Feeds

* Posts by gerdesj

227 posts • joined 15 Aug 2009

Page:

OECD lashes out at tax avoiding globocorps' location-flipping antics

gerdesj
Bronze badge

Re: hmm

"or that it'll need it during rainy days."

The last set of rainy days for my company lasted several years. Apparently it was some sort of global recession. The last one in the early 90s caused me a change of career.

How facile a simple "rainy day" trips off the keyboard. Our staff are damn glad we keep a big brolly handy.

Cheers

Jon

2
1

New Snowden leak: US and Brit spooks 'tap into German telco networks to map end devices'

gerdesj
Bronze badge

Re: Atlas of Cyberspace!

No need for active scanning when you pwn the tubes - just simply listen.

Jon

1
0

Be your own Big Brother: Monitoring your manor, the easy way

gerdesj
Bronze badge

(IoT - Internet of Things)

Homeplugs can work well. Avoid using an extension lead if you can. I have several and reboot times are in years.

Securitywise, if you are worried then you will need to use a more sophisticated router and discover the joys of VLANs. Separate your IoT stuff to their own VLAN and have an aggregator like Synology or Zoneminder on another VLAN. Allow access TO the IoT but not FROM and allow access FROM your aggregator TO your IoT stuff. Allow access TO your aggregator FROM the internet or ideally via VPN only. OpenVPN has clients for any device you can possibly want to use and many routers support it - eg pfSense.

Yes it will be more expensive than your ISP provided pile of shite but its your privacy. Netgear do some cheap 8 port switches that support VLANs and various Power over Ethernet options.

You can run Cat5e externally inside black conduit and then it need not be wife unfriendly and you avoid channeling the walls, although you will need a hammer drill and big bits to get the wires in and out! Phone wiring can run over it as well (an RJ11 can use and RJ45 socket) and satelite cables can be run through it as well.

I use all three of these at home - physical wires, WiFi and powerline as required, including a 60m run down the garden to our summer house for Wifi and a camera with PoE.

Cheers

Jon

1
0

VMware updates vSphere, recommends new security fixes

gerdesj
Bronze badge

Web client works in Chrome on Linux

Chrome's internal Flash plugin works fine with the web client.

0
0

EE fails to apologise for HUGE T-Mobile outage that hit Brits on Friday

gerdesj
Bronze badge

I wonder if someone knicked the cable thinking it was copper. This has happened many times across the UK eg Street(*) a couple of years ago.

Cheers

Jon

* That's the town's name, not a road missing its name.

0
0

Discovery BATTLED 2-foot-long WEE ICICLE on first mission - 30 years ago today

gerdesj
Bronze badge

I remember the launch (I was ten).

Due to the delays, it seemed like the damn thing was lucky to get more than 20 feet in the air. It looked awesome though when it did finally lurch heavenwards.

Not everything in the '80s was shit 8)

2
0

Community chest: Storage firms need to pay open-source debts

gerdesj
Bronze badge

An el Reg comments page that reads like LWN, complete with visitations from the cognoscenti err devs.

Cheers for your work on Samba, Jeremy.

0
0

Experimental hypersonic SUPERMISSILE destroyed 4 SECONDS after US launched it

gerdesj
Bronze badge

Re: Anywhere in the world within 60 minutes?

Mach 6 at what height?

You can have more than one launcher.

0
0

NIST to sysadmins: clean up your SSH mess

gerdesj
Bronze badge

Non sequiter

"Wasn't Heartbleed..."

ssh = Secure Shell, ssl = Secure Socket Layer. ssl != ssh.

0
3

'I'll dance on their graves at 1 MILLION operations per second'

gerdesj
Bronze badge

Meta comments

Comments posted here are meta-comments and hence will require a MCotW section opening for them.

Continue ad-nauseam. Feel free to whitter on about "... elephants all the way down" as required.

Cheers

Jon

2
0

VMware vaporises vCHS hybrid cloud service

gerdesj
Bronze badge

vHot Air

(Shame you have to fill in a body comment - the subject is all I wanted to say)

1
0

Linux Foundation says many Linux admins and engineers are certifiable

gerdesj
Bronze badge

Re: I am not sure if the author is American

Try clicking on Mr McAllister's link at the top of the article and read the headlines of his previous posts and make your own mind up.

Also, are you sure that certifiable doesn't mean http://www.oxforddictionaries.com/definition/american_english/certifiable the same in the US as you are implying?

Cheers

Jon

4
0
gerdesj
Bronze badge

CLP here

Years ago I took a Novell Cert. Lin. Pro. exam (freebie at a conference). I think these are pretty similar.

The "practicum" was a proper job and a bit of a doddle once I'd pointed Apache at /usr/share/doc - but that meant I was working in a similar way to the real world, where man and docs are available. I had to set up users and quotas, Apache, BIND (including zones), Samba, cron and other stuff on two VM SLES servers and a script went through and tested my solutions to the scenarios given.

It's not just a memory test, it genuinely tested whether I could perform basic admin tasks and hence I passed without having to do any revision - I am a Linux sysadmin after all.

I've also done a VMWare VCP - it's a memory test and nothing more. My eight years experience with the products is the useful bit, not the naff exam and quali. I generally park MSCE in the same box - bloody useless in and of itself.

I have nearly got over the use of the term "Engineer" in IT, used for non chartered practitioners but I'm not happy about it. Once upon a time I was headed towards MICE until the building industry in the UK collapsed in the early 1990s recession, just as I graduated ...

Cheers

Jon

3
0

Hackers' Paradise: The rise of soft options and the demise of hard choices

gerdesj
Bronze badge

Eye watering complexity

As has been mentioned above, modern PCs are far more complex and potentially competent than a VAX. VAXen, System/36, AS400 not to mention mainframes and other old beasts I have used did have flaws which were mercilessly exploited but normally for a laugh rather than extortion. Mainly because there wasn't really anything to exploit in the same way that my phone or browser can get at my bank account.

The laptop I am using now has a quad core i7 beastie and 16GB RAM in it. This thing could produce spam email at a heck of a rate, especially given it has an 80/20Mbs-1 connection to t'interwebs. However, Mr pfSense has been to told to stop that sort of nonsense.

The OS n apps on this thing was compiled from source code via the magic of Gentoo but I have no idea whether it is particularly more secure than a Windows box. There could be all sorts of nasties lurking in anything from the Intel microcode, through to Chrome or FF.

I still seem to be the only person accessing my bank account at the moment so it seems reasonable to assume its OK (for now).

Cheers

Jon

0
0

Apple slings fanbois' data at Chinese servers in China Telecom deal

gerdesj
Bronze badge

Wonder if they'll simply hand over the keys to the two additional special services that run on iThangs?

http://www.theregister.co.uk/2014/07/21/ios_firmware_contains_packet_sniffer_and_host_of_secret_spying_tools/

1
0

El Reg's virtualisation desk pulls out the VMworld crystal ball

gerdesj
Bronze badge

More money?

It's bloody expensive enough as it is. If you want to do large data centre then you need Enterprise Plus - and that costs real cash, shit loads of it. Add that to the SANs, switches, cost of racks in CoLo and/or your own machine room and IT is a major overhead. Then you need some OSs, apps, backup stuff, DR site.

Money pit - and a large part of it is the "v" bit - regardless of vendor.

Obviously you can always do the vCloud suite instead and PAY BY THE GB OF VRAM. It comes in three flavours or so.

el Reg - you do know about vCloud - don't you? ITS CHARGED BY THE GB.

Now install: 1x vCentre - 8GB, 1x Ops Manager - 8GB, 1x vNetworky thingie - 8GB + other bits - 8+ GB, Orchestrator - 4GB. You'll also need a vLicenser thing - 512MB (I think), assorted backup things. etc etc. That management cluster is looking a bit big now already and you haven't even deployed a customer VM yet.

Hilarious.

Cheers

Jon

PS I do actually like VMWare - I own a reseller 8)

0
2

Supervalu supermarket stores stung by sneaky sales system scammers

gerdesj
Bronze badge

PoS

"The POS is a MS Windows system, but it only runs the POS application"

Now substitute Piece of Shit for the abbreviation. FTFY

Cheers

Jon

8
1

New twist in China Apple hardware ban riddle: THE TRUTH at last?

gerdesj
Bronze badge

Given that an iDevice has a "secret" file uploader that bypasses the iCloud encryption and network sniffer built in, then security concerns would seem justified.

1
0

World's only flyable WWII Lancaster bombers meet in Lincs

gerdesj
Bronze badge

A flight or two of Phantoms going in and out of RAF Wildenrath made a fair bit of noise over my school play ground in the 70s. As did the air displays they would put on - including the obligatory pair of nodding Harriers mucking about not very far from the crowd.

Watching Starfighters n Phantoms (Luftwaffe) and all sorts of other bloody great military noise makers was how I grew up. Leopards, Chieftans, Lucks, Saladins, Saracens and others would run up and down the road. Oh and Gazelles, Jaguars, Chinooks and others also filled the air.

Dad used to blow things up for a living (ATO) before settling down to quieter pursuits like blowing things up in demos at the local ammunition depot.

Wonder where the tinnitus came from ...

0
0

What's the point of the Internet of Things?

gerdesj
Bronze badge

Re: not convinced, but can see potential

Trev

Please start swearing again.

It somehow seems wrong to see you holding back. Whomever told you to do so, be that editor, pixie or a new drugs regime, are badly wrong. You need to vent your spleen or the consequences could be damaging. No one can go from 20+ highly offensive expletives per comment to zero without serious long term health issues.

It looks like a lack of passion about the subject you are writing on to those familiar with your previous missives.

Jon

3
0

Microsoft KILLS Windows 8.1 Update 2 and Patch Tuesday

gerdesj
Bronze badge

As it turns out

"Any enterprise that goes with Windows at the next refresh is totally moronic. I can't think of one reason for that. Even the Exchange/Outlook pig is ready for culling."

I've just found my first customer who don't do the Windows thing wholesale. They seem quite happy running Linux on everything - quite refreshing really. Things aren't perfect - as you'd expect - but the flaws are simple admin things and not OS related.

They aren't anti commercial stuff, they just don't like MS's offerings. I've just P2V'd their systems into VMware with a dose of Veeam sprinkled in.

This is in the north of Somerset (county) which, for the benefit of our ex-colonial friends, is a pretty rural part of the UK.

Cheers

Jon

8
2

White Hats splat Black Hat chats: Talks on home alarm flaws and Russian spy tools axed

gerdesj
Bronze badge

Talk amongst youselves

It's going to be pretty boring this year at the Mad Black Hatter's Party.

Soon they will be left with presenting how the "who" command can show a list of logins on a Unix box. - ooooh naughty.

4
0

Multifunction printer p0wnage just getting worse, researcher finds

gerdesj
Bronze badge

Re: Apparently ...

>The mid 1980s just called, they want their exploits back.

I was using a Commodore 64 then and hadn't even heard of TCP/IP. I had an Epson DM printer with a weird Centronics to serial interface which occasionally worked. Not sure what Metasploit would have made of my setup.

Perhaps you mean the 90's?

4
0

Pentagon hacker McKinnon can't visit sick dad for fear of extradition

gerdesj
Bronze badge

Re: More anti-US bashing

>> By my non-scientific evidence, Americans are the second highest readership of the Reg, by count (second only to the UK) - I'm beginning to wonder why they bother.

Possibly the highest and almost certainly if you don't restrict "Americans" to citizens of the USA. "They" probably still bother with the reg for the same reason that you do: to have the piss taken. Where would you like me to put it?

Not every comment stream ends up like the above bollocks. Me? I love 'mercania and all who sail in her, but I will agree with whomever (above) whittered on about our strange love of the froggy -our rather than -or. I will obviously fight to the death for "disc" over "disk" however, regardless of etymology.

Cheers

Jon

2
1

Amazon Reveals One Weird Trick: A Loss On Almost $20bn In Sales

gerdesj
Bronze badge

Re: Headcount growth reduces revenue?

> Revenue is revenue, regardless of headcount.

Aah - you assume that they account in the same way as you or I do (I am a partner in a small business). Perhaps in the rarefied atmosphere they inhabit it is possible to consider the wage bill as a sort of negative revenue.

Or someone needs to reread the article.

Cheers

Jon

1
1

US Social Security 'wasted $300 million on an IT BOONDOGGLE'

gerdesj
Bronze badge

Re: Google, AWS, Facebook

You are having a laugh obviously.

Try replacing the name of the project with "Surface" for example, then substitute the other details as required, adjust the figures accordingly, replace UK with Microsoft and see how one of your poster boys fuck up a perceived strategic direction.

OK you didn't mention MS but the rest have similar screw ups in the bag. G+ anyone?

0
0

Don't put that duffel bag full of cash in the hotel room safe

gerdesj
Bronze badge

Re: If everyone has their own number ...

1066 is the default on a certain make.

0
0

Own a Cisco modem or wireless gateway? It might be owned by someone else, too

gerdesj
Bronze badge

Re: Local management

Probably if these things are like their switches - I often find telnet enabled and cisco as the enable password. Even more hilarious are the number of Cisco switches I find with the default web user/password.

Cheers

Jon

1
0

Huge FOUR-winged dino SPREAD LEGS to KILL – scientists

gerdesj
Bronze badge

Archaeologist and an aerospace engineer - clever boy.

All that speculation without bothering with a wind tunnel or simulation.

Cheers

Jon

PS I'm not blowing 20 odd quid to check up, besides I'm a /. reader as well.

0
0

Microsoft: You NEED bad passwords and should re-use them a lot

gerdesj
Bronze badge

Best practice

Whenever I see the term "best practice" I go postal.

There's good practice and there's bad practice - but "best"? You'd better be sure you know what you are on about when using that term in my presence and at the very least be an acknowledged world expert. I really lose the plot when the term "a best practice" is deployed.

Nurse .... nuuurse ....

Jon

8
0

InMage now InMicrosoft: Redmond slurps disaster recovery hardware biz

gerdesj
Bronze badge

"Windows Server / Hyper-V already has some of the best clustering options of any OS - and this is adding to the cross site protection capabilities."

Fuck me, you clearly haven't used them have you? Or perhaps they represent your sole experience of clustering.

I'm going to refer you to Mr Potts for a dressing down, Mr Tosser AC.

Cheers

Jon

PS If I'm going to call you a tosser publicly, the least I can do is point out that I have 15 years experience of clustering systems, including Windows, NetWare, Linux, networks (VRRP, CARP), VMware and several others. Window's options represent my least favourite.

1
2

Watch: DARPA shows off first successful test of STEERABLE bullet

gerdesj
Bronze badge

Judge Dredd's Lawgiver (?) had steerable munitions in its inventory.

1
0

Microsoft: Give us three MORE WEEKS, folks – our StorSimple Cloud is coming

gerdesj
Bronze badge

When they manage two straight years of demonstrable uninterrupted uptime, then I'll consider them enterprise ready.

When they manage two straight years of stable pricing, then I'll eat your hat.

1
0

In space no one can hear you scream, but Voyager 1 can hear A ROAR

gerdesj
Bronze badge

Blast: pre-pedanted!

It's also a bit weird to quote the distance travelled to 11 significant figures and yet the velocity to "about" 15kms-1.

"About 19 beeelion klicks at 15 per second" would be so much more descriptive. Perhaps el-Journo got a no-op or NaaN when fettling with the experimental Wales per sec or Jubs per hour units.

Cheers

Jon

0
0

What's that burning tire smell? It's Microsoft screeching away from the No-IP car crash

gerdesj
Bronze badge

WtF

Since when was Microsoft a law enforcement agency?

If I recall correctly a judge allowed MS to present evidence and then carry out a sentence! This is an appalling state of affairs.

Anyone give a shit that a corporation was allowed to do this?

Cheers

Jon

26
1

Brit celebs' homes VANISH from Google's Street View

gerdesj
Bronze badge

My house has been blurred

... by some sort of green stuff. Can't see anything.

When will Google start using IR/UV/RADAR and fix this problem?

0
0

Rockall batters plucky Brit adventurer

gerdesj
Bronze badge

Re: Didn't he tie them down?

It's quite inhospitable on there, so yes - I agree with you, getting stuff blown off the rock is a bit daft if it wasn't secured properly.

Still, at least he was able to Twat about the situation. Interweb comms are far more important than mere human life.

Perhaps we need someone with a bigger and perhaps longer piton supply with the muscle to drive them into rock to look after our far Northern Atlantic In the Middle Of Nowhere Territories.

Now, would it be part of Scotland or the UKoGBnNI?

Cheers

Jon

0
0

Your Android phone is a SNITCH: Wi-Fi bug makes you easy to track

gerdesj
Bronze badge

Re: Patch

I assume that as you are posting as AC that you take your security very seriously. However you have requested information to which the answer might send you blind or cause your hands to fall off their wrists.

These forums come under the heading of The Register and you are asking for information about something called "Cyanogenmod".

I'd go and have a chat on their forums if I was you. I'm sure it isn't too far away.

Cheers

Jon

0
8
gerdesj
Bronze badge

Re: Programmers really need to start taking privacy seriously

You are not wrong there on many levels. One that immediately springs to mind is the mess that is web proxy support in many apps. A web proxy is quite handy in anonymizing a web session. Support is equally borked and complicated across all OSs. Some apps are good and some are bad. Try and get MS registration to work though a web proxy (can't remember which bits fail but some do, despite Negotiate support in the proxy).

Then there is the end user and the corporate policy. I work for and with many for whom security is paramount and yet certain bits of the puzzle remain off limits. Data leaks and the result is well ...

In my more Trevor Potts moments, I scream, then I stroke my pfSense firewalls, my mod_security web firewalls, my Squid n Dans Guardian proxies, my OpenVPN and IPSEC VPNs, my carefully controlled AV, my layer 2 controls, my n factor auth, my ... well you get the idea (and that's just at home - you should see how mental I am at work) and then quietly give up and go and have a lie down.

At least they keep most of the baddies away - I think.

Cheers

Jon

0
1
gerdesj
Bronze badge

Re: Install Pri-fi

*Yawn*, so I have to fall back on other methods of fingerprinting you.

I don't personally (obviously - or do I)? but someone who cares has ignored a MAC address as a sole source of uniquely identifying you for years. For starters, that may identify your computer but not you and if you share your computer then that's useless anyway {you != pc}.

"They" will give "you" a unique index eg a GUID and associate lots of data against it as it turns up via G+, FB, Twatter, affiliate sites etc etc ad nauseam. Each bit of data will also be assigned some form of probability or weight of being "you". It could work a bit like a spam scanner like Spamassassin in that the weights will be added up and tested against a threshold to say yep - this session is "you".

Have you any idea how much info your browser gives out in the headers, or emails? Even huge firms forget to remove internal Received: headers in their emails - have a look : it's hilarious how much of their internal network structure you can glean from that.

You'll need to think a lot more about personal security than messing your MAC addresses around. Me? I don't bother.

Cheers

Jon

PS My habit of signing forum posts as above will be in someone's database as will my habit of using post scriptums - oh well!

2
5

Use Tor or 'extremist' Tails Linux? Congrats, you're on an NSA list

gerdesj
Bronze badge

"... a level of surveillance that makes the old East German Stasi look like a bunch of amateurs"

Unfortunately for their credibility, they don't appear to lock down their internal stuff sufficiently well. I would imagine they are conducting quite a thorough review of internal security.

If their own contractors can become whistle blowers with huge documentation drops, the Lord only knows what their real enemies can be getting up to. We can only hope the baddies will find it distinctly harder to muck about with our 5 eyes from now on.

21
1

No sueballs needed: Microsoft and Canon buddy up on patent deal

gerdesj
Bronze badge

"... Android devices it collects on have largely been credited with driving down Surface tablet sales ..."

As ye sow, so ye shall reap!

4
0

BOFH: You can take our lives, but you'll never take OUR MACROS

gerdesj
Bronze badge

I still have flashbacks

... when I recall one Access DB that an end user proudly showed me. A quick look at "relationships" showed 40 odd tables in a grid formation each linked to the eight surrounding it, with random links running elsewhere. I muttered something about changing the links to enable cascading updates and forgot to mention deletes also cascade.

I still have no idea what it was supposed to do and I'm sure they managed to recover from backups.

1
0

Bored yet? Now there's ANOTHER OpenSSL fork – it's from Google

gerdesj
Bronze badge

When do things really change?

I don't really trust SSL/TLS whatever any more. I am not capable of auditing the code or algos myself and I don't know anyone who is.

So, I would hope I would be able to look to my govt to provide that assurance.

Hmmm, nope, they have no IT skills beyond the ability to stroke something I'd prefer to be made into cider.

Cheers

Jon

I'm an IT consultant and I studied mathematics to Civil Engineering graduate standard (some years ago) - ie I can add 1 and 1 and in most cases get an answer or at least a bloody good philosophical discussion. I don't think I am particularly daft.

6
0

EE in giant VoLTE-face as it tries voice calls over Wi-Fi... again

gerdesj
Bronze badge

Problems with SIP?

If you have control over both ends of a SIP n RTP session and have snags, then investigate the following:

Change the port from 5060

Change protocol from UDP to TCP

Enable symmetric RTP at both ends

Use a mobile VPN eg OpenVPN or IPSEC

Use IAX2!

The first two will get around basic firewalls. Sym RTP will get one way audio fixed. A VPN will get around deep inspection, for maximum points set up the OVPN server on port 443, the client end can even go through a web proxy. IAX2 is not well known outside Asterisk circles and may be a good last resort.

Cheers

Jon

1
0

Microsoft hopes for FONDLESLAB FRENZY as Surface Pro 3 debuts

gerdesj
Bronze badge

It'll replace my laptop ...

... if it has a 17" screen, 16GB RAM, quad core Haswell CPU, 2 x 1TB + 8GB SSD HDs. Oh, and run Linux.

No?

Irrelevant to me.

According to the adverts: One of these Surface things will attend to my work AND personal needs. Unfortunately I'm an IT consultant and my needs do not seem to be addressed particularly well. Although I'll grant the bloke on a train who is hemmed in a bit, his S'face will fit in better than my bloody great Tosh. Then again, I'd dig out my phone if I was that fussed. Actually I generally reach for a mag/paper/book.

Cheers

Jon

6
6

Oh THOSE products, says Dell. Sure we'll sell them if you ask

gerdesj
Bronze badge

Can't buy them?

Google "MD3400" and then click: http://www.dell.com/uk/business/p/powervault-md32x0-series/pd .

2 controllers with four ports of 6GB SAS - that's four dual connected systems without a fibre switch, enough for quite a few use cases at a pretty reasonable price ...

0
0

Blame WWI, not Bin Laden, for NSA's post-9/11 intel suck

gerdesj
Bronze badge

intel-driven tactical strikes

Chip makers back then used potatoes and lard. Presumably the tactical strikes involved throwing them.

7
0

Google's URL-hiding 'origin chip' is 'backburnered'

gerdesj
Bronze badge

Re: High Crimes and Misdemeanors

Put your copy of Usage and abusage away and get a grip.

"What?" - that's not a full sentence.

"Like starting"... - Where would you like me to start taking the piss?

"Mea maxima culpa" - You had better be absolutely sure that your Latin is tip top. I think it means (err) let's see mea - me/mine, (hmm) maxima - greatest/maximum, culpa - fault. Now let's run back through and look for declension etc - (oooh) now maxima is part of the adjective "maximum", it's singular, culpa looks feminine, so it's nominative, vocative or ablative (I think). Nom n voc don't make sense so abl (by with or from). "By my greatest fault". Google it - "through my most grievous fault". Oh well not too bad, anyway - that doesn't make too much sense as you have used it.

"Please have mercy" - No, bugger off!

Cheers

Jon

PS I can't give you a better Latin phrase to use but it would probably start with ecce and involve most of the words you used but with different declensions and other half remembered stuff from school days. Stick to English.

1
0

Cheap, backwards-compatible PCIe 4.0 on track for 2015 2016

gerdesj
Bronze badge

Backwards compatible

Please send that memo to Dell. On the one hand we have PCIe is "always backwards compatible" and on the other we have machines from vendors with slots that will only accept certain card versions. I have this particular problem with a Dell T420 and I have seen many posts across the internets about other systems. Some times a BIOS release cures the problem (but not for me.)

This should not be a problem but unfortunately telephony cards and DVBS/T, video grabbers etc are generally v1 only.

What would be nice is compliance requirements to become: MUST be "always backwards compatible" not "if the vendor can be arsed."

Cheers

Jon

2
0

Page: