Feeds

* Posts by djack

127 posts • joined 16 Jun 2009

Page:

BlackBerry ditches T-Mobile US after iPhone advert spat

djack

Re: Hypothermia

"When you're dying due to shitty sales it's not the time to go cutting off sales channels of any kind"

Even if said sales channel is explicitly trying to poach your loyal customers for a competitor? It looks like if they stayed with T-M, they would have fewer customers, not more.

6
2

Full Disclosure redux: under new management

djack

Re: Great idea, but there's just one thing

That's exactly why this is a mailing list rather than a website. Everyone can create an archive whereever they want. Just as the archives of the old FD list are available all over the place.

Besides, Fyodor has repeatedly proven his backbone in the face of takedown 'requests' and the like over the years.

2
0

Mastercard, Syniverse target holiday payment security with mobile verification system

djack

"Finally, if going abroad give the customers an easy way to inform the bank, we are going to be in country X between Y and Z."

One of the few things that MBNA have got right is precisely this. I just drop them a text saying when , where and how long and it's all sorted.

I'm pretty sure that my card was cloned whilst I was in a UK airport when going abroad on holiday a couple of years back. The number was used several times (though I had not attempted to use it whilst away) and the anti-fraud systems kicked in really quickly. The dodgy charges were all sorted and the card cancelled within a few hours of me getting onto the hotel and there was a nice shiny new card waiting for me when I got home :)

0
0

Plusnet shunts blame for dodgy DNS traffic onto customers' routers

djack

Dunno, seems to be bash PN month at the reg.

3
0
djack

Re: For me there is a basic question

'The crucial difference was *the Cisco router could be patched*.'

The supplied Thompson device is actually firmware upgradable, though it's a faff on to do it. I had to flash the stock manufacturer's FW onto mine to allow my firewall to do PPPoE itself. The btchered firmware it came with was truely dire.

0
0

Psssst. Don't tell the Bride, but BBC Three is about to be jilted

djack

Re: And nothing of value was lost...

I disagree, there has been a fair amount of good stuff on BBC Three. As well as those other examples that started on the channel Being Human and The Revolution Will Be televised spring to mind.

I don't think that there has been anything on TV recently that has called out the hipocrisy, corruption and double-dealing in the governemt and large commercial entities.

That said, they could easily fit all of thequality programmes and new experimental stuff on BBC 1 and 2 by cutting down on the number of repeats and examining the synopsis of the shows they have. If the word 'reality' appears in there, then chop the programme. Simple.

17
0

Play.com tech titan snaps up 'VoIP-tastic WhatsApp' firm Viber

djack

What's this got to do with WhatsApp?

5
0

GPs slam NHS England for poor publicity of data grab plan

djack

Thanks for that link - most informative. A couple of things jumped out at me ...

What information will be shared? : Your NHS number and date of birth, your postcode.

Some reasons why you might choose to opt out: There is a small risk of your data being traced back to you. You cannot be sure which companies may have access to your information in the future.

So.. one item of data that uniquely identifies you and two others that, when combined can almost certainly identify you only pose a 'small rsik' of identification?? Oh, and you have no idea where this data is going to end up - who in their right mind can think that this situation is acceptable?

the fact that there is no standard, straight-forward way of opting out of this speaks volumes.

6
0

Elderly Bletchley Park volunteer sacked for showing Colossus exhibit to visitors

djack

Not quite..

From what I have read, Station X was the name for the whole BP operationand not much (if any) wireless listening was actually done there. There were numerous Station Y (Y-erless .. geddit?) posts around the globe that actually did the listening and intercepts, most of which were sent to Station X for decrypting.

Many stories about Station Y posts are covered in "The Secret Listeners" by Sinclair McKay. Quite a fascinating read, The managers at BP were upsetting other, related organisations even then aand we actually had the sort of PRIM-like data capture capability that everyone is getting up in arms about today .. back in the 20s.

0
0

Valve showers Debian Linux devs with FREE Steam games

djack

Re: Can't resist

The games you have bought may not have been posted, but but there are many that have. For example, if of the entire Valve collection only Portal 2 and CS:GO don't have a Linux version (no idea why those two have been left out). I have almost a hundred titles in my library - most of which were imported via the humble bundle, and but some were recent Linux specific purchases. The others being the HalfLife 2 bundle I am bought a when Steam was first launched.

3
0

Google's Nest gobble: Soon ALL your HOME are BELONG to US

djack

Re: @DropBear Beg pardon?

"Can you tell me how you do that please."

Install owncloud (http://www.owncloud.org/) on a server.

Install a CalDAV and CardDAV client on your phone (I use two separate apps, but people have reported good results with DAVdroid).

