Feeds

* Posts by Joe 35

113 posts • joined 27 Jul 2009

Page:

Oracle SHELLSHOCKER - data titan lists unpatchables

Joe 35

Ridiculous kneejerk response. Like Microsoft, Apple IBM and any other huge software vendor, they have millions of customers, its wholly impractical at that scale to contact each and every customer, the back end support systems will anyway have details of for example, the person in procurement who made the order years back, rather than an actual person responsible for bug fixes.

They also all have have systems that you can connect to which will tell you what needs an update for the actual software you have installed rather than what you bought (not the same thing at all) which any responsible IT organisation will be using and monitoring, rather than waiting passively for Oracle / IBM / SAP etc etc to send an email to "fred@procurement dot com" who probably also buys software for every other vendor as well.

0
0

Apple iPhone 6: Looking good, slim. AW... your battery died

Joe 35

Re: How much?

But they also make a decent smartphone that does all yours does, love, for less than half the price.

=======

Same argument as Macs vs PCs, your LG2 will be landfill in a couple of years, the 6 will sell for half what you paid for it. Net cost, about the same.

Or if you want to keep your phone longer, good luck putting the latest Android OS on it, so forget all the new software goodies (or even just the security fixes that probably will never be released for your phone on your network anyway)

7
11

'Kim Kardashian snaps naked selfies with a BLACKBERRY'. *Twitterati gasps*

Joe 35

This reminds me of that apocryphal farmer personal ad;

"Wife wanted." Must have tractor.Send picture of tractor".

So, whats the Blackberry model used? Anyone know?

2
0

Don't buy that phone! It ATTRACTS CRIMINALS, UK.gov will tell people

Joe 35

Re: csi

They also zoom in 2000 x on a reflection in a hubcap to capture your pin code.

=====

I think you'll find a single pixel is sufficient :-)

0
0

Top Gear Tigers and Bingo Boilers: Farewell then, Phones4U

Joe 35

Re: low wage/no wage market

Their failure has nothing to do with their customer base, they were successful, but if you only sell three things, A, B, C, and the monopoly suppliers of A and B stop supplying you, you are screwed.

0
0

Something's phishy: More holiday scam spam flung at real hotel customers

Joe 35

There are many more hotels than just two involved now and the common point is booking dot com ( BDC)

One of the Trip Advisor threads relates how the website interface used by hoteliers to access their BDC info is only protected by a 4 digit pin, so all you need is to select a hotel and try a PIN. Keep using the same PIN across multiple hotels, you'll soon enough find a valid hotel/pin combination. Thats one way they could be getting in.

This is also very targeted fraud, its not just done only by email, they are phoning out to "marks", and answering the phone to enquiries (using a supposedly BDC phone number in the email, obviously its the scammers)

So, this is a low volume operation, might only be a handful of people operating it, there is no point blasting any info gained out or selling it, each "mark" needs careful treatment, plus the fact there isnt a mass email going out pretty much proves its selective access, eg not every single BDC booking has been compromised.

IMO BDC's public response is pretty pathetic, all they have done is put out a bland email about crooks targetting credit card numbers, when its bank transfers (no doubt via mules) they are using.

0
0

Scared of brute force password attacks? Just 'GIVE UP' says Microsoft

Joe 35

The flaw with the "it doesn't matter" theory is that with a list of email addresses I can then do a brute force attack against those addresses and some are bound to be hits. eg if I try "pa$$word" on a list of a million hotmail accounts each only one try, I am probably going to get tens of thousands of hits. Now do it for the top 10 or 20 passwords, and I'd probably get 10% of the database. At least part of the iCloud attack is reputed to have used the top 500 passwords.

So I suggest the first thing you need is a username that maps to an email address, and the user name is used to login, not the email. Now to even start an attack I first need to know your username for this account and thats not something thats going to be bandied around as much as your email.

5
1

Apple tells devs: NO slurping users' HEALTH for sale to Dark Powers

Joe 35

Re: Mental Illness App

Anyone who knowingly allows Apple and thus the whole world

=====

?????? there's a non sequitur if ever I saw one.

2
0
Joe 35

Re: The only reason for this...

If thats the best you can do, Apple's in good shape.

Its an allegation and even then its not even an allegation that that PII is sold, merely demographic info.

4
2

Pay to play: The hidden cost of software defined everything

Joe 35

Re: "The basis of this article is laughable"

Not so funny when you have paid for seriously expensive test hardware only to find it is not going to do things you expected

=====

That is nothing at all to do with this practice, and everything to do with being inept at purchasing. IF there are things you "expect" then write a list of them down and ask the vendor if they are included or to price them in

0
0

So, Apple won't sell cheap kit? Prepare the iOS garden wall WRECKING BALL

Joe 35

Re: Oh no

Ye standard Aston Martin retort: nobody has to make petrol specifically for Aston Martins. They just work on the same petrol as the £10k cars. Somebody has to make apps specifically for iOS. iPhones/etc don't just work on the same apps as sub-£100 mobile phones.

=======

Except to stretch that analogy (but not break it) due to Androids fragmentation, stranding of old OS's on models not much more than a year or so old, and their users reluctance to spend money, you can make petrol for any Aston Martin model and rake in about 4-5x compared to any other, because you would have to make different petrol for each Ford Fiesta, Ford Escort, Ford Mondeo etc and the same for every other Vauxhaull, Citroen etc model, any one of which individually has a tinier market share than AM's range overall, *and* and whose users spend less.

6
1

This is how I set about making a fortune with my own startup

Joe 35

Re: Trying to save the UK, whilst the world carries on regardless

Interesting. It works if I cut and paste the link, but not if I select it and right click "open in a new tab"

Page Not Found

The page /storage/ECMA.Aberdeen.actual.pdf could not be located on this website.

We recommend using the navigation bar to get back on track within our site. If you feel you have reached this page in error, please contact a site operator. Thank you!

Return to the Front Page »

2
0
Joe 35

Its somewhat disingenuous to state that you "saved £1,000 a year on you home electricity bill" when it turns out that what you actually mean is that you saved £1,000 a year on the bill of a small ISP with a shed load of computing equipment. Hardly what the average or even keen hobbyist might have, how many have Air Conditioning fitted in their homes to cool their PCs down?

12
0
Joe 35

Re: Trying to save the UK, whilst the world carries on regardless

File not found, try again?

0
0

Obama's healthcare.gov savior says: 'No suits please, we're techies'

Joe 35

Re: Hey!

What do you mean "Even if we can't compete on scale." ?

Surely $1.2bn, even in Oz dollars, is not at all shabby and something to be proud of, indeed starting with a project at a mere $6m that "will ultimately cost Queensland taxpayers an estimated $1.2 billion" puts you right up there with the big boys.

http://www.theaustralian.com.au/national-affairs/state-politics/queensland-payroll-debacle-to-cost-taxpayers-12-billion/story-e6frgczx-1226691935660?nk=5ce11439bf242c904644471944cdbaa5

1
0

TRANSMUTATION claims US LENR company

Joe 35

"Ignoring that issue"

Errrrmmm..... why would you ignore the issue of producing 200kg of hydrogen when you started with 18 and in total only have a mass of 159kg?"

Why indeed would you even read on past that point?

1
0

Crumbs! Holiday phish based on genuine hotel booking surfaces

Joe 35

Re: just go to your bank and send a wire transfer to our account below

As mentioned in the article, it seems unlikely booking.com are the source of the details here, otherwise there'd be a lot more noise about it

=====

The noise is happening. Three or four more reports now on Trip Advisor.

All different hotels, all booked via booking dot com.

I'd say its pretty clearly a breach at booking dot com

0
0
Joe 35

I am fast becoming a devoted follower of the IBAN transaction method. Seems much safer to send the money via bank transfer than to use credit card details that can be scammed.

======

I wonder what definition of "safer" you are using when you think:

1. pay by bank transfer, money is irrevocably gone, and if actual fraud rather than rubbish service is happening, is transferred between several accounts and becomes untraceable and you have no comeback in either case.

is safer than

2. pay by credit card. If its a scam, you get your money back.

0
0
Joe 35

There is a report in Trip Advisor today same scam entirely different hotel (The Rockwell in London).

Booking dot com initiated booking again though.

0
0

Nice computers don’t need to go to the toilet, says Barclays

Joe 35

Re: Self service checkouts

"You don't have to wait for an older staff member to come over and allow the person actually serving you to sell you alcohol because the spotty oik on the checkout isn't 18 themselves yet."

Yes you do. If there is an 18-plus item in there then the flashing lights will come on and sirens will sound and they will send someone over. Otherwise all the 14 year olds would be buying their cider via this route.

7
1

Google's Pankhurst doodle doo-doo shows the perils of using Google to find stuff out

Joe 35

By getting the spelling different to how your parents wanted it, that became the right (aka "official") spelling of your middle name. Like it or lump it.

0
0

Alabama quadchopper hits THREE THOUSAND FEET next to AIRPORT

Joe 35

Re: @Steve Evans

If a UAV takes a hit from a firework and goes down, odds are it crashes harmlessly, but those odds are far from 100%

=======

It could crash anyway, irrespective of fireworks.

0
0

The Windows 8 dilemma: Win 8 or wait for 9?

Joe 35

Re: Time for some truly revolutionary GUIs?

LOL. "draw their request". Hilarious.

"what were you doing at the office today dear"?

"I was playing bloody Pictionary with the computer again"

17
0

Tesla, Nissan, BMW mull all-for-plug, plug-for-all electrocar charger plan

Joe 35

Re: @Terry

"Unless I'm about to set off on a long journey, I don't generally fill the tank until the fuel warning comes on. Why would you? But I suppose battery power might lead you to want to 'top up' more frequently."

Not only that, unlike with petrol, you can top your car up every night at home so in the morning its *always* got a "full tank". If that was the situation now with petrol cars, how many petrol stations would you need? 5 or 10% of what we currently have?

Once electric cars get to say 200-250 miles on a full charge (about double what it is now?), what percentage of cars would need to recharge mid day / journey ? And if the ones generally being driven on those long journeys had standby petrol generation, like the BMW i3, even that need goes away.

6
0

How practical is an electric car in London?

Joe 35

Re: Electric cars work fine for me

"There's no additional battery lease cost."

There is with a Renault Zoe, which is the post i was responding to.

Good for you with the Leaf, sounds like you have hit a sweet spot there, though to be fair a 70 mile round trip is in fact two, 35 mile drives, which I think most would classify as "a short trip". DO you top up at work?

Whilst my "normal" commute is only about 15 miles each way, once or twice a week I need to do anywhere from 50 to 100 mile drives. Each way :-( An electric car (unfortunately) cant match this kind of useage and owning two cars makes no sense at all.

Once they have around double the range we see now, lets say 250 being easily attainable, I think the use will really take off

1
0
Joe 35

Re: Electric cars work fine for me

"but the £25/month 'fuel' cost (used to be £180) "

I think you forgot the **at least** £70 a month battery lease cost ?

So you are saving £90 a month at best, and since the car, from what I recall is about double the cost of a petrol equivalent, the time to pay back is far longer than you'd keep the car.

There are other reasons to get an electric car but money saving isn't one. Yet. Unfortunately.

7
1

Oracle rewrites 'the brain' of its database to take on SAP

Joe 35

Re: it must be good, its been in development for twenty years

So what have they done for all those "legacy" oracle apps that rely on ROWID?

========

its not addressing that.

I bet you'd complain that a cure for cancer doesnt fix malaria.

0
0
Joe 35

watch the videos or read the writeups, its completely different.

0
0

New software nasty encrypts Android PHONE files and demands a ransom

Joe 35

Re: Why?

"I don't actually know anybody who lost their phone, broke it, or had it stolen…"

You definitely need to get out more !

1
0
Joe 35

RIght, because everyone makes backups.....

The 0.0000023% of Android users who take regular backups wont be in the population of clueless morons who download this trojan.

0
0
Joe 35

Re: Hmm, coicidence?

"Anyone would think Apple cooked this one up.."

Only for values of "anyone" = clueless tinfoil hat wearing conspiracy nut.

1
0

New iOS 8 SDK: Come in, apps. Get cozy, sip wine, swap numbers

Joe 35

Re: Android Intents?

Maybe it is. And if its a good idea, which it seems to be, there's no reason that Apple shouldn't also do it.

Apple dont have a monopoly on good ideas, it seems with this release they've realized that and are taking some good stuff from other sources, for example the spellchecker with multiple suggestions, the like of which is on my wife's Sammy and is much better than Apple's fascistic one.

1
0

Look, pal, it’s YOUR password so it’s YOUR fault that it's gone AWOL

Joe 35

Re: Website policy stupidity

You can never be too careful. A password is obviously needed in case someone was to maliciously pay your bill for you.

32
0

BEAM ME UP SCOTTY: Boffins to turn PURE LIGHT into MATTER

Joe 35

So by slamming electrons into a block of gold ...

... they can create electrons ?

They could remove the block of gold, give it to me as payment for saving them the trouble, and get several orders of magnitude more of electrons.

0
0

Sony Xperia Z2: 4K vid, great audio, waterproof ... Oh, and you can make a phone call

Joe 35

"Having said that, Apple stupidly removed iTunes sync for contacts and calendar "

- agreed, but they are sensibly reinstating it in the next point release.

0
0

The browser's resized future in a fragmented www world

Joe 35

Re: TBL is MS!

Copied fine on Firefox.

1
0

John Lewis to respray with coat of Oracle ERP: Don't worry, we won't be 'wall to wall' Larry

Joe 35

Re: So...

<<They took on someone from a company that spent 9 years on an ERP rollout and then decided to abandon it to conserve money. To run the ERP introduction.>>

====

FWIW the ERP at BA was SAP. Which I presume didn't put SAP in a good place when the guy in charge of deciding which to buy at JL was the guy previously in charge at BA :-)

And, presumably having 9 years experience of how not to do it, he must have a "dont do that" list.

1
0

Apple to grieving sons: NO, you cannot have access to your dead mum's iPad

Joe 35

Re: Sloppy research??

ll you need to do is set up the iPad as a new device and it's fully usable, but whatever was on before, is lost.

=======

As per another post, that is just plain wrong if "Find my iPad" is activated.

Once that is done its not useable without the original account and password.

2
0

Crap hospital databases next goldmine for cyber-crooks, say Microsoft's botnet slayers

Joe 35

Its not just Microsoft at least that has some security

NHS are currently rewriting Spine using Riak as the underlying database. The section on security in the Riak manual can be paraphrased as "there isn't any, write it yourself".

1
0

SpaceX set to try HOVER LANDING for re-usable rockets on March ISS mission

Joe 35

"We believe we have all the pieces to achieve a full recovery of the boost stage"

Ones *here", the other seventeen are between 250 to 500 metres over *there*, and *this* ones at the bottom of that smoking crater.

I wish them all the best.

9
0

Yes! New company smartphones! ... But I don't WANT one

Joe 35

Re: iPhone 4S

The argument was regards the statement it was "impossible to replace" not quibbling over the price.

5
3

NHS website hit by MASSIVE malware security COCKUP

Joe 35

Anyone else find the word "collapse" at the bottom of that twitter post amusing?

5
0

Yahoo! Mail! users! change! your! passwords! NOW!

Joe 35

Re: Improved password change security!

I didn't have that problem, but it only asks you to type the new one in once. Insane.

3
0

Staffs Police face data protection probe over 'drink drivers named' Twitter campaign

Joe 35

Re: Public Records?

Being arrested does not mean the person is guilty, just that they have been arrested.

======

Yes but the point is, the hashtag wasnt "driversarrested" or "driversaccused" it was "drinkdrivers" which implies guilt. Thats the point of the case.

0
0

Target's database raided, 70 MILLION US shoppers at risk of ID theft

Joe 35
WTF?

Seriously ???

Staff at the US chain will now >>>>>call<<<< and email customers whose contact information was illegally harvested.

Whats that ,a quarter of the US population. I dont think they'll be calling.

In any case, doing so or even announcing they will be doing so, has created a new phishing threat.

"Hi I'm Joe Phisher from Target, I have your details here so you can verify its me, we just need to get your bank PIN so we can update our records..."

"oh yes I recall reading Target were phoning their customers phoning, so it must be you".

"and if you can give me your full bank details I'll be sure you get your $100 as compensation. We just need your banking passcode."

Dumb and dumber.

13
0

BlackBerry sues American Idol host's company for 'blatant' patent infringement

Joe 35

Is this a cunning way of getting lots of publicity?

Change the keys angled appearance on the production models so its no longer an obvious copy, and in the meantime the association between blackberry and this keyboard has been nicely entrenched, since "it must be good if bb are suing" ?

2
0

'Shared databases are crap' Oracle reveals shared database management suite

Joe 35

Re: I dont get it...

I suspect Oracle would prefer you didnt because you would only be paying for one oracle instance, rather than a number of them, but its perfectly ok to do it..

=======

Oracle dont care how many instances you run, they charge on total cores or users.

EDIT: And I see I'm a bit late saying that as soemone else said it a week or more ago. Oh well.

0
0

'Planned maintenance' CRIPPLES nearly HALF of all Salesforce instances in Europe, US

Joe 35

Presumably the outrage is because companies that host their own systems never have outages ?

1
2

500 MEELLION PCs still run Windows XP. How did we get here?

Joe 35

Re: But slowly – over time

.... but they do gradually become vulnerable due to new bugs being discovered, which now wont be patched.

6
1

Douglas Adams was RIGHT! TINY ALIENS are invading Earth, say boffins

Joe 35
Thumb Up

Re: LOHAN contamination.

<<In fact a concentration in the upper atmosphere that is high enough to detect in a single sample drawer implies a concentration in space that satellite dust collection experiments would have found by now.>>

I suspect it implies a concentration thick enough you wouldn't be able to see the planets let alone the stars.

3
0

Page: