166 posts • joined 11 May 2007
Re: I wish...
http://www.dailymail.co.uk (But I think you have to pass some kind of test called a 'Job Interview' before you get to post on this one properly)
Re: Not outsourced
"I'd bet heavy money that the hosting is done by Rackspace"
EIther that or they plastered El Reg with RackSpace adverts because they thought they looked pretty - not sure that's a good bet to take.
Re: They won't de-dupe the whole file
Assuming they actually de-dupe the data right now of course, it might just be in there to give them the oppotunity to dedupe in the future (however they decided to do it) without getting everyone to re-agree to the T&Cs.
If I were going to be doing a file hosting service of that size, I'd certainly want the oppotunity to save space at some point in the future.
Re: The company you keep
I agree with your post - but I downvoted it because I've always wanted to see a Black Helicopter (especially now they are robotic!) and being accused of being a fascist pedoterrorist seems like the quickest way to see one in Britain.
"Thus the chain of cyber attacks on U.S. banks will continue this week."
You would have thought that the NAME of the bank would have given away their mis-assumption.
Re: Legal basis?
I imagine, considering the amount of police surrounding the building, he gets arrested.
Took me days to figure out why Bullet Storm kept crashing out on my PC without an error message - till I turned my xbox off and my live account was no longer logged in from two places!
GFWL was a really half assed job of ripping off steam.
It's funny because
Your link had session data attached which bombs when anyone else tries to look at the link (IE try it on a computer other than the authors.)
It's funnier because HMRC can't build website for sheeeeeet.
Actual Link: https://esi2calculator.hmrc.gov.uk/hmrctaxcalculator/
Considering how long my two WD external disks have lasted I would say it's somewhat appropriate
In 3's defence - on the topic of subsidising the few - I just called them up to 'upgrade' my blackberry plan (1000 free minutes, 800ish free txts and a few gig of data (AUP style)) which clocked in at £40 a month and got a shiny new Samsung Galaxy s2 with twice as many free minutes and txts, and the true unlimited data plan for £10 less than I was paying before.
I'm sure people are going to rat all over my monthly bill, but I was under the impresion £30 a month isn't that bad a deal - especially as I now don't need an internet connection at home (I'm in the docklands - 3g is faster than anything BT can deliver across copper and Virgin don't come to my home)
In the office
I laughed out loud.
It's not the issue itself....it's the mindset
My issue with this, isn't in the bug itself, but how Apple missed it - Windows was inherently insecure because of the 'it's single user so lets just patch security over the top' model they used to use. If Apple are thinking the same way with this then what ELSE is inside the thousands of lines of code in there?
Dear El Troll
I guess the real 'problem' here then, is that Skype tries to use direct connection for its communicatoin instead of routing all calls through a CDN (and that would have to be one hell of a CDN to handle that data.)
So the attack goes:
Attacker: "Skype server, where can I contact x for a call?"
Server: "Here: IP"
Attacker: "HAHAHAHAHA I PWNED YOU WITH TCP/IP!"
The whole point of an IP address is that people know what it is, it would kinda break the Internet Tubes if no one knew each others IP.
PS Dear El Reg, I know you track the IP of my comments - can you please stop invading my personal spaces with your Interweb Servers. Kthxbai.
PPS: Actual 'attack' I've used once.
Someone is pingflooding me through MSN (it was a while ago).
One blank, large, jpeg named 'britneyspears.jpg' was created and sent to them.
Stupid kid accepted the file.
One quick netstat later to find his host name (which was someone's name at AOL) and a message "If I call this lady here: [Name] and tell her what you are doing with her internet connection.....what will she say?" and stupid kid vanishes into the air, assumedly to cry.
This is not new news.
You have no idea how stupid you just made yourself look.
"OpenSUSE does include the gnome-tweak-tool, which can help change some of the GNOME Shell settings"
EC1? That's the city....
So what your saying, is that this bike gang is a bunch of banker toffs on mopeds nicking iPads? hehehehe, good times :D
Brown Dwarf = 1 Kutcher
Really bright, hot star (guess my knowlage is invert of yours - fail for me) = 1 Vorderman?
Depends on if they were giving or taking :)
Looks like they really don't care about us
They don't have time to debate debating either :(
I'm quite upset.
They are probably referring to the technology that is used to reduce the effectiveness of the tempest attack - it's really advanced, I think it's called 'low contrst colors' or something like that.
They might also be referring to something along the lines of obscuring window figerprints to stop screen scrapers detecting when a 'secure' window is open (IE I have an application that looks for the spotify window to send it a message to play/pause when I hit the blue thinkpad button on my laptop) and capturing its contents.
so he knew marketing then....
what are you trying to say?
"Unconfirmed reports on Twitter suggest that the Currys store in New Cross, south-east London, was ransacked by looters last night."
Ha! The joke is on the looters! They are gonna be PISSED when they try to flog that gear online and realise it isn't worth quite as much as Currys said it was.
I would have punch Ken Livingstone in the face if I were near him for doing that last night. Utter Idiots.
Not that simple
Unfortunatly it's not that simple. The OS has nothing to do with how a website stores its usernames and passwords, the code for the website does that, and while there are libraries to help you do hashing etc, there is no 'make me a ultra secure, scalable website' library you can just plug into a webserver and it 'just works'.
You do get things like dotNetNuke and other CMS solutions which come with secure login bundled in but they have a learning curve that most people don't bother with.
Lastly there is the .NET framework's FormsAuth (lastly that I am aware of, I'm a .NET developer so have no insight over PHP or Java's offerings) which kinda gives people the ability to custom roll a secure area and make it not suck but that is more like a really gentle push in the right direction, it's no way pretty to use if you want to get really custom on it.
So in short, unfortunatly there isn't, and the quickest (IE cheapest) and easiet way to create a website login is just to roll it yourself.
The excuse I usually hear for not hasing passwords is that if a user forgets the password, or the 'business' want to be able to log into customer's area's for testing purposes, it is easier if the password can be extracted from the database. "And no encrytion is not enough because then I might actually have to use some quick and easy to use tool to read the password as opposed to SQL Server Manager."
I wrote it already
......but it only works on a mac
George.....You silly old goat.
You raise a good point. If we follow terrorist trends (IE how Bin Laden evaded capture) shouldn't we be trying to make some x-ray specs so we can arrest anyone carrying a USB Key?
And not in the good way.
My title didnt contain letters or digits.
Yes! Exactly - it isn't technological leap into the future (and seriously, anyone expecting that with a TWELVE YEAR OLD ENGINE is thinking a bit unrealistically) and this isn't your 'slap-on-your-headset-and-get-into-a-team-to-tactically-defeat-cuba' it's a 'sit-with-a-beer-and-pizza-and-laugh'.
France thinking they are the whole of Europe again.
(Hey cmon, it's usually the Brits fighting the Americans here, may as well get a bit of French bashing in!)
I should have added I'm talking about the Sophos guy, not FaceBook - fair play to FaceBook for this, I guess it'll help the people who take FB WAY too seriously.
Why don't we just send a OTP keyfob to everyone in facebook - that will be high end security. And then we shoudl turn off the Interwebs, as THE HACKERS lives there!
This has to be the geekiest and most awesome article I've read in quite a while.
(Almost as geeky as reading El Reg on a Sunday (aka unbillable hours))
Personally, if I was facing a prison scentence if my code is cracked, I'd go to the trouble of a one time pad.
Don't sweat it
They would never read The Register aways, it's run by infidels.
My money would be on it still taking them months to do, so for your average porn hiding requirements (which 99% of El Reg readers will be needing it for I bet) they probably wouldn't bother :D
"Yesterday was Thursday, today is Friday, tomorrow is Saturday, and Sunday comes after!"
(hmm although, come to think about it - it's not too far from the Jackson 5s ABC)
Scuse me, I need to go wash my ears with bleech.
Reactors 1 and 2 have the external power line, 5 and 6 have generators - in the big wide scheme of things does it really matter which way round it is?
So in a two page article you find one, inconsequential mistake and take a stab at the authors integrity over it.....
<Rude comment removed as it wouldn't have gotten past moderation>
Ya, it works quite well:
then mix up
and you must watch it through to the end as punishment for being such a tool.
Unless you have proof that Anon hackers are related to 419s stfu. gtfo and diaf kthnx bai (and other such 4 letter words).
Saying that, you do get points for giving me a nice mental image of Dade Murphey (ask your nerdy parents kids) sitting in his shades listening to Justin Bieber while he hacks.
Your generosity is without limits oh Moderatrix - throwing him off of the interwebs would have been much more fitting.
Everything I have to say on this can be summed up with the below video, and one line
I hear someone stole their infrastructure - with a bulldozer, and you can't call someone for half a day? Quit your bitching.
You're saying the investigation into getting off of this over populated, under resourced planet, onto another one is a waste then?
To the person who downvoted a Monty Python quote:
Do you want to come back to my place, bouncy bouncy? You great poof.
- DAYS from end of life as we know it: Boffins tell of solar storm near-miss
- Put down that Oracle database patch: It could cost $23,000 per CPU
- Bose says today IS F*** With Dre Day: Beats sued in patent battle
- The END of the FONDLESLAB KINGS? Apple and Samsung have reason to FEAR
- Review Porsche Panamera S E-Hybrid: The plug-in for plutocrats