I have calendar and contacts synced between my phone, tablet, laptop and desktop.

0
0

Security guru Bruce Schneier to leave employer BT

djack

Re: B3

"Cable & Wireless Worldwide became part of Vodafone in April this year."

Yep. C&W have run those networks for many years. A few years back, they lost the contract to Energis - remeber them? They won the gov contract and were then quickly bought by .. Cable and Wireless .. odd, that ;)

0
0
djack

Re: B3

"..Many BT exchanges used to (and I suspect still do) have classified compartments"

Quite true. However, it does not set them apart from other large companies. For example, it's no secret that Vodafone runs the GSI network, which deals with a lot of the classified data traffic in the UK. Most large players in the managed datacentre field have secured DCs that can be used to house classified services and data.

So what was your point?

5
0

Hackers steal 'FULL credit card details' of 376,000 people from Irish loyalty programme firm

djack

What are the Affected Schemes?

Why does there not seem to be a full list of the schemes that Loyaltybuild were responsible for? A couple of company names have been given, but how are people expected to know if they are affected without a definitive list of the schemes?

I'm pretty sure that this will be the first that 99% of the people on the schemes have heard of 'Loyaltybuild'.

2
0

Virgin Media to hike broadband prices by nearly 7 per cent

djack

Re: So will this 7% rise be in addition to the 11.5% rise BB only subs got gouged with?

"Handily VM have included a setting in the admin screens to switch off hub features and enable "modem only mode". There is no reason to stick with 20Mbps just because you don't want a superhub because there is no good reason not to want a superhub"

When the 'super' hub first came out, the modem only mode did not exist. It was simply a planned feature for the future. This came in at the time I was moving out from a shared house with VM BB. They lost me as a customer because they wouldn't supply me with a device that behaved like a plain modem.

That situation has changed now, it may be that Pete 47 isn't aware of the upgrade.

1
0

How Google paved the way for NSA's intercepts - just as The Register predicted 9 YEARS AGO

djack

" I don't use Google products now bar analytics, but even that is soon to change."

You are probably already aware of this, but Piwik does an amount of the stuff that google analytics does and can be self hosted ..

http://piwik.org/

2
0

Your kids' chances of becoming programmers? ZERO

djack

Re: 6502/6809's rool btw...

"EIEIO on the 6502? You jest. It's the PowerPC "Enforce Instruction Execution In Order" opcode."

Hmm, my memory is failing.

The mnemonic expands to the same wording, but I've definitely not done any assembly code on PowerPC (not done any at all for at least 15 years tbh,) so it must have existed on an earlier platform. It could have been 68000 I suppose.

1
0
djack

Re: 6502/6809's rool btw...

Whilst I was more of a Z80 kid, I do remember being amused by EIEIO on the 6502 (I think!)

2
0

Valve uncloaks prototype Steam Machine console specs

djack

Re: dont get it

The point of the differences is not to find the best performing system, it is to find a sweet spot between price and performance that a typical user would accept.

6
0
djack

It's my understanding that SteamOS will be free to download and install wherever you want.

I'm sure that they'd be delighted to have your input.

4
0

Would you hire a hacker to run your security? 'Yes' say Brit IT bosses

djack

Re: Really? Are you sure?

So true.

Unlike physical security who typically have no need to enter the secure areas - just keep others out, information security is much more far reaching. There isn't a clear boundary that is the only place you need to actively defend, you need eyes everywhere from the external boundary firewall(s) through to internal authentication, applications and data stores.

Also, the skills needed to break in are not the same as those needed to secure. My field, penetration testing is the one where people always fail to see that. A bad guy needs to 'simply' find one way to compromise the system and exploit that.

In addition to that I need to find as many other ways as possible and know how to mitigate or fix those issues. I also have to do that with as minimal an impact on the system (not always possible) and communicate the issues to the system owner. I'm also expected to know about pretty much anything that I encounter on a network.

0
0

Travel much? DON'T buy a Samsung Galaxy Note 3

djack

Re: at least my unlocked iPad and iPhone works ANYWHERE!

If it were a radio issue, and the warning would point out that it won't work at all in the other countries. The implication here is that roaming would work, and just not a local SIM. Whilst a technical limitation of a device is disappointing, adding deliberate blocks to functionality that the device has is abhorrent to me (even more than defending Apple).

Is it possible that there is a new standard for a SIM that has only been rolled out in Europe and that the phone depends on a feature in this version?

8
2

'Bogus IT guys' slurp £1.3m from Barclays: Cybercops cuff 8 blokes

djack

Re: This is supposed to be a tech site

"er no ... <£10 on eBay (I checked)"

Link please. I checked also and failed miserably to find one.

0
0

One of last few iPhone 5Ss STOLEN from within MASSIVE POLICE CORDON at Apple Store

djack

Re: Police are looking for the smug git

True, the Android crowd have already started slavishly copying it's new features.

... two years ago : http://www.gsmarena.com/motorola_atrix-3709.php

15
3

Microsoft cans three 'pinnacle' certifications, sparking user fury

djack

Re: Do I spot a tendency here?

I've always thought that to MS, the term 'partner' means 'entity in the queue to be shafted'

5
0

Holiday HELL: Pourquoi, monsieur, why is there no merdique Wi-Fi here?

djack

Typical O2 Rip-off

£2 for only 25MB ??!

Get on Three, throughout most of Europe it is £5 a day (note the lack of a data cap) - that was cheaper than the WiFi in the hotel I was in :)

1
0

Jolla's first Sailfish phone preorders 'fully booked'

djack

Re: Got my free T-shirt ...

Yeah, went there, got the t-shirt :)

Is there any news on what the exclusive 'other half' will be yet?

In my dreams it would be a physical keyboard, but no real chance of that I suppose.

0
0

Peter Capaldi named as 12th Doctor Who

djack

Re: BBC PR = news

"Just because the BBC think anything to do with Dr Who counts as internationally-important news doesn't mean the rest of us have to go along."

Regardless of what you may personally think, it was an international "event". The thing was broadcast live pretty-much globally. Just out of interest, I tried the BBC America website at 7PM and the thing was basically flattened. Getting some global viewing figures would be interesting.

Come to think of it, I can't think of many other live global broadcasts like that (even thing like the Olympics had different anchors/commentators etc.)

1
0
djack

Re: Good-Bye DW?

I am having great difficulty reconciling 'weak' and 'Malcolm Tucker'. He was scarier then many Who villains.

5
0
djack

Whos' Who?

The thought of that almost made me throw up a little bit of sick.

I don't know whether to give you a down or up vote for that.

If the BBC are reading this forum and decide to do that next time, I will hunt you down.

5
1

Step into the BREACH: HTTPS encrypted web cracked in 30 seconds

djack

Re: Ok....

It's very different to BEAST, but I really can't see this as any substantial difference to CRIME, other than the code generating the multiple requests resides on the attacker's website (which the victim has to vist) as opposed to finding a cross-site-scripting vuln on the target website.

1
0

British boffin muzzled after cracking car codes

djack

Re: How to stop this happening again

I almost agree. However, it is unreasonable to prosecute just for the presence of security issues. In such an environment, no one could risk producing anything. We have to accept that imperfections are inevitable in any nontrivial system. It is especially unfair when systems use third party components.

Where I would support jail is for failure to react to the discovery of issues in a professional and timely manner.

10
0

'Do the right thing and tell on a pirate' - software bods

djack

Re: staff are motivated to blow the whistle to limit their potential exposure to criminal offences

"It is a criminal offence to know about a crime being committed and not report it"

No it is not. There are a number of exceptions to this, but they are few and mainly focus on terrorism and child sex abuse.

4
0

Samsung plans new R&D centre in Finland

djack

Re: Research or Tax fiddle for big business?

With their foray into Tizen, I wouldn't be surprised to see them go for the Maemo expertise. I hope that they don't raid Jolla though. I prefer the open approach to the carrier friendly lock down that Sammy is likely to produce.

Given the nature of the operating systems being open source, it is possible that it could be mutually beneficial.

2
0

Rogue Nokia splinter cell drops its Jolla phone A-BOMB

djack
Thumb Up

Re: Rolling upgrade

Indeed. I am hoping that they will be able to produce a keyboard as an 'other half'.

Finally, something that looks like it could be an available successor to the N900 :)

They have my 100 Euro

0
0

The IT Crowd returns to Channel 4 for a final episode

djack

Re: So glad these are still live!

Thanks for those, I never knew that http://www.reynholm.co.uk/ existed. I'm sorting my Reynholm security pass now :)

BTW you missed out on http://www.ladyproblems.org.uk/

1
0

TV gesture patent bombshell: El Reg punts tech into public domain

djack
Stop

Re: I really don't like the idea of gesture TV

"5 pairs of eyes are detected, this film is only licensed for 4 pairs of eyes at once. Please upgrade your license at www.bastards.com"

You are behind the curve on that one - Microsoft patented that concept last year as something that Kinect can do..

http://www.geekwire.com/2012/microsoft-diskinect-freeloading-tv-viewers/

3
0

Security damn well IS a dirty word, actually

djack

Re: ...while TLS 1.2 isn't implemented by any!

TLS (and most other crypto) in IE and IIS (and many others) is handled by SCHANNEL which I believe to be a component provided by the operating system, so it is more correct to comment on the capabilities of various versions of Windows as opposed to the applications that make use of whatever is offered. Basically, WIndows XP does not support TLS 1.2 but Windows 7 may well do.

Of course, most multi-platform pieces of software will be using some other crypto library.

0
0

Stephen Fry explains… Alan Turing's amazing computer

djack

Re: God I'm getting sick of Fry

Brian Cox actually has a proper Ph.D in particle physics, has a large number of peer reviewed papers to his name and spends a lot of time playing with data from the LHC. Frankly he is one of the most knowledgeable guys on TV, especially when it comes to talking about the universe and it's origins.

6
0

Bank whips out palm-recognition kit - and a severed hand won't work

djack

Re: Still Snake oil

I was talking about the biometric data, not any sort of hash. Once you have that and access to the data communication channel the scanner uses, the system is irreparably broken. For an ATM that may be tricky but for many other applications of this technology, it is a trivial task.

0
0
djack

Still Snake oil

This thing is subject to the same fundamental flaws of all biometric systems. The scanner produces a static data representation of your palm. It is this data that is actually used for authentication. I the server checks if this pattern is the same as (or close enough to) the pattern stored for you during enrolment. Basically it is a long password.

What happens when (not if) password data is compromised? Easy! Simply force the user to change the password - good luck doing that with biometrics.

2
0

Gnome cofounder: Desktop Linux is a CHERNOBYL of FAIL

djack

Re: Huh.

"Which you have to do from the CLI. Epic fail, right there."

Or you can just click the 'upgrade' button in Update Manager.

Epic failure to check facts, right there.

17
1

Clarkson: 'I WILL find and KILL the spammers who hacked me'

djack

Re: I don't mind being compared by age...

"Did you see him that time they had to build a Caterham?

WIlfully ignorant. To the point that it was embarassing to watch."

What, you mean where he's putting on an entertainment show, playing the incompetent clown?

Put him in a different context where he is giving his opinion not just comedic* entertainment and he has a totally different set of apparent values.

If you took almost everything on TG at face value, you would believe that all three of them could barely stand each-other and take great delight in endangering/humiliating the others. Watch the episode when Hammond comes back after his near-fatal crash - that mask significantly slips there.

* Remember, comedy, like many other art-forms, is a subjective thing.

0
0
djack

Re: I don't mind being compared by age...

I don't think you're being fair there. He has his viewpoints and they may be polarised to yours, that doesn't necessarily make them invalid or willingly ignorant any more than yours are.

Quite often his belligerence, when not exaggerating for entertainment purposes, is due to him actually believing what he is saying is right. Importantly, he is willing to change his opinions if they are shown to be wrong. The whole bank account details thing is a case in point. He believed that 'the experts' were over exaggerating the problem and needlessly scaring people and throwing seemingly pointless obstacles in the way of daily life. Believing himself to be right, he didn't just grandstand but put his money where his mouth was.

He was shown to be dead wrong. Did he dissemble? Did he go on the defensive or on the offensive? Nope. Unlike many, he quickly acknowledged the reality of the situation and changed his opinion.

27
2

Sony promises PC-based PlayStation 4 for Christmas

djack

Re: Sony have dropped the ball

Yeah, I it would be good for Sony to put a general(er) the purpose OS on the PS4. That way they have some functionality to remove after a year or two.

6
1

Oh, Sony, you big tease: Mystery PlayStation reveal date set

djack

Re: SingStar on PS3 XMB anyone?

Exactly. With this and the Linux fiasco, I have lost faith with Sony.

I don't ask much from companies I do business with ... just the acknowledgement that what when I purchase something it becomes mine (and is not something that they should tinker with to my detriment) and a modicum of respect for my opinions and me as a paying customer.

Sony decided that they did not want to provide that so I have decided that I do not want to provide them with any more money.

Eagerly awaiting the Piston.

3
1

'Silent but deadly' Java security update breaks legacy apps - dev

djack

Re: Duh, perhaps there are too many bugs in Java 6 and it's time for an update?

@Daniel B.

"However, this can be fixed by simply doing

java -version:1.4 -jar MyClientApp.jar"

Nott quite. It causes the Java launcher to locate and use a1.4 JRE. This only works if one is installed and (obviously) will not work if the new installer has removed all old versions.

1
0

UPnP scan shows 50 million network devices open to packet attack

djack

Re: A security scanner that requires Java ! WTF?

Metsploit is written in Ruby.

There is an optional desktop GUI, Armitage, which is written in Java. Like any other desktop application, it does not run in the applet sandbox - which is where the security concerns lie.

4
0

Page: