasonable for law enforcement to request basic subscriber data without a warrant, “we have a broken access regime, we have a broken authorisation regime”.

I previously agreed with him on a lot of points but this one is a no-no. Any access without the requisite warrant is just a fishing expedition. Should they be able to just take a looksy around my home without any oversight or just cause? In today's connected World it amounts to pretty much the same thing. That's what gives me the shits about dickhead politicians - just because something is easy because it's all 1s and 0s and a machine can automate the task it doesn't mean it should be a free-for-all and an area with no judicial oversight. In the end they're all pricks, it just seems they vary in extent.

0
0

For pity's sake, you FOOL! DON'T UPGRADE it will make it WORSE

Mark 65
Silver badge

Re: surprise- a translation company doesn't understand IT

There are loads and loads of examples of entire industries which should now fall under IT and therefore should be driven by IT at board level.

I really wouldn't recommend this, it would just be a variation on the disastrous idea of letting lawyers or accountants run companies. In IT's case things could only happen on a 2 weekly release schedule only once properly scoped and entered into an ITIL workflow etc etc. The division that likes to say "no".

Seriously though, business people should run the business it's just that it'd be really handy if they had a clue about IT or were willing to listen. Companies don't need to be driven by IT they just need to have a clue about it.

3
0

Your hard drives were RIDDLED with NSA SPYWARE for YEARS

Mark 65
Silver badge

Re: yay.

SSL observatory would find mismatching info and you can check the fingerprint against grc.com or whatever the site is.

0
0
Mark 65
Silver badge

Re: Wait

What makes you think they haven't developed linux versions of the attack? The basic mechanisms wouldn't be that different.

Oh, the fact you don't know where said drive is headed and thus aim for the statistical sweet spot - 32 bit Windows.

0
0
Mark 65
Silver badge

Re: but the '...w.dll'

@AC: If, as you say, the toolkit isn't limited to windows then are you claiming that they have managed to pre-install a firmware for hard drives that contains malware to cover Linux, windows, OS X and bsd in x86, x86_64 and AMD variants? Not fucking likely. 32bit windows would be my guess.

2
0

Australia's PM says data retention laws think of the children

Mark 65
Silver badge

Re: Liar!

Errr, if I'm an ISP and you mandate that I retain metadata then I'm going straight out to buy a shittonne of wanky 1.5TB Seagates. No way I'd be spending on top line kit given I know the government will shaft me on the costing.

4
0
Mark 65
Silver badge

BS

If you are truly only keeping metadata then it doesn't help you one bit to see "what criminals are up to" as you need the content for that. Unless you see the content you have no idea what is going on. I could have a web server that contains content accessed via a URL that indicates some grotesque act of depravity but contains nothing but images of wild flowers or, likewise, the reverse case. Without the content you have nothing. The fact anyone you are really after likely uses encrypted point to point comms is clearly left out of the debate.

So far, in an attempt to get this nonsense passed he has invoked:

1. Nasty terrorists.

2. Think of the children.

What's next to justify this easily bypassed act of privacy invasion?

Tony, don't try to use a sound-bite to replace a sound policy.

9
0

Accused Goldman Sachs code pilferer sues FBI for 'wrongful arrest'

Mark 65
Silver badge

Re: Not arrested for his constitutional rights

Nah, it has nothing to do with his constitutional rights - from what has happened recently in the supreme court I think it basically implies that there are no such things as they can just over-rule them.

2
0
Mark 65
Silver badge

Re: Sounds trumped up to me

Does unlawful use of scientific material even exist as an infraction? Sounds like the guy is just making shit up.

10
0

Anonymous HACKED GAS STATIONS - and could cause FUEL SHORTAGES

Mark 65
Silver badge

Re: This was only vandalism, but if you read the manual...

Isn't it great when they map the serial port to an internet port without making the connection read-only and requiring updates/maintenance to be carried out in person?

0
0

Now Samsung's spying smart TVs insert ADS in YOUR OWN movies

Mark 65
Silver badge

Re: @Mark65: Sony : 1 - Samsung : 0

@fruitoftheloon: Well the general trick is that if you don't understand what it is up to or you know it is up to something but not how to prevent it you either:

1. Let it be and suffer the consequences

2. Don't connect it to the internet.

There's definite potential for something like an inline device that filters out certain connections rather than needing to make adjustments at the router (although that's the place if you want to fill your house with the Internet of Tat).

1
0
Mark 65
Silver badge

Re: Sony : 1 - Samsung : 0

It's a piece of piss to filter what internet interactions your TV can have from a whitelist to none-for-you-sonny.

0
1

World's mega-rich tax dodge exposed: Meet the HSBC IT bloke at the heart of damning leak

Mark 65
Silver badge

Re: In Monaco he had installed computers and software designed to detect fraudulent transactions

I'm not sure how much installing of anything the guy did himself given...

"The data was not relinquished by Falciani voluntarily. Since that time, the French authorities have subsequently shared the data with numerous governments around the world.

implies he doesn't know what encryption is.

0
0

Internet lobs $$$s at dev of crucial GPG tool after he runs short of cash

Mark 65
Silver badge

Re: Scooge McCorps

Strictly speaking that's true but I've always viewed it a bit more like shareware - if you really get genuine utility out of it you should really help out the person who wrote it such that the project can continue to thrive. After all, you'll benefit from any future improvements and you've been able to fully kick the tyres on it. I'll be perfectly honest in that I don't apply this to every little script and utility I've found/used but more-so those where I'd be pissed if they were discontinued.

0
0

Basic minimum income is a BRILLIANT idea. Small problem: it doesn't work as planned

Mark 65
Silver badge

Re: It would make things fairer

The way the World is headed the ones with families will find they are also unable to rely on their kids for support as they're too busy living hand-to-mouth themselves.

0
0
Mark 65
Silver badge

I think you'll find the market valued the liquidity more than the face value of the stamps. The stamp sellers were price takers. They could have held out as long as they wanted, their impression of the value is wholly irrelevant.

0
0

'Bend over, Facebook' says EU, snapping on its rubber gloves

Mark 65
Silver badge

The countries taking the lead on the investigation are Belgium, the Netherlands and Germany, primarily because they have already started (or in Germany’s case, started thinking about) cases against the free content ad network.

Did you mean "free content" or "content free" network?

0
0

Ubuntu smartphone to go on sale: It'll be harder to get than a new iPhone

Mark 65
Silver badge

Re: could be good

The problem with this is that I can see it all starting out well and then going to shit down the line. Ubuntu had the local search to internet fiasco which they first though was a great feature. I think all people really want is an alternative platform that offers security like the Apple App store if required, flexibility to do what you want if desired, but most importantly to not try and fuck you over and sell your shit to all and sundry.

1
0

Apple preps to DUMP crappy, sluggish iPhoto FOR GOOD

Mark 65
Silver badge

Re: So does it *just* support iCloud? What about home NAS?

Your requirements, especially the photos on external devices not always attached, seems like more of something Lightroom caters for with the ability to have smart previews. Your photos live on the NAS and your catalog on the local drive. The smart previews enable you to see, tag, adjust, etc the photos using the smart preview even though you may not be attached to the NAS. I believe Lightroom's real restriction is that it doesn't like the catalog to exist on a network share - back it up to one (rsync etc) by all means but don't use it from there.

PS It is the one piece of Adobe software I have found to be genuinely good.

0
0
Mark 65
Silver badge

Re: Sucks so bad

From what I have read this is clearly not a replacement for Aperture but instead it is an iOSification of iPhoto so that the basic photo app is familiar to converts from the mobile device market and involves one codebase to support.

0
0
Mark 65
Silver badge

Re: I've had a look at this

I am also a user of Lightroom despite it being from Adobe. In fact it is one of the few things they have ever done that I would recommend. It is, in my opinion, an excellent piece of software. There are some things it lacks such as where iPhoto will keyword tag by key shortcut which would be very handy for family photos but it has consistently gotten better over the years and is multi-platform thereby not tying you to an OS.

I discovered it after Adobe bought out Pixmantic who owned RawShooter where some influences can be seen.

1
0

Data retention: It seems BORING ... until your TV SPIES ON YOU

Mark 65
Silver badge

Re: Not metadata....but an opportunity abounds

I can see a market for a gateway device for the home that actively filters out any such communications. Although you can just not connect the TV to the internet you may wish to use the catchup services (although there goes more data/metadata) and such a device would sanitise the comms. Perhaps if the companies choose to https the links then a gateway that sets these IoT parasites on their own VLAN where all internet traffic in https goes through TOR. Their attitude is clearly "fuck you customer, all TVs will have this and you don't even know whether off in settings is really off anyhow".

3
0

Boy, 16, cuffed after posting selfie with body of kid he allegedly killed

Mark 65
Silver badge

Re: Insanity plea

Never attribute to insanity that which can adequately be explained by a complete lack of intelligence.

16
0

Swap your keyless key for keyless key-less key. You'll need: a Tesla S and Apple Watch

Mark 65
Silver badge

Re: Stupid and Irritating

That seems like a particularly poor implementation. I have a keyless entry vehicle (hard not to these days) and it is at least smart enough to only unlock the vehicle when you access one of the front passenger door handles. It also locks via touching part of one of these two door handles. It is also quite tight on the proximity aspect as well.

0
0

Get off Twitter – and onto Google if you want to find TWITS and tweets

Mark 65
Silver badge

Re: hm..

i highly doubt you're more likely to find your answer in a short tweet than you are in the articles google would have served up anyway, so this is just adding noise to the results cash to the bottom line.

0
0

Siemens sighs: SCADA bugs abound

Mark 65
Silver badge

Re: Yes, but that's not the point to learn from this

I know the old "never attribute to malice that which can be adequately explained by incompetence" but are these bugs Siemens bugs or NSA bugs? It is networking kit after all.

1
0

Australia's (current) PM Tony Abbott again calls for metadata trove laws to pass, ASAP

Mark 65
Silver badge

Re: VPN

I'm not talking about VPNs for doing naughty things, in which case you'd need your own server with intrusion detection etc, just normal VPNs from major providers because you believe that metadata is really data and that it shouldn't be vacuumed en masse but targetted via a court ordered warrant. I'm sure there are VPN providers out there that can be trusted so long as you're not up to some serious naughty business but rather minding your own business.

1
0
Mark 65
Silver badge

VPN

Can El Reg do us all a favour and have the UK and Oz bureaus run some VPN provider tests? I guess if dopey Dave gets his way the UK ones will be short lived but there is hope for us down under.

I'm thinking comparison of: cost, support, ease of use, security used, real world speeds, choice of endpoints etc. There are a fair few of your readers that will be itching to get something setup before wingnut Abbott's March deadline for legislation.

2
0
Mark 65
Silver badge

Lying cnut

AFP Commissioner Andrew Colvin, appearing at the press conference to support the PM's statements, claimed that access to stored communications data is critical to “90 per cent” of both counter-terrorism and organised crime investigations.

However, he said that while access to stored data is a “foundational” building block of investigations, it's impossible to stipulate how many convictions relied on it. The AFP's systems, he said, simply aren't configured to report the association between “metadata” and eventual convictions.

Hmmm, so he knows as a percentage how critical it is because he can quote how many investigations found it critical but cannot say how many convictions relied on it. My, how convenient.

Does anyone else think the pictures of this lying little lickspittle have more than a hint of Gestapo about them?

9
0

Ross Ulbricht, in the library, with the laptop: Silk Road boss found GUILTY of all charges

Mark 65
Silver badge

Re: Meh

To be fair, from the little I have read on the case, the presiding judge declare just about everything the defence wanted to use as evidence he wasn't DPR as inadmissible. Now that might have been correct but when it happens it will leave you looking like you have no defence.

0
1

Forget Norks, Russian hackers are in Sony Pictures' servers – claim

Mark 65
Silver badge

I've never understood the soapbox shouted logic of "X has a previously unreleased file from the hack of Y therefore they must have been involved", it simply doesn't make any sense. That you have a previously unreleased file proves that you simply have possession of a previously (publicly) unreleased file, not how you came to have it.

Could you own (legally or via hacking) a machine that was used in the exfiltration?

Could you have gotten it from a friend of a friend of....someone loosely connected to the hacker that is a total braggard and wants to big-up themselves?

There are many possibilities.

0
0

'Revenge p0rn' kingpin Kevin Bollaert faces 20 years in jail

Mark 65
Silver badge

@FreemonSandlewould: Did you not read the part where he ran a secondary site effectively extorting the victims? Had he only run the first site he would have been covered by said provisions, although the reviewing of posted content may put him on shaky ground, but his greed means he now has 24 years to ponder the difference.

1
0

Netflix goes TITSUP WORLDWIDE (Total Inability To Support Usual Programming)

Mark 65
Silver badge

Re: No mention of The Register web site going down yesterday

Name and shame the load balancer!

Terry, and he still lives with his mum.

0
0

Who's come to fix your broadband? It may be a Fed in disguise. Without a search warrant

Mark 65
Silver badge

Re: Very slippery slope...

No matter what the bought and paid for Judge states this seems even to a layman like an illegal search. Search warrant applied for on the basis of what you saw whilst pretending to be someone else after deliberately cutting off the internet. If that's not a breach then America's slippery slope just got Teflon coated.

5
0

Ugly, incomplete, buggy: Windows 10 faces a sprint to the finish

Mark 65
Silver badge

Re: looking for apps

Really, everything I read about Windows 10 makes me not want to lose Windows 7.

Meet Windows 7, it's the new Windows XP with security fixes out until Jan 14 2020.

0
0

Chunky Swedish ice maiden: Volvo XC60 D4 Manual EE Lux Nav

Mark 65
Silver badge

Thing is Graham, if your monitor goes wrong you pick a new one up for a couple of hundred. If these ones go wrong you're fucked on practicality and price.

1
1

Panicked teen hanged himself after receiving ransomware scam email

Mark 65
Silver badge

Re: Sad, and not good enough

GCHQ with their complete data trawling would know where it came from. Even if it came via a bot net they'd know seeing the recent data drop about how they can easily takeover and run botnets. They're missing a positive PR angle here.

2
0

Forums