Feeds

* Posts by Crazy Operations Guy

643 posts • joined 29 Jun 2009

Page:

Kickstarter tin-rattlers offer reboot of '80s Integrated Space Plan megagraphic

Crazy Operations Guy
Bronze badge

Re: Boots on Mars and break a leg

Better yet, decelerate at the rate it would be on Mars, and get the astronauts pre-adjusted for the reduced gravity. Make it slow enough and they'll never notice.

1
0

NEW, SINISTER web tracking tech fingerprints your computer by making it draw

Crazy Operations Guy
Bronze badge

An improvement to NoScript

I wish NoScript had the ability to have domain-specific white lists. What I mean is that I would like to allow Facebook's scripts when I'm on Facebook.com, but disallow them when I'm shopping for stuff on Amazon, or vice-versa.

5
0

New BOMB detect-o-tech 'could give sniffer dogs competition': TRUE

Crazy Operations Guy
Bronze badge

Re: "... difficult to arrange a test with actual PETN or TNT ..."

Indeed.

In many cases governments will lone out samples of these explosives to researchers (just need to call around and ask). Or as a better test, get a copy of a terrorist handbook and make it the same way that they do.

0
0

Secondhand Point-o-Sale terminal was horrific security midden

Crazy Operations Guy
Bronze badge

I've found that PoS, inventory control, time/staffing systems, and any other systems deployed to stores end up failing due to one of two philosophies (Well over 90% of my clients are guilty of at least one):

'Configure it until it works, then never touch it again until it breaks'

This usually happens when a technician setting up a new system does the bare minimum to get it to work; ofter leaving in default passwords, leaving encryption options turned off, and little to no monitoring set up.

'Make it simple enough for a store manager to fix it'

I see this a lot at large chain stores where systems are shipped out to stores. Companies will try to cut support costs by configuring systems so that they can be set-up by a local contractor (Usually low-skilled) and then be managed store managers so that they only have to send out skilled employees in only the most serious problems.

Either way the systems are as secure as a wet cardboard boxes and nothing will be done about them without a serious breach and immense amounts of effort/money.

3
0

Facebook in new 'experiment' drama: Will users buy it?

Crazy Operations Guy
Bronze badge

If you are using Firefox Sync, then it will automatically install AdBlock for you And most of your other add-ons too). Too bad it seems to have amnesia when it comes to your preferences for search engines though...

1
0

ALIEN BODY FOUND ON MARS: Curiosity rover snaps extraterrestrial

Crazy Operations Guy
Bronze badge

Re: Point of Order

But what if its found to have come from Earth? Like some random ejecta from the collision that created our moon, or some other meteoric collision.

0
0

Don't put that duffel bag full of cash in the hotel room safe

Crazy Operations Guy
Bronze badge

This is why you pay your employees well

It baffles me at how many companies I've been to that have very paranoid levels of security put in place, yet they pay their security guards, janitors/maintenance staff and help desk workers crap wages. In my career as a security consultant, I've seen so many thefts of data by rival companies paying-off low-paid employees.

In one case a security guard and a help desk drone got paid at least a couple hundred thousands dollars each by a foreign company to steal some chemical formulas from my client. Since neither of them triggered any alerts, no one found out about it until after the two of them and their families were long gone. They were corrupted by the simple fact that neither of them were getting paid well enough to support a family.

13
0

'We screwed up' sighs Sony bigwig after gaming portals collapse in DNS cock-up riddle

Crazy Operations Guy
Bronze badge
Joke

Re: I KNOW HOW THE INTERNET WORKS.

Then they just need to register the TLD '.sony', problem solved.

0
0

Redmond may buy security company it says is wrong about AD flaw

Crazy Operations Guy
Bronze badge

NTLM Authentication

You mean the authentication method you have to manually turn on for an AD Domain/Forest set to Windows 2000-native functional level or higher. So unless you are still running NT4 or haven't bothered to properly configure Active Directory, you're in the clear.

0
2

XSS marks the spot: PayPal portal peril plugged

Crazy Operations Guy
Bronze badge

"There's no evidence that any of these attacks actually occurred."

Just because there is no evidence, that doesn't mean something didn't happen. The vulnerability allows running scripts on back-end system, it wouldn't be too much of a stretch to think that that might include the ability to interact with the logging system or run a basic line editor to delete the specific log entries.

0
0

Dodgy Google, Yahoo! SSL certs nuked in Windows – finally

Crazy Operations Guy
Bronze badge

Re: Something needs to be changed in how certificates are trusted.

That's why I would want the lsit to be used as part of the certificate verification process. If the certificate isn't on the list, then it is considered invalid and throw an error; for that certificate to be useful, it has to be acknowledged.

0
0
Crazy Operations Guy
Bronze badge

Something needs to be changed in how certificates are trusted.

I've been toying with the idea that the CA's public key should be added to a website's DNSSec records, allowing for verification that a particular CA is authoritative for a particular domain.

Or maybe require CA's to publish both a list of all certificates they have issued so that any can theoretically audit a CA's trustworthiness. If the list is properly formatted, it would be possible to make this part of the certificate verification process.

Hell, I would settle for a browser plugin that shows me the history of what certificates a website has presented in the past.

0
0
Crazy Operations Guy
Bronze badge

I can understand a CA getting duped into issuing a bad for a small, relatively unknown, website; but something as big as Google? That would have to happen due to an astronomical level of incompetence or malfeasance. Either way they have permanently lost my trust and the entire CA gets pushed onto my untrusted list on my proxy server (My proxy performs man-in-the-middle type inspection of all packets entering or leaving my network and drops anything signed with an untrusted certificate).

0
0

Miscreants leak banking baddie's secret source

Crazy Operations Guy
Bronze badge
Joke

"several IT criminals have been inspired"

Not really news, Oracle has been taking my money for many years now.

7
1

Plucky Rockall adventurer prepares to leave islet

Crazy Operations Guy
Bronze badge

"British Antarctic Survey"

I think they might have gotten a little lost....

2
0

Infected Chinese inventory scanners ships off logistics intel

Crazy Operations Guy
Bronze badge

[Citation needed]

0
0

Future Apple gumble could lock fanbois out of their own devices

Crazy Operations Guy
Bronze badge

Re: stupidity upon stupidity

Indeed. It would be absolutely useless for me, I'm a Technical Adviser to an Outsourcing Company's Sales / Contract initiation team, so I spend half my time at home and the other half in various cities around the world where one week I might be in Berlin, next I'd be in Seoul, then off to Sao Paulo, Maybe San Francisco after that.

Even if I went to the same places constantly, it'd still be useless as I carry two phones: a work hone and a personal one, they are so thin and light nowadays that I barely notice I already carry Micro-USB cables for my external hard disks, battery packs, etc.

Now if might be useful if the location was calculated as distance from my pocket...

0
1

VC who wants to split California REVEALED as Silk Road Bitcoin slurper

Crazy Operations Guy
Bronze badge

Re: " San Andreas fault line"

Someones been watching too many movies. The San Andreas fault is part of a subduction zone; so rather than splitting off and floating away, the two side of the fault line are being pushed together. Over time California will become smaller and much more mountainous as the edges Pacific Plate crumple up against the North American plate.

1
0

FTC: T-Mobile USA took '$100s of millions' in bogus txt charges

Crazy Operations Guy
Bronze badge

So about those other companies raping consumers...

0
1

PayPal says sorry: Fat fingers froze fundraiser for anti-spy ProtonMail

Crazy Operations Guy
Bronze badge

A fat finger...

...at the end of a particularly well-known 'long arm'

15
0

British and European data cops probe Facebook user-manipulation scandal

Crazy Operations Guy
Bronze badge

Would they be liable

Would Facebook be liable if someone they manipulated committed suicide or murder on or around the the time of the experiment?

0
0

REVEALED: The sites blocked by Great Firewall of Iraq

Crazy Operations Guy
Bronze badge
Big Brother

Domain level Blocking

When has Domain level blocking actually stopped anyone? Even if you were to block all DNS traffic except to controlled DNS servers, then people will just distribute hosts files (And that is not even addressing the issue of VPNs, TOR included). I was getting around domain-level blocking in elementary school, and I didn't have much motivation to do so, how do you think it would fare against a bunch of militants trying to get people to fight in their holy war?

I wonder when governments are going to realize that censorship of the internet, or any other media, will never work and doing so only fuels uprisings and dissent.

0
0

Facebook: Yes, we made you SAD on PURPOSE... for your own good

Crazy Operations Guy
Bronze badge
Joke

Re: "Facebook are prepared to distort reality"

Doesn't Apple have the patents for that?

15
0

Aereo presses pause on 'tiny antenna' TV-streaming service

Crazy Operations Guy
Bronze badge

Ridiculous

I don't see where any harm is coming from, in fact the original broadcasters are getting more money. The video stream isn't being modified in any way other than being compressed into a packet stream, so the advertisements remain but are now being seen by additional eyeballs (And without the transmitter needing to pay for more towers or electricity to bathe us in their signal).

The only harm could come from the cable losing out on people that would have bought cable service for just the local (And freely available) channels. In my mind, this is akin to a TelCo suing Skype for damages.

3
0

What a whopper, LG: Feast your eyes on this 77-inch bendy TV

Crazy Operations Guy
Bronze badge

Re: Good I/O Design - I've heard of it!

Most people don't want to see cables sticking out the side of their electronics. If you want to be able to access a port without going behind you can plug in a short extension cable, or just buy some extra regular cables and have them hang out in front of the TV,

2
1

New MH370 search zone picked using just seven satellite 'handshakes'

Crazy Operations Guy
Bronze badge

Re: Goes along with my theory

err, that would *west*ward

1
0
Crazy Operations Guy
Bronze badge
Holmes

Goes along with my theory

When I first read about the flight I had thought it was a simple accident rather than malice:

Wiring catches fire, knocking out transponders and other comm gear

Smoke fills cockpit blinding and suffocating pilots

Panicking pilots accidentally turn the plane eastward

Pilots fall unconscious and let go of the stick

Aircraft engages auto-pilot since pilots are no longer responding

Aircraft keeps going until it runs out of fuel and crashes into the ocean

3
2

Send Bitcoin or we'll hate-spam you on Yelp, say crims

Crazy Operations Guy
Bronze badge

Re: Given the loose definition of terrorism...

I'm speaking from the perspective of the government, there have been numerous congressional hearings saying that scams have cost America billions and all that rot.

0
0
Crazy Operations Guy
Bronze badge

Given the loose definition of terrorism...

And that they are threatening using mercury to contaminate their restaurants, could the recipients of these letters forward them over to Homeland Security? It'd be nice to Guantanamo Bay used to imprison scammers rather than 'terrorists'. Funny how scammers have done more economic damage to America than terrorists, yet the government ignores one and spends trillions on the other...

2
0

Patch looks like Microsoft FAIL, quacks like FAIL, is actually quite good

Crazy Operations Guy
Bronze badge

Re: Probably just updating certificates or something

Do not understand how PKI works? Microsoft certificates and certificate authorities are signed by a third party CA, Baltimore CyberTrust, who may be the ones that use OpenSSL.

It is likely that Baltimore CyberTrust will be re-issuing certificates and revoking the old ones as a precautionary measure in the astronomically low chance that anything was actually compromised, so Microsoft needs to get the new ones in the hands of their users before BCT revokes the old ones.

I assume you posted anonymously because you are embarrassed by the fact you don't know a damn thing about what you are talking about.

2
0
Crazy Operations Guy
Bronze badge

Probably just updating certificates or something

With Heartbleed a few months ago and that the patches for OpenSSL would be done getting applied right now, I think this patch is Microsoft revoking old certificates and rolling out new ones to be on the safe side. Having it separate from the other updates makes sense if they don't want it to end up in the middle and kill any secure session with the Windows Update servers mid-patch or mess with code signing or something.

I know that Microsoft doesn't use OpenSSL, but whoever supplies them certificates might.

0
1

US Supremes just blew Aereo out of the water

Crazy Operations Guy
Bronze badge

Re: Used to be a remedy for home sickness

I don't have a DVR of any sort (Abandoned Cable/Satellite years ago) so neither solution works for me. Now to find some recording software, a decently supported tuner card and a DTV antenna. I just hope that I can get a signal in my apartment.

0
0
Crazy Operations Guy
Bronze badge

Re: Judges are too old

Indeed. I've been comparing Aereo's service to setting up an antenna and then plugging in a thousand mile extension cable.

6
0
Crazy Operations Guy
Bronze badge

Used to be a remedy for home sickness

My job takes me away from home half the time (One month at home, one at customer site in some random country or city) and I use the Aereo service to watch local news and locally-produced shows to ease the stress of being away from home. I suppose now I have to buy a TV tuner card and try and get some software in place.

6
0

ARRRRR. Half world's techies are software PIRATES – survey

Crazy Operations Guy
Bronze badge

Medium business pirating more

In my experience, I've found that it is the medium sized shops that have the most amount of pirated software, they are usually trapped between their original software that isn't scaling well enough to support their size and the the software they will need to grow is too expensive.

Small businesses can easily afford most of the software they need (usually they are unintentionally in compliance from using whatever software the machines came with and not bothering to upgrade).

Large enterprises usually just buy massively expensive site-licenses or get licenses through contractors or consultants setting things up for them.

0
0

'World’s dumbest' suspect collared in Facebook sting

Crazy Operations Guy
Bronze badge

Re: Re Loat all faith... Elephant in the room

I had a similar break-in to one of my company's offices where the burglars broke into an archives room and stole a couple of old Pentium 4 machines rather than the dozen file-boxes stamped with 'Secret - Proprietary' containing our most the company's most guarded secrets (The storage facility they were supposed to suffered a fire, and were there temporarily while the facility was being repaired). Good thing criminals are stupid (if they weren't they'd be security consultants)...

3
0

Drone-assisted Swiss construct virtual 3D castle

Crazy Operations Guy
Bronze badge

Re: 6.5K isn't that much considering what it does

I can see this being picked up a Real Estate company, in fact I am hoping to see realtors using this.

I am getting tired of all the slide shows of a few crappy photos that give you no idea how the house is actually laid out and what it looks like. With some work on the drones, it would be fairly trivial for an agent to pull two drones out of the trunk of their car, turn on a laptop and let the drones go about their business.

0
0

Mozilla to cram a full web-dev IDE inside Firefox browser

Crazy Operations Guy
Bronze badge

Already done with the Mozilla engine

SeaMonkey already has a 'compose' feature and built by Mozilla already, plus it has a mail client (Thunderbird) and an IRC/ICQ/Etc. client.

6
0

REVEALED: Google's proposed indie music-killing contract terms

Crazy Operations Guy
Bronze badge

@ Anonymous Coward

Why would the labels support a website when YouTube already exists and the contracts they are signing will give them a share of the ad revenue. It just doesn't make business sense to go with anything else and Google knows that, which is why they are able to put independents over a barrel like this.

The reason everyone wants to use YouTube is that it has become the one-stop-shop for the great unwashed for music and videos, everything else might as well not exist.

2
2
Crazy Operations Guy
Bronze badge

Wow, I'm surprised that no one ever thought of that before! Writing streaming software, designing a website, moderating forums, maintaining the infrastructure, and getting the word out about the website while financially supporting it yourself until you get enough ad revenue or user support is so damn simple, you'd be an idiot not to!

Or they could get screwed over by Spotify, Pandora, Apple, Amazon, etc. while not getting anywhere near the same number of ears listening to their music that they'd get on YouTube.

25
7
Crazy Operations Guy
Bronze badge

Must suck to be an musician in these days...

Either get pushed around by a major label or pushed around by Google and all the other streaming and distribution companies...

That is on top of the problem of indie music where you have to differentiate yourself from all the bland hipster crap out there also labeling themselves as 'Indie'. I've heard quite a few good ones, but have been overwhelmed by the sheer number of terrible bands.

18
0

EXPOSED: Massive mobile malware network used by cops globally

Crazy Operations Guy
Bronze badge

Firewalling cell phone data connections

I wish there was a method of building a hardware firewall for a cell phone. Crap like this is getting out of hand and I would like the ability to block it. A simple processor between the Phone's main processor and the Radio module would do wonders for mobile security.

5
0

Google Nest slurps your life into the Matrix? The TRUTH

Crazy Operations Guy
Bronze badge

Re: Why such complexity?

The whole of humanity is creeping featurism...

1
0
Crazy Operations Guy
Bronze badge

Re: I think I'm going to move to hidden cave in the mountains and become a hermit...

Why the hell would I want to host an illegal rave? I just want to use the bathroom without Google knowing about it and getting bombarded by advertisements for toilet paper.

7
1
Crazy Operations Guy
Bronze badge

I think I'm going to move to hidden cave in the mountains and become a hermit...

All these devices are starting to worry me. It won't be long before there is no longer a square meter on this planet where you aren't tracked and recorded.

I think my next project will be to convert my house into a giant Faraday cage and wire up a bunch of Ir and UV LEDs to blind cameras, maybe some sub- and ultra-sonic white noise generators to deafen microphones too...

2
1

Microsoft brings own security info exchange to the world

Crazy Operations Guy
Bronze badge

Re: Is this not a bit like reinventing the wheel

The problem is that the whois information for security.stackexchange.com doesn't show as "Domain Admin, 1 Microsoft Way, Redmond, WA..."

0
0
Crazy Operations Guy
Bronze badge

The truth is that every piece of code can have exploitable holes. It is foolish to think that just because someone did (Or didn't) write a piece of code, that its secure. All programmers are humans and humans make mistakes; this includes every from the barely competent programmer at a cut-rate body shop in China, to a highly-paid programmer in a software company's shiny office, to Linus or ken themselves; they all make mistakes and they're be security holes (While some people have much lower rates, it'll still be greater than zero)

0
0

F1 racing ace Michael Schumacher's medical records were pinched

Crazy Operations Guy
Bronze badge

Why

What value do these records have? The patient is retired from their sport (so no value for competitors) and has been released and recovering normally (so no use to the media to be first to report his death or complications).

The only people I can think that would actually buy these are overly obsessed fans and scummy tabloid writers.

3
0

DISPLAY DESTRUCTION D'OH! Teardown cracks Surface Pro 3 screen

Crazy Operations Guy
Bronze badge

Slide-in batteries and SSD?

Would it be possible to design a tablet like this to have the battery slide in and out? You could reduce the additional space by having the battery latch to the other end of the tablet and using a reversible 5-pin connector (+ and - on each end and a 1-wire interface) to remove the need for guides or something of the like.

The SSD could just slide in with a small panel at the far end to seal the device with two screw posts.

Allowing these two things would greatly extend the life of the Surface lap-tabs and give them a huge advantage to tablets and a couple laptops.

3
0

Page: