* Posts by Crazy Operations Guy

947 posts • joined 29 Jun 2009

Page:

Reddit showers gold on drugs, hippies and Tor-rorists

Crazy Operations Guy
Silver badge

WikiMedia?

Why? They already have far too much anyway ($300,000 salaries for staff, seriously?). All of Reddit's money is probably just going to go into fueling Jimbo's private jet anyway...

1
0

And the buggiest OS provider award goes to ... APPLE?

Crazy Operations Guy
Silver badge

Re: MS could probably close a few of those holes...

Microsoft has been trying to push security-by-default for the last several releases, but turning on too much at once ended up resulting in many of the issues in Vista and many of the compatibility issues you see between releases. UAC was an attempt at reducing the impact of giving users admin rights, if they strip everyone of admin rights by default, they'll just go and give themselves admin rights anyway (For the same reason that I see so many Linux newbies just log on as root after becoming frustrated with running sudo when they just want to install a single package).

The problem is that Microsoft wants to implement new security features, but they also need to pay the bills. No one is going to buy a copy of Windows that they'll have to wait months before software gets properly re-written to run in a secure environment.

0
0
Crazy Operations Guy
Silver badge

The OS changed way to much for those developers to be useful, which is why most of them were layed-off. The OS went from being produced whole-cloth internally with tight integration between the hardware and the OS itself. Then OS X came along and they basically scrapped everything and started over with a NetBSD kernel and a shell over it. A few years later, they went and completely changed the hardware, going from PowerPC to IA-64 bringing a complete change in architecture (CISC is favor of RISC, reversal of endianess, bus changes, etc...). The current iterations of OS-X have far more in common with Windows and Linux than they do with MacOS 9. With all those changes, even the lead architect on OS-9 would be about as useful to the OS-X dev team as a philosopher would be to NASA.

1
1
Crazy Operations Guy
Silver badge

"Now add Samba, Gnome, BASH etc"

OS X contains both Samba and bash, as well as OpenSSL and many, many other GNU utilities, daemons, and packages. After all, OS X, in its current form, is not much more than *BSD with a ridiculously heavy-weight window manager, some extra drivers, and a couple system parameters tuned for the hardware.

3
0

P0wned plug-in puts a million WordPress sites at risk of attack

Crazy Operations Guy
Silver badge

Screw WordPress

I'm moving my blog back to static HTML and text files... Updating pages by hand has become more attractive to me than constantly updating WordPress and its database.

1
0
Crazy Operations Guy
Silver badge
Holmes

"if your website uses a vulnerable version of the plug-in, you’re at risk"

And the award for most obvious statement goes to....

2
0

Intel's Atoms gain new (cosmetic) X-Factor

Crazy Operations Guy
Silver badge

Further confusion

What doesn't help either is that the C2750 and C2758 are identical in every way, except one has TurboBoost (Guess which one of the two it is!)

0
0

Google to tame Android's Wild Wild West to please suits

Crazy Operations Guy
Silver badge

"your operator/manufacturer to let you have the update"

With how cheap phones are nowadays, I figure that the carriers are relying on your just buying a new phone and get OS updates that way rather than pushing them down the pipe.

1
0
Crazy Operations Guy
Silver badge

What about us mere mortals?

Is Google just to let us get screwed over by all the malware and fraudulent apps lurking about in their app store?

1
1
Crazy Operations Guy
Silver badge
Headmaster

Re: Yep -- Android rodeo

Totally agree with your post, except one thing:

Hell's Kitchen is a neighborhood in New York City and gets icicles every winter, which is by far more often an occurrence than an Android update making it to an end-user.

2
0

Europol shuts down darn RAMNIT botnet

Crazy Operations Guy
Silver badge

Re: Oh dear

If I were the enterprising sort, I'd include a copy of that Press Release with a couple logos of those companies and offer the attachment as the disinfection tool...

1
0

Russia considers keeping its own half of the ISS alive after 2024

Crazy Operations Guy
Silver badge
Coat

Why go to the moon?

And not the red planet?

3
0

Not even GCHQ and NSA can crack our SIM key database, claims Gemalto

Crazy Operations Guy
Silver badge

No air-gap?

I figured that their manufacturing process would involve the blank cards being sent to a secure facility that is fully air-gapped from everything. That facility would then program the cards, encrypt the keys, then burn them to CD/DVD. The CD would then be sent along with the SIM cards themselves to the cell company while the encryption key to decrypt the drive would be sent securely (Preferably in a tamper-evident, sealed envelope carried by a bonded courier).

I would also figure that with how cheap storage is, they would have the system that writes the keys boot off of a Live-CD like environment and rebooted for each batch, that way if someone does compromise the machine, they could only get the keys for the current batch of cards. Previous keys would be archived on a copy of the CD sent to customer, but stored in a secure facility.

0
0

Samb-AAAHH! Scary remote execution vuln spotted in Windows-Linux interop code

Crazy Operations Guy
Silver badge

Re: Some inane thoughts on the smaller points grammar...

If you really want to get pedantic, then Unix needs to be written in small caps. As for the plural of UNIX, I'd think it would be whatever ken, dmr, et al. would want it to be.

2
0
Crazy Operations Guy
Silver badge

Re: Samba isn't just used in servers!

"They run Linux"

So what makes them different than a server? Calling an OS update a 'firmware update' doesn't change a thing.

2
0

Google hooks up with group formerly known as ISIS to battle Apple Pay

Crazy Operations Guy
Silver badge

One more middleman

Why do we need yet another middleman just to pay for our goods? So now, we'll have Google taking a fee just to send the work of processing a payment to the credit card provider, who in turn shift the work to the bank; and if its a credit rather than a debit card, push the burden to a massive financial firm.

0
0
Crazy Operations Guy
Silver badge

"He bought a used Delorean"

But it's not 1985, they don't sell plutonium in every corner drug store...

1
0

ACLU: Here's a secret – cops are using the FBI's fake cell-tower tech to track crims' phones

Crazy Operations Guy
Silver badge

How do they detect unlicensed TVs anyway?

The TVs aren't transmitting anything, just absorbing RF waves and turning them into a video/audio stream. Not really something you can detect. You might be able to to track by way of detecting energy levels surrounding the antenna, but that could only really be done in a tightly-controlled lab setting. I suppose you could also detect the reception of these signals by tapping the house's Earth Ground wire and filtering out all the noise. But the existence of a TV signal could be explained away saying that its a mere piece of wire attached to ground and happens to be a harmonic of a TV channel's wavelength...

0
0

MIT demos picowatt radio for Internet of Things

Crazy Operations Guy
Silver badge

Re: Is saving 10nW worth it?

Given that the technique they are using requires a trivial amount of energy to add into a design, then yes, it is worth it. All of this is on the silicon itself, so there is no increase in component count for the finished product. Overall, the only points where additional energy / effort is required will be in the design phase of the silicon, and the additional failed units from the fabricator. But the power savings in the field will dwarf this cost.

1
0

TrueCrypt + Norton AV = BSOD, wail disgruntled users

Crazy Operations Guy
Silver badge

Re: WinRAR

And that would be the reason I abandoned ASUS products: every driver they had was in RAR format, and only in that format (ASUS KCMA-D8). Any company that expects you to have a third-party tool just to install drivers can go right to hell... The drivers weren't even that big to begin with, so what are they saving by using that format?

1
0
Crazy Operations Guy
Silver badge

""upgrade" and "Norton" in the same sentence"

No, the proper way to uninstall Norton is to stick a Windows install disk into the machine and nuke the whole thing. Norton infects the system so much much that there is no way of ever fully getting rid of it...

4
0

'NSA, GCHQ-ransacked' SIM maker Gemalto takes a $500m stock hit

Crazy Operations Guy
Silver badge

Any word on their smart cards / tokens?

I'm more concerned about whether their Smart Cards and tokens are still safe...

0
0

Expired router cache sends Google Cloud Engine TITSUP

Crazy Operations Guy
Silver badge

And this is why you have Hybrid clouds / multiple cloud providers

No data canter or host can have 100% uptime, so its stupid to trust any single one with your data / services. I've had a lot of luck placing about 2/3 capacity on Amazon's and another 2/3 of capacity on Rackspace's cloud. Both deployments are split between two regional DCs each, so that even if, say, Amazon's US-West region keeled over, we still have full capacity. And if their whole cloud goes down then we still have services running on RackSpace. Even one entire cloud and half of the other could go down and we'd still be able to limp along without seeing any services down (assuming the load doesn't kill them).

0
0

Prawn cocktail offers hot new way to make solar cells

Crazy Operations Guy
Silver badge

Ah, aphrodisiacs...

They're so hard to prove their effectiveness given that they just trigger the placebo effect when you take them yourself. Then when trying to give them to someone else, usually its the theater surrounding the dosing that gets them in the mood, rather than the aphrodisiac itself...

1
0

A cookie with a 7,984-year lifespan. Blimey, Roy Batty only got 4!

Crazy Operations Guy
Silver badge

How did they determine "Third-party"?

I've seen many time when a cookie is from what the browser believes to be a 'third-party' but is just Site-cdn.net. So from one perspective, its the same website (same owners, same operators, etc); but a third-party form another, as its a different domain.

1
0

Israeli gov & boffins targeted by pr0ntastic malware from Gaza

Crazy Operations Guy
Silver badge

I wonder how long

I wonder how long it will be before these militants realize we don't give half a shit about what religion they follow; that the only reason we are angry at them is the fact that they keep oppressing / killing innocents...

6
0

£100 MILLION poured down drain on failed UK.gov IT projects - in just ONE YEAR

Crazy Operations Guy
Silver badge

Re: Better than expected

Indeed. Just compare this to the amount the US government wastes on failed IT projects. They've burnt through so much money that they had to create a whole new agency (GSA) just to deal with all the waste...

2
0

'Come on, everyone – block US govt staff ogling web smut at work'

Crazy Operations Guy
Silver badge

Re: From the Redundancy Department of Redundancy

But this bill is to give the various government agencies the funding, and permission, to put content firewalls in place. His aim is to switch from a passive approach to an active approach to prevent one-handed-computing in the government.

Of course it could never be fully effective. People that want to view pornography will always find a way to do so. If you block it on the internet, they'll find proxies. Block the proxies and they'll use their phones. Then they'll go to USB storage devices, CDs/DVDs, and even magazines. If you manage to block all those methods, they'll just go find a job elsewhere.

1
0

Reg hacks (and rest of 'Frisco) in LinkedIn measles contagion scare

Crazy Operations Guy
Silver badge

If I get sick...

...can I sue Jenny McCarthy and her followers for lost pay from being home sick from work? What about the money my company loses from failing to uphold our contracts?

9
1

VirusTotal wants YOU (but not you) to join its epic AV whitelist

Crazy Operations Guy
Silver badge

I'm quite aware of that. My point being is that in today's environments, a security application that only warns you about malware is obsolete, we need more comprehensive solutions.

0
0
Crazy Operations Guy
Silver badge

So what does it do about Chrome? I've seen a couple installers that want to install it along side whatever I downloaded initially...

6
0
Crazy Operations Guy
Silver badge

But most exploits in modern software come from those 'trusted' bits that are being white-listed... Why not have it set up to only have libraries and other bits of code on there that haven't been proved exploitable. I'm sure there are several compiled versions of OpenSSL on that whitelist that have vulnerabilities, especially since there are over 6000 Microsoft-built binaries on that list, one of em has to be vulnerable.

Just because it isn't a virus, doesn't mean it won't bite you in the ass...

1
1

SpaceX HOVER-SHIP landing scuppered by MASSIVE ocean waves

Crazy Operations Guy
Silver badge

I'd think they're ready to come down on land

They've managed to hit a 100 square-meter boat bobbing up and down in the sea, at night. Perhaps they could do so for their launch out of Vandenberg and attempt to land in New Mexico and Nevada where there is quite a lot of open spaces and old testing ranges that wouldn't have anybody hanging around. If they land the bits in Nevada, they could always make some extra scratch by placing a target out in the desert and set up a bet on how close it'll get.

If they can make it to Arizona, they could set it down in the Yuma Proving Grounds where its expected that things coming down will blow up.

Overall, they'd learn a lot more if they can recover all the pieces and try for a dry, stationary target.

0
0

Hey, network giants: Facebook swigs from an 'open' 6-PACK of tech

Crazy Operations Guy
Silver badge

As bad as Cisco for the naming

I hate it when the models numbers / names of devices imply a certain number of slots for network cards in the things, but then you find out that two are being used for the management blades.

0
0

HISTORIC HOVER-ROCKET takeoff held up by 'SLEDGEHAMMER' winds

Crazy Operations Guy
Silver badge

I wonder what will cause the next launch to be scrubbed

Would be pretty ironic if a solar storm came by and caused the 4th attempt to be scrubbed...

1
0

California mulls law to protect your e-privates from warrant-free cops

Crazy Operations Guy
Silver badge

A law is the wrong way to go

They should be bringing this up to the US Supreme Court. A state law does nothing to prevent the Federal Government from grabbing the data . Besides, all those companies are technically registered in Vermont and/or Ireland so a judge could declare that the law doesn't apply to them. Plus they could just wander over to the datacenter outside of the sate to grab the same information.

All that being said, getting a Federal precedent in front of the SCOTUS will do a hell of a lot more for the privacy of the people (EG, sue the US Federal Government / local police on the grounds of violating the Sixth Amendment and just keep appealing until they get to the US Supreme Court) Hell they could even get a local police department and the ACLU/EFF to cooperate and purposefully manipulate the case to reach that high up.

3
0

French plod can BAN access to any website – NO court order needed

Crazy Operations Guy
Silver badge

Illico shouldn't refuse

They should just pad the hell out of the bill (Yep, its going to cost 100,000 euros per customer per block request, we'll need to install a firewall for each of them).

1
0

RIP SPDY, we hardly knew ye: Google to retire next-gen web protocol

Crazy Operations Guy
Silver badge

"Google's work on open source .... in stark contrast to Apple or how Microsoft used to work."

I can't agree with you 100% on that...

Microsoft is the largest corporate contributor to the Linux Kernel (To increase compatibility with Hyper-V and other Microsoft products) and Apple sends quite a few code changes up-stream to NetBSD (OS X's underpinnings are based on NetBSD).

0
2

ACHTUNG! Scary Linux system backdoor turns boxes into DDoS droids

Crazy Operations Guy
Silver badge

What exactly is being exploited here?

Is this a bug in sshd? In which case, what versions of sshd? What can be done to mitigate the threat?

The Linux ecosystem is pretty large and there are many different ssh and ssl daemons out there. Hell, there are many different branches of the Linux Kernel itself out in the wild, the part that makes it Linux in the first place...

3
0

UK air traffic mega cockup: BOTH server channels failed - report

Crazy Operations Guy
Silver badge

What kind of OS were you using that it didn't immediately close ICMP packets that it had responded to? Any modern OS would have closed those connections pretty quickly as part of basic Denial-of-Service mitigation. At the very least you should have installed a firewall in front of a machine like this to block connections from machines that capitalize on connections like that (Assuming whatever crap OS you were using wasn't capable of doing such itself).

No wonder you posted anonymous, you were trying to hide your shame after such an embarrassing failure.

1
7
Crazy Operations Guy
Silver badge

Limits on Atomic Functions

So wait, they are running *at* the limit? I figured that something that is meant to guide billions of dollars in aircraft and tens of thousands of lives would have a ridiculous amount of extra resources available. I would think that the system should have a capacity of 512 Atomic Operations across redundant systems so that if one fails you'd still have 63 free operations available to cushion bugs (a 33% buffer).

My company is spinning down their s/390's, so should I be sending them over to NATS rather than just scrap 'em and sell the parts?

5
3

France enacts law to block terror and child sexual abuse sites

Crazy Operations Guy
Silver badge

So what will they be considering as "Terrorism"?

And how long will it be before that definition include anything that is critical of the current administration?

4
0

Toshiba packs NUMERIC KEYPAD onto self-bricking USB drive

Crazy Operations Guy
Silver badge

Re: TrueCrypt?

The biggest benefit is that it doesn't use TrueCrypt...

Even if 7.1a was declared safe, the fact that there was a security flaw tells me that there might be another one hidden in there, waiting to rear its ugly head.

Besides, there's nothing stopping you from doubling up on security and installing TrueCrypt.

0
0

UK official LOSES Mark Duggan shooting discs IN THE POST

Crazy Operations Guy
Silver badge

"The discs were password-protected but unencrypted"

What? Are you telling me that the data was in plain text? And how does the password come into play?

0
0

We take bots down, but they get up again – you're never going to keep them down

Crazy Operations Guy
Silver badge

When will the NSA do their damn jobs?

The NSA was set up to protect the United State's infrastructure from foreigners, so why do we still see millions of infected systems reporting to foreign countries? They have the funding and skillset to stop such things, which are a far bigger threat to our economy and safety than terrorists ever were... SO why aren't they even lifting a finger to stop it?

7
0

What do China, FBI and UK have in common? All three want backdoors in Western technology

Crazy Operations Guy
Silver badge

I'm all for audits

I think that any government that cares about its citizens[1] should demand code audits for everything being imported. A proper[2] audit would reveal any backdoors that other countries have demanded to be put in place.

As for forcing backdoors, that reveals the true nature of a Government in that they only care about staying in power, keeping its citizens safe is a side effect (need someone to rule over)...

[1] If anyone knows of one, let me know.

[2] meaning transparent and uncorrupted

14
1

Snowden reveals LEVITATION technique of Canada’s spies

Crazy Operations Guy
Silver badge

Re: airport wifi?

I think its more about intercepting last-minute messages to the terrorists like the 'go / no-go' command, or where to meet their fellow terrorists to coordinate the attack itself.

Or maybe they just want publicity for catching a terrorist whenever someone posts something like "God, another delay, I should blow this place up!" to a social media site.

6
1

Top smut site Flashes visitors, leaves behind nasty virus

Crazy Operations Guy
Silver badge

Re: To be less coy about it...

"One day everyone will run Linux"

By the time Windows goes away, I'd imagine both it and Linux would've been replaced by something entirely different.

0
0

Facebook kills pic of Mohammed weeks after Zuck's Je suis Charlie!

Crazy Operations Guy
Silver badge

There is a big difference between the two incidents:

Something related to Charlie Hebdo will gain a lot of attention; something related to a Middle Eastern country will not.

It's not about free speech, it's about publicity and profits.

7
0

Bill Gates – I WISH I was like Zuck and spoke Chinese. Yep, I drink poo

Crazy Operations Guy
Silver badge

Death by Super Intelligences: it'll be the personal assistants

I've always figured that rather than military hardware going wrong that'll kill us, it'll be all the personal assistant programs and robots. A military robot would be chock-full of safeguards and fail-safes where a PA bot would have none (those things cost a lot of money) and are more likely to glitch in a way to kill us: tell you to take more medication than normal, convince us to walk through dangerous neighborhoods, or even just sending the wrong commends to our appliances. Hell they'd be far more susceptible to getting hacked by a malicious human since consumer electronics never have anywhere near the security that they need and they'd be so prevalent that research on them is trivial.

5
0

Page:

Forums