Missed the important question. Did he get his $12 back?
570 posts • joined 16 Jun 2009
Missed the important question. Did he get his $12 back?
"Best thing is on three website, no problems with service recorded in last 30s (puts tinfoil hat on!)"
The monitoring/updating system relies on ConnectBot? Oooops!
How many other CEOs are now panicking that a culture of plausible deniability is about to come and consume their genitalia or that they really didn't know when the farm was being bet away on a wonky Las Vegas roulette wheel?
And didn't have an effective whistle-blowing system. Many people knew, the more astute that if and when anything went wrong they would not be comforted with a multi-million pound payout. So certain people were told but not the CEO? And I can believe that because I'm not expecting to see any Dear Martin ... emails real soon.
All this and they didn't spot the VW 'defeat test' emails? Something that likely will result in more deaths in the UK than all the terrorist activity combined. And cost more.
1 out of 10 GCHQ. Must try harder.
Meanwhile real terrorists have moved on and probably reverted to coded classified ads in your local paper to communicate with their underground warriors or using invisible ink. Bit like our secret services did in WW2. Difficult to trap electronically. It worked then ...
Only the stupid will get caught.
"If this puts the car into a different tax band, will the manufacturer also be liable for the previously lost tax on cars which were more polluting than claimed? If the faults are not corrected, will the manufacturer be liable for owners' increased car tax? If the faults *are* corrected, will they be liable to owners for the reduced performance and efficiency?
Add recompenses us for fines big cities will have to pay for pollution levels caused by cheating, the NHS for having to treat the consequences of this pollution and the people and relatives of those who suffered. Only problem is if VW and/or the industry paid this they would go all go bust.
I've got a funny feeling that isn't going to happen.
"So? No-one forces you to use a particular distro, so even if MS is going to release theirs (which I doubt will happen; it's something that fills a particular internal need) and it's payware, why would you switch to Xenix ME?"
True. No one forces you to use systemd. Its just increasingly hard not to choose so. The real danger is MS might produce something useful ;-)
AFAIR its £3.50 for one year and £5.00 for two which is the standard for Nominet (+vat) .
Its just silly and not good business after one cock-up not to put the next one off for two years. And how much does it cost EE to process each payment?
And to think Orange & Freeserve were both brilliant companies in their day. Merging companies is a great way to lose your way trapped in the corporate spaghetti machine.
Safari is absolute crap and I don't expect FF on IOS to be any better.
I didn't realise how crap it was.
I run a number of forums and recently re-skinned them with a more mobile friendly theme. We are all Android here so I checked it out with an iPhone emulator and it looked all fine. I went live extolling the virtues of the new theme. Instantly I got crapped out by the iPhone community. It wasn't there or it didn't work. I couldn't believe it - phones with, supposedly, twice the the screen resolution of an old Moto G had difficulty showing half as much.
My daughters and partners have various iPhone models so I checked it out with them for real. I was amazed. The web browsing was very limited. They didn't even realise it was bad. They thought it was the norm for a phone. They still do!
Moral is never trust an emulator.
These figures don't show CHOICE. If the EU & US governments had the balls to uncouple monopoly behaviour and require manufacturers to unbundle operating systems I predict 2016 would be the beginning of the Decade of Linux. But then using these stats to suggest one is better than the other is big willy thinking. Women know better. Well the ones I know!
No joke. 2006 was my Personal Year of Linux. I still run Windows (2K as a VM) which imho was the nicest smoothest and still the fastest yet compact iteration.
Linux just suits me (a bit of a geek) and my wife (beyond ungeekiness) a whole lot better - if Windows 10 or whatever suits you better then fine, I have no problem. Not even with AppleOS. Its just those FreeBSD evangelists that need be shot on sight ;-)
I would be interested. I have a 13" Chromebook I love. I have a 9" Netbook I love which is much more capable then any tablet but is now nearing retirement. So this would have been an ideal form factor replacement for stuffing in a man bag when travelling. But this price and no chroot - no way.
Wasn't the HAL array much bigger? And with added daises?
Did it include our own favourite re-writer/litigant?
Actually he doesn't have to sue. Victims roll over in anticipation. Even Vultures.
Why the expensive blockbuster TV campaign to landfill (sorry, drown) your current laptop so you can go out and buy a spanking new unavailable Win10 jobby and leave you without either?
Good thinking Microsoft. Even the puppy was smarter. Well, prettier anyway.
"I've got an old 3G Moto G, and all the people that have upgraded theirs to Lollipop do nothing but complain of short battery life, unexplained crashes, and wi-fi that continually dies, among other problems."
Something wrong with my 2013 Moto G then as it works perfectly with 5.0.3 and has never crashed and my Nexus 4 is 5.1.1 which now takes less power from the battery. People with problems complain. People without, don't.
Some of the local council people i know are dedicated, hard working and careful people. Others are what you get when you pay lower wages, expect redundancy and are regularly dished by those who screw them.
So who here hasn't left stuff on a train or lost an unencrypted laptop? Its never intentional, it hurts the culprit on all sorts of levels and in the case of our Lewisham worker he lost his career. And these BBW folk want to bang him up too?
Do visit the BBW website. Its all about freedom and stuff but appears to have a wee gap when it comes to the institutions who make Google and Microsoft look like rank amateurs when it comes to stealing personal data without warrant and/or making others store it till they can get around to analysing it. Checkout who are the people behind BBW. There's no political motive - Shirley?
Has anybody tried as Barack Obama?
And do ISIS have a 'good guys' list when seeking out free downloads? Or just a plane ticket?
"4" screen and thicken up the body a bit to take the same mAh of battery.
I don't need a large hi-res juice gulping screen, because I wear my phone on my hip and or shirt pocket.."
I feel your pain. I have the original Moto G with the flip (which saves you having to hit the power button to turn on/off screen). I bought it as my Nexus was getting hiccups and I was off on a cycling holiday. Absolutely perfect for jeans, shirt pocket or anywhere.
Yet I do still like the thinner bigger Nexus which fits better in an inside jacket pocket and you want to read something at leisure but don't want to pack a tablet.
I sometimes juggle the SIMs between them but its a real faff. I would really buy in to a soft SIM which would allow you to register each handset individually onto your number. You know, just like I do with the SIP lines I use on both.
Am I alone in this?
"Wow. A wonderful example of the 'absolute rights, zero responsibility' school of thought. Just to clarify: it is the cyclists' fault, they need to find somewhere else to keep their bikes. Simple."
Quite correct. Given that you could relocate more than a dozen bikes into the space occupied by a parked car the answer should be obvious to those managing our streets. Net gain in mobility and convenience around our towns and cities. Or is Copenhagen a mirage?
So help me - what's the point of buying a Nokia if it isn't a Nokia?
What a monumental waste of time, talent and dosh. Whatever the decision - does anybody seriously think it will make a figs worth of difference to people transcribing their CDs to some other medium?
We have gone past the point when musicians (or rather the conglomerates who have acquired the copyrights) can press for a levy on 'blank media'. What USB drives, phones, SSDs and spinning iron?
So why make a few lawyers even richer? I bet they rip too.
< Dusts down his Fortran IV subroutine libraries and unstructured GOTOs >
"Whilst I see your point I am also very aware that there are places in the world that don't have unlimited power and network bandwidth.
https is not the real problem to them. There are few sites where the western assumption of broadband access has not bloated pages with superfluous advertising, under compressed images, rolling videos and a cacophony of plugins, ccs files that grew, grew and grew and never pared back to what was only needed.
Is there an browser extension that will flag the total download size of a page with its supporting infrastructure?
https is a minor but a more useful load on the network - especially when operating across less than secure networks one may find in these places.
This is good. I do use StartSSL which is really just for the Nerdy. They both offer AFAIK the same level of protection between the browser and the server which means, in practice, that all those Wordpress logins and stuff are encrypted. So people like me can no longer sniff them on shared networks.
So GCHQ/NSA and top-notch gangs may be able to break/steal certificates and MITA targets. But no casual stuff. The weakness of Class 1 certificates is they do not prove that the domain link is 'authentic'. Never Knowingly Undertold JohnLevis.com will give a green padlock and still run off with your money.
How we develop and make people aware of the sliding scale of security they expect from their blog to their bank is the trick. Creating expectations to match the class of the certificate from a simple encrypted connection to a properly authenticated and verified source. Judging from the amount of green stuff in the URL bar of Chrome is not enough.
Affordable - as in affordable housing?
I misread it as meaning budget laptops and was expecting stuff in the £150-£250 range. There's good stuff there that will do general purpose computing adequately. Gaming or HD graphics is quite different - and, I assume still a niche market for the major manufacturers.
I remember when entry level laptops were 2 grand a throw (that was real money not todays devalued edition). Nevertheless I haven't paid this sort of money for years and I still have many machines over five years old still performing adequately. Just make sure they aren't trying to run Vista ;-)
"SNI support starts around where TLS 1.0 was supported (FF2, IE7 et al). It's ancient technology and every browser you care about supports it."
Thank you for correcting my dyslectic moment. Taxpayers are users not browsers. The majority in some demographics are still using non-SNI compliant browsers (notably XP/IE8). It may be because they are old, it may be that they are poor or just deaf but they are amongst the people most in need of government services. "Get a new browser" is not useful and many wouldn't even know what you are talking about.
Which means, to be on the safe side, if you attempting to offer a universal service you should not rely on SNI. That means an IP for every HTTPS host and one less for everybody else. Downvoting me for pointing out this awkward fact won't make it disappear.
The point is that what one wishes to keep private differs from person to person. So while some stuff should obviously be secure as you mention and some other doesn't - it saves having a department (with all its protocols, mission aims, HR policies and coffee machines) to decide on the stuff in the middle and coming up with enough inconsistencies to keep the El Reg journos in beer for the next decade.
Oh and some stuff which doesn't have, say, user interaction now may in the future and going from http to https is not always simple. So build it secure in the first place or when there is a major revision.
Does this assist the final exhausion of the US of A's IPv4 stock or (via SNA) disenfranchise the millions of XP/IE8 taxpayers who are unable or unwilling to upgrade or shall we be finally mandated into IPv6?
Might be good for all concerned if the Feds gave Let's Encrypt the certificate contract!
The surprise was not the breach but the size of the breach. And I am going to blame the victim if this resulted from a single breach. Breaches will always happen no matter how careful you are. The issue is to minimise the consequences of a breach. This, and the Sony experience, suggest that their data wasn't properly compartmentalised. The hackers once in just ran riot.
I know this is difficult if you are trying to run a universal emergency patient database - but an HR database? This needs to be soundly sandbagged. Makes it much harder for the hacker with multiple opportunities for early detection as the hacker attempts to search across boundaries.
Yep the Co-op bank got into a mess by not sticking to its roots as a non-high street bank but becoming overly ambitious as a high street bank with the ill conceived acquisition of Britannia and of the attempted acquisition of TSB and a massive failure in due diligence by another set of parasites.
The Co-op were not the cause of the banking meltdown. They had been delivering excellent service to us for over 50 years. So their/our reward is it is now in the hands of the very vultures that caused the crisis and our caring government appears to want to complete the process with a complete takeover by those too big to fail. Whose survival to extort more and clobber the competition was financed by us.
The irony, the irony. With current interest rates my mattress is becoming increasingly attractive ...
"Hate to break it to you, but No. Not even a significant chunk of the population is looking into encrypting their communications."
True, but there are a lot of us who are going to do it for them. All our websites & forums are going https (yes I know GCHQ can crack that but they but won't have the resources for routine mass surveillance). The majors have done it already.
Which leaves mainly email - our mailservers are encrypted and out of the uk. So, I guess are the major mass providers (GMail, Outlook etc) at the other end. Again can be read if 'of interest' to the government. But more difficult to screen routinely.
Which is what we want - for the rozzers to concentrate on real suspects, not go fishing around non-suspects.
"The documentation says you need a physical Windows 10 machine in order to get access to a card reader"
Seriously? I suppose they have entirely missed the Win32DiskImager in their halfassed attempt to push Win10.
Or this [drum roll]:
(My first job as a computer operator - correcting the mis-feeds)
in 1970 I climbed a mountain in South Wales. I got the greatest reward ever. As I stood on the peak two Vulcans in white livery flew up the valley and passed below me - presumably on low level training exercises. If you think the Vulcan looks good from underneath - you ain't seen it from above. So if there is a God, it will be a sad day for him/her too despite its intended payload.
Oh, and the memory of Concorde flying over my back garden on Heathrow approach each evening was always a pleasant pause in whatever one was doing to look up and showing that loud aircraft noise can sometimes be welcome. Aviation is just so boring these days.
Theresa May will next week introduce a bill into parliament to make turning to the right mandatory. Fuel duty will be abolished and a new bell tax will fill the funding gap. Lefties will have their rights removed and then be squashed. There, that's what you voted for ....
"Cyclists utter obsession with getting ahead of traffic at junctions does them no favours. It pisses off every other motorist and puts them in dangerous situations."
The whole point of commuting by bike is to get there faster. A bonus is it costs less, keeps you fit, causes less obstruction overall to motor vehicles and kills fewer people.
If I have to stay in line with cars (10x my width) then I might as well use my car. But if we all did this then the congestion would be much worse and you would be stuck fuming in your car for even longer. Who would you take out your frustration on then?
You have my sympathy - driving cars in cities today is bound to make you feel angry.
"Last year, not half a mile from my front door, an elderly pedestrian was knocked down and killed by a cyclist on the pavement."
That's one too many. Where was it?
To put it into context as a pedestrian - which we all are - there was one pedestrian death involving a cycle on the pavement or verge, whereas altogether, 34 pedestrians were killed on average each year by vehicles on pavements/verges.
Which fits my experience around here where I'm much more likely to encounter a car on the pavement than a bike. And we have a lot more cyclists than any other city bar Oxford or Cambridge. Whereas campaigns to protect pedestrians on pavements always focus on cyclists and ignore the much greater danger. Facts don't seem to matter.
"I'm more concerned about PM10s in London than about construction traffic. It's less visible and more deadly."
And apparently more dangerous if you are inside a vehicle creating even more than cycling alongside it. All to do with the re-circulation of air in a confined space.
"Not for one second am I belittling anyone's tragic death, but 20 in a year is tiny in comparison to deaths from other traffic accidents, obesity, smoking, alcoholism, cancer, well pretty much everything else you can think of."
Well that's a lot more than terrorism in the UK and look at the amount of money and police we are prepared to throw at preventing that.
But the greater issue is that it is this fear of cycling that is the greatest impediment to people who want to cycle to actually do it. Telling them that the risk is infinitely smaller than the life extending benefits doesn't really get through. Hence the obesity, the extra road blocking traffic and its easier to smoke in a car than on a bike.
The size of the problem is a benefit. Its a tiny fraction of drivers who can be targeted or re-incetivised to make much of the problem go away. It should be easier, cheaper, faster and much less disruptive than trying to change our road infrastructure, redesign vehicles or create an app.
Its a low cost per life saver - and shouldn't upset the 96% of drivers (and 80% of cyclists who are also drivers). So let's cool the anti-cyclist sentiment. One gets enough of it on the road no matter how well one tries to do the right thing.
"If cycling, don't try to get to the very front of a queue, hang 1 vehicle back, then you can see what is going on, and the driver, just may be able to see you."
Are you the guy who gave me my first downvote?
Instead of coming out with this - why not try and understand the real problem? Yes cyclists can be as stupid as anybody else but the killing is done mostly with one type of lorry operator. It isn't even the most challenging vehicles on the roads. Cyclists rarely have issues with the biggest supermarket artics. They are driven well and can even cope with the odd idiotic cyclist.
The not so stupid cyclist in London is very, very aware of the construction lorry issue. Its the one vehicle you give the maximum clearance possible. But the opposite is not true. Last week I had a skip lorry whizz past close with a heavy chain swinging in the breeze. It was pure luck it didn't take my head off.
The issue on cyclist deaths in London is a very specific one. Many (most) are caused by a tiny segment of the lorry trade. Specifically those in the construction business. This is believed to be largely caused by the business model. Many driver owned lorries being paid by the load.
Incentivised to cut corners - literally. But also in maintenance, insurance and licensing. Complemented by H&S saying its not their job to sort and the police choosing not to enforce the law, Some decent lorry operators have greatly reduced incidents through training. But this take time and money. Giving the pirates, the guys who kill, a greater advantage.
They are not going to buy this kit. Extra cuffs for the police may be a better investment.
CyanogenMod liberated my HP Touchpad. I had hoped they would be the end user's friend against the bloat, control and obsolescence that Samsung and others build into their phones and tablets.
My impression is that all this dosh hasn't got the latest Android on a wider range of devices. The new paymasters must presume its going to cost them less get Android tailored to their devices than employ their own teams. Is CM now just an outsourced contractor?
Is it only going to get worse? Lollipop for the Touchpad now comes from individual amateur enthusiasts. Bit like the old poor CyanogenMod.
"This affects the whole WordPress set-up and not just the Likely Lad cook?"
And not just Wordpress. It's likely this was backdoored via a third party theme or plugin. A number of vendors replicate them across the popular CMSs. its just that WP being the biggest is the most attractive target.
Frankly even good SysAdmins get caught. An issue is that we can't really share our defensive measures without giving them away to the enemy. So we roll our own and who can guarantee to do that perfectly?
What's unforgivable is not to have a recovery plan when (not if) it happens. The 5 week DEFRA downtime is really bad service. And I bet they paid a lot more to the contractors then did Mr Oliver who, from the report, got it sorted quickly.
Yep, another smart move by our brilliant lads to deceive the enemy by highlighting this decoy site to attract incoming when the balloon goes up.
The lack of any connectivity with civilisation or even Yorkshire gives it away. Shame on you Reg for publishing a picture of the real comms hub. Beer will be spilt!
"By migrating away from WordPress?"
Oh, how I wish.
Yes I've tried Drupal and Joomla but they just don't have the quantity and ease of off the peg plugins and templates. And with Joomla I've been bitten twice with security vulnerabilities which is one more than Wordpress which I use much, much more.
Still WP is a stinking pile of steaming sh^t. The rot starts not with the coders but with PHP. A true abortion we seemingly cannot escape.
- a retired cgi-bin Perl luvver <:-(
"But how can they patch when it's an unknown Vuln, by the looks of the article?"
You should be able to re-edit your login.php file and hopefully secure it. This may not stop re-infection but it means you can limp along with close vigilance until the backdoor is identified. Re-edit login.php from the command line not through wordpress - then change your login and password pdq.
Disable all other accounts and warn your users their passwords may be compromised.
"Eh? You've not needed a dedicated IP for SSL since SNI was invented about 10 years ago"
Except SNI will not work with IE8 and below on XP or less. Sadly they still form around 25% of our web traffic so we can't afford to lose/upset them. So most of our sites stay on http. What we need is an IE<9 killer. Or just an IE killer ;-)
Sounds wonderful - but only if (as a minimum) Firefox, Safari, IE & Spartan follow suit in recognising and enforcing the same meta command. Otherwise it may create more problems than it solves (especially for operators of forums where posters reference their own images).
The issue for us is we want to provide more secure websites than we have IPs.
No problem with SNI except for mostly the WinXP/IE fraternity. Use SNI and we screw them. Much as I would wish to - our clients don't fancy losing 16% of their users. And it is very variable depending on the demographic of the website. We have a few still getting 35%+ WinXP/IE.
Way to go yet I fear frustrating the upcoming salvation that is Let's Encrypt.