* Posts by batfastad

747 posts • joined 1 Aug 2009

Page:

Zero day hole can pwn millions of LastPass users, all that's needed is a malicious site

batfastad
Bronze badge

Why?

Why would anyone, ever, give their passwords to anyone else?

Me? For most general sites, non-e-commerce, I have a resonably long and complex base password as a salt then add a salt permutations and patterns of characters from the URL to pad the length. For anything a bit more sensitive, with payment or address details, then I have a more complex base and more rounds of my salting.

Unique and complex password for each site and memorable/repeatable, for me at least.

Secure enough now? Probably. Secure enough in 10 years' time, maybe not.

But at least they're not stored on someone elses servers using unknown reversible encryption.

4
1

Docker and storage – solving the problem of data persistence

batfastad
Bronze badge

Re: Containers

But where's your postgres data? And how does a 64GB container compare to a 64GB VM?

1
0
batfastad
Bronze badge

Containers

For me containers are for serving code, not for data. If you end up running database or document/file/object store instances in containers then you're doing it wrong. I still believe it's easier to have your data in VMs instead of containers.

We have several applications that are pretty scalable running on ephemeral AWS nodes, created when that was the only option, and it's so much simpler operationally. Data backends are not as elastic as frontends, true, though we try to use object/file stores when possible so the scaling is not our problem. Patching and application upgrades have always been a case of just blowing away the VMs and deploying new, so you phase rollout. You also avoid all that legacy and cruft that people dump into directories and never clear up.

I don't see the advantage of running 5x database containers in a VM vs 5x database VMs. Though if someone can explain that to me then happy to reconsider.

1
0

Trial to store benefits claimants' personal data on blockchain slammed

batfastad
Bronze badge

Why?

Shiny.

0
0

4-day Fasthosts outage: Customers' sites go TITSUP

batfastad
Bronze badge

Re: Same ole, same ole...

^ ctrl-c ctrl-v

2
0
batfastad
Bronze badge

DaaS

123-reg & Farthosts. Downtime as a service.

8
0

Backblaze hopes to melt Amazon Glacier customers' hearts

batfastad
Bronze badge

Regions? Availability zones?

Been using Backblaze for a while and testing B2 for a more scripted backup. But they're still only in a single DC I believe.

0
0

Our man pops the hood on Intel's v4 engine: Broadwell Xeons

batfastad
Bronze badge

Ouch

Imagine the Oracle licensing cost for one of these!

3
0

Mozilla emits nightly builds of heir-to-Firefox browser engine Servo

batfastad
Bronze badge

Re: doge

still love that meme

0
0

400 million Foxit users need to catch up with patched-up reader

batfastad
Bronze badge

SumatraPDF

SumatraPDF.

3
0

Amazon twangs its Elastic File System at on-premises filer rivals

batfastad
Bronze badge

Good!

Having shared and managed persistent file storage available to ephemeral EC2 instances has been needed for a while. I always ended up hacking together EC2 NFS servers but having the scalability handled by someone else is great. We've been using it in preview for almost a year and it's been very solid.

0
0

Europe's UK-backed Unified Patent Court 'could be derailed'

batfastad
Bronze badge

Re: Sigh

There are many valid reasons for voting Leave.

But my point is that I am certain more than the 1m majority voted Leave because they were under the impression that not only would immigration immediately stop. But that Farage would unveil a time machine and all foreigns already here from the last 30 years, including those with British-EU citizenship, would be immediately rounded up and shipped back to whereever they bl00dy well came from. I do not equate this to the active racism we have seen since the vote, sadly that is a vocal and angry minority.

But I wonder what gave people that impression? Hint: check a montage of the last few years' of Sun/Daily Mail front pages, and that nasty fsck3r Farage.

1
0
batfastad
Bronze badge

Re: Sigh

Indeed and agree. It should have been Remain's to lose, by a long way, and somehow they managed it.

A change to something as fundamental as the citizenship and right to work of 17m people (more if you include future spouses, descendents etc) should not be ultimately triggered by an opinion poll showing such a small margin though.

It seems though that >1.1% voted Leave, because, well, foreigners and in the misguided assumption that what is printed on buses is scientific fact, without realising that an extra £350m (£150m after rebates) is a sausage down an alleyway when it comes to NHS budget (~£5bn/week IIRC), or Offence (~£1bn).

What I'm most annoyed about is that people ultimately think that things will be any different for them. Economy, probably no real difference in the medium-long term. But the amount of hot-air, column inches, legal/consultancy fees and simple political time that's going to be expended on all this over the next 10+ years just seems like such a waste. The UK will negotiate almost similar terms, maybe with some notional wordage to stop new foreigns to appease a few Ukippers which won't even work in any practical way anyway, at likely a much higher cost per person than the current Mega Chicken Bucket EU package. Not to mention all the other spending which will have to increase. And then there'll be 20 years of building schools, power stations, train sets, airports etc to catch up on.

And the UK will be run by... yep. Either the Oxbridge Blues or the Oxbridge Reds. Achievement unlocked - 200yr old establishment restored.

I don't care which way people voted, so long as they don't vote on lies. It's clear that many people who voted Leave are not going to see anything like what they are expecting, if they are even around in 10-15 years' time to see the full conclusion.

You think Ofcom would stand for this? Leave should have just said "up to £350m", sorted.

7
0
batfastad
Bronze badge

Sigh

What a fscking mess. There'll be plenty more of these over the next 5-10 years.

Thanks 1.1%

14
3

Brexit government pledge sought to keep EU-backed UK science alive

batfastad
Bronze badge

Re: Boris Gudonov?

> really need a Mr Churchill to surface and lead the country, delivering unforgettable speeches and generally behaving as though things will be all right

Maybe he would start with this speech... http://www.churchill-society-london.org.uk/astonish.html

2
0

Fedora 24 is here. Go ahead – dive in

batfastad
Bronze badge

Xubuntu/Mint+XFCE

I last used Fedora quite a few years ago and since then have been switching between Mint+XFCE and Xubuntu. Hardware support on laptops just always seems to be better with Xubuntu in my experience.

XFCE is my preferred desktop but MATE and Cinnamon are decent too. I just don't need/want all this cruft of Gnome 3, Unity etc.

Have been using Fedora Rawhide for servers in my lab for a couple of years. Great and very stable despite being considered "unstable".

0
0

Boffins map Netflix's Open Connect CDN

batfastad
Bronze badge

wow amaze

Cower before this magnificent advance in science! What an age to be alive!

2
0

Cold space gas? Sure, supermassive black holes can eat that. Nom, nom, nom

batfastad
Bronze badge

Wow

> three massive clumps of cold gas flowing toward the supermassive black hole at a speed of about a million kilometres per hour. Each cloud contains as much material as a million Suns and is roughly the size of tens of light-years across, and were observed by the billion-light-year-long "shadows", they cast on earth.

Sometimes it just has to be said... Space is just mad.

1
0

Firefox 48 beta brings 'largest change ever' thanks to 'Electrolysis'

batfastad
Bronze badge

Re: "We have all the knobs"

> And that should make us feel good?

Hmm, quite. Sounds like a kill-switch to me.

Despite all the negativity around FF over the last few years, Chromification and tweaking for tweaking's sake. This is actually a very cool feature so I look forward to them getting it dialled.

7
0

Bloke flogs $40 B&W printer on Craigslist, gets $12,000 legal bill

batfastad
Bronze badge

Crowd fund

I'd chuck this Costello chap a fiver to counter-sue that :Pile of Poo:

3
0

SELECT features FROM bumf... What's new in MS SQL Server 2016

batfastad
Bronze badge

Re: I'm sure it's lovely but

@Cheesy

> Postgres and Maria do pretty well these days too

They really do, for several years. Facebook, Twitter, Google etc global installations of these will make your MSSQL deployment look like a hobby lab.

4
2
batfastad
Bronze badge

Re: Select what?

As well as AC's excellent point about HAVING requiring GROUP BY.

"new" is a reserved keyword, in MySQL/Maria land anyway, so better put that in backticks.

3
0

Your WordPress and Drupal installs are probably obsolete

batfastad
Bronze badge

Durpal

Drupal is an absolute pile.

Well really all generic CMS are cr4p IMO compared to something built specifically for the job using a proper framework. But Drupal is absolutely the worst.

2
1

Beleaguered 123-reg customers spot price hike

batfastad
Bronze badge

Namecheap

+1 for namecheap.

IIRC 123-reg still charge a fee for outbound transfers though. Mid 90s registrar mindset with a control panel to match. Even before their recent mega-fail I was surprised to hear they still existed. Even worse than Fasthosts IMO, and that is saying something.

1
0

Blighty's Virgin Queen threatened with foreign abduction

batfastad
Bronze badge

Re: One of those auctions ...

> "It will be liable to capital gains tax (20%), not income tax."

Like fsck it will! Bahamas much?

1
0

Sick of storage vendors? Me too. Let's build the darn stuff ourselves

batfastad
Bronze badge

Re: No one said it was easy but...

Is the mirror driver actually available as a thing to use for real-time SAN mirroring now? Been a while since I was a VMwarrior. This tells me that it was used internally for svMotion... http://www.yellow-bricks.com/2011/07/14/vsphere-5-0-storage-vmotion-and-the-mirror-driver/

2
0

A UK-wide fibre broadband investment plan? Don't ask awkward questions

batfastad
Bronze badge

Promises

> "it had already promised to build FTTP lines for a large number of the one million new homes planned to be built by the end of this Parliament."

Make a promise to a regulator on the back of a promise by the Government which they are never going to achieve. Genius!

2
0
batfastad
Bronze badge

Do it. 20 years ago.

Gov pays for it. BT (probably) builds it. Charge BT etc a nice lump to use it. Profit for the people!

At the very least I'm amazed that there hasn't been some sort of rule that requires ducting and last mile infrastructure to be in place in new builds/estates for some years.

With a two-party system where debate consists of childish bickering, you are never going to get a strategy for anything longer than 5 years in the future. With each government just trying to look busy for their term and hoping to not screw anything up too much so they get back in for another go at the buffet.

Infrastructure investment appears to have fallen way behind other European nations consistently for at least 30 years... rail, road, air travel, energy, telecoms etc. At the risk of creating a new quango/buffet, maybe infrastructure decisions and strategy should be a separate commission, independent of political parties and their agendas. Might exist already, I don't know.

What I do know is the sooner you have it, the sooner it pays for itself.

Or just buy new shiny nuclear death weapons with our money instead. Fsckers.

6
0

Hold on a sec. When did HDDs get SSD-style workload rate limits?

batfastad
Bronze badge
Headmaster

some some

> Unless we some some magical breakthrough

Yes, I have nothing better to do.

5
0

Finance bods SWIFT to update after Bangladesh hack

batfastad
Bronze badge
Headmaster

's

> Hackers lifted the Bangladesh central bank key’s

Sigh.

3
0

How to overcome objections that stop your enterprise from adopting DevOps

batfastad
Bronze badge

Unsubscribe

Please remove me from your mailing list.

3
0

Storage with the speed of memory? XPoint, XPoint, that's our plan

batfastad
Bronze badge

Your SAN...

... sucks if you're seeing 200ms latency!

1
0

Thunderbird is GO: Mozilla prepares to jettison mail client

batfastad
Bronze badge

> This would be a terrible blow. I know many real world business that use thunderbird as an alternative to outlook.

Not so sure about that. Look at what Mozilla has done to Firefox - I'm thankful they haven't dedicated as much UI tinkering resources to Thunderbird over the years. Though the carnage already happened when they introduced a tab bar, which IIRC could only ever have a single tab!

22
0

It's a good time to be in hyper-converged, eh, Pivot3?

batfastad
Bronze badge
Headmaster

starup

See title.

1
0

Furious customers tear into 123-reg after firm's mass deletion woes

batfastad
Bronze badge

123-reg

I put these bozos in the same bracket as Farthosts. I have migrated many customers from both providers over the years. Not so much for reasons of reliability (although both have been shaky at times) but the customer service was always dreadful and lack of many technical features.

I definitely understand choosing cheap providers because of cost - if you won't die over a day or so of downtime then thats a perfectly valid decision to make. But if downtime is going to cost your business serious money, it's probably better to not be using budget mass-market web hosts where you are one account of 10,000 and instead have a managed service, or better still run from multiple providers. Compare the loss due to downtime vs the cost of improving availability.

One thing I would say is separate out your DNS hosting, domain registration and web hosting. Easier to juggle things around in times of brownout. And if the data is important to you, sort your own backups.

8
1

UK web host 123-Reg goes TITSUP, customer servers evaporate

batfastad
Bronze badge

Bozos

I put these bozos in the same bracket as Farthosts. I have migrated many customers from both providers over the years. Not so much for reasons of reliability (although both have been shaky at times) but the customer service was always dreadful and lack of technical control.

I definitely understand choosing cheap providers because of cost - if you won't die over a day or so of downtime then thats a perfectly valid decision to make. But if downtime is going to cost your business serious money, it's probably better to not be using budget mass-market web hosts where you are one account of 10,000 and instead have a managed service, or better still run from multiple providers. Compare the loss due to downtime vs the cost of improving availability.

One thing I would say is separate out your DNS hosting, domain registration and web hosting. Easier to juggle things around in times of brownout.

8
0

Google broke its own cloud AGAIN, with TWO software bugs

batfastad
Bronze badge
Trollface

Automate automate automate

So Google Cloud is following Azure's "Downtime As A Service" approach in automating even downtime now?!

5
2

WordPress pushes free default SSL for hosted sites

batfastad
Bronze badge
Trollface

Pwnd

So 90% of the web's SQL injection will be happening over HTTPS now instead. That's something I guess. Go Wordpress!

6
1

Ubuntu plugs code exec, DoS Linux kernel holes

batfastad
Bronze badge
Headmaster

The flaws...

... is fixed.

3
0

Only 0.1% of you are doing web server security right

batfastad
Bronze badge
Joke

Re: Store the keys on the web server...

I'm not sure Dorpbox even give away enough space to store a private key do they?

3
0

Enterprise revenues power Red Hat past $2bn barrier

batfastad
Bronze badge

RH

Every time I have had to deal with RH support they have been excellent. So good on 'em I say.

4
0

Bell done: Nokia delivers super-speedy 100Gbps links fresh from the Labs

batfastad
Bronze badge

What is

> were the genesis of 100Gbps WDWM systems.

What is WDWM in this context? My Google-fu is failing me.

I'm assuming this is a typo and article just means (D)WDM... but just checking.

0
0

Mozilla will emit 'first version' of Servo-based Rust browser in June

batfastad
Bronze badge

Re: Yaya yada yada

> If they let users install crap extensions from crap developers then I feel that might still be a no.

I should clarify that I'm not saying Firefox should bin support of extensions. Quite the reverse. I've always considered the memory issues as the trade-off for using a browser with massive extensibility. But I would say most memory issues with FF are most likely down to extensions rather than the core browser itself.

3
0
batfastad
Bronze badge

Re: Yaya yada yada

> ...but did they fix the megagig memory leaks at all?

If they let users install crap extensions from crap developers then I feel that might still be a no.

What's a shame is so many of those crap extensions are needed to replace features that have been removed in their great quest of making it like Chrome.

7
0

Dropbox slips 500PB into its Magic Pocket, not spread over AWS

batfastad
Bronze badge
Coat

Easy

Well it's easy to build an in-house storage infrastructure when you give only 50MB for free.

Mine's the one with an HDD in the pocket, connected to owncloud, rsynced offsite.

2
1

Crap IT means stats crew don't really know how UK economy's doing

batfastad
Bronze badge

Office for National Statistics

You had one job.

9
0

Going on a thin client diet

batfastad
Bronze badge

Thin?

I'm not sure there's much of a cost saving with thin clients. I've seen teams of engineers wrestling with endless app packaging and registry keys to remove OS features/customisation. Then for infrastructure you've got UCS chassis costs, virt host licensing etc. And then Wyse thin clients that cost the same as a mid-range PC.

The whole lot comes crashing down, quickly, if there's even a minor blip in any of AD, DNS, network, storage etc.

More hassle than it's worth?

2
0

Brocade intros FC switch for flash fans with the need for speed

batfastad
Bronze badge
Coat

> There is the potential for external NVMe fabrics, using PCIe or fast Ethernet, to begin substituting for Fibre Channel in latency-sensitive, short distance SAN applications.

NVMe over fast Ethernet?

1
0

Linode: Major cuts to several submarine cables to Singapore

batfastad
Bronze badge

Re: I live in Cairns

Pics or it didn't happen :)

3
1

One-third of all HTTPS websites open to DROWN attack

batfastad
Bronze badge

> We know SSLv2 is insecure. It's been on the bad-boy list for many years. So why do people still have it configured?

I would reckon most of these aren't just web servers where even your local bobby tables web dev can disable SSLv2 in Apache. But appliances, admin interfaces, vCenter servers, iDRACs, NetScalers and who knows what else that have been left exposed by half-wits, never been patched, and never will be patched because support has elapsed and firmware can't be found and etc.

1
0

Page:

Forums