I do have to admit in a similar vain - that I get a real sense of satisfaction when I get spam emails that claim my account with this bank, or paypal, or my iTunes account has been compromised or - any of the other "give us your personal details" type of emails come rolling in. When I'm feeling mischievous and really want to f**k up someone's day - I like to copy the link, paste it into Incognito Chrome, and if the "red screen of death" doesn't appear, I like to submit as much gibberish information as I can be bothered to. It probably doesn't really make a lot of difference, but I like to tell myself - that I'm not the only one doing this and they are being overloaded with so much false information or login data that it's not worth the time trying to figure out what is real and what is not.......... It would be nice to know other people take it upon themselves to do the same - but I'm probably alone in this. I'll just continue doing it though.
677 posts • joined 27 Sep 2009
Re: Apologies in advance to all Christians......
"As for Adam & Eve, you're the one inferring that they found wives outside. The Bible never says that, so it infers implicitly to huge amounts of incest. And, if Mitochondrial Eve is anything to go by, well, there just may be a grain of truth to it." Yes it does -
"16 And Cain went out from the presence of the LORD, and dwelt in the land of Nod, on the east of Eden.
17 And Cain knew his wife; and she conceived, and bare Enoch: and he builded a city, and called the name of the city, after the name of his son, Enoch."
It doesn't say Eve had any more Children at this point, and there is no mention of Cain taking his wife with him when he dwelt in the land of Nod, thus the only possible conclusion at this point has to be that his wife from already living in the land of Nod.
Apologies in advance to all Christians......
Right..... the religious texts of Pastafarianism is classed as a parody and worse - a work of fiction, but a book about a woman who becomes pregnant even though she hasn't had sex, a man who can magically turn water into wine (and why wine? why not grapefruit juice?), a book that claims Jesus was born in December - even though it was clearly closer to Spring - even the Christmas Carol While Shepherds Watched Their Flocks By Night to anyone with any common sense tells you it wasn't December, As for the idea that in the time period that people were frightened of Thunder and Lightning because God was mad - people would see a bright star in the sky and go towards it rather than run screaming in the opposite direction, a book where someone dies and then comes back to life..... that is obviously not a work of fiction and is a real documentation of things that actually happened - written down thousands of years after they allegedly happened. The Bible to people who have a clear head actually reads like a book where someone started writing down stories making each one more and more fantastical to see how far people would get through it before going - hang on a minute, this is made up!
Seriously - talking snakes? Adam and Eve and Kane and Able being the only people in the whole world - and yet somehow they were able to find wives outside of the Garden of Eden - where did the people outside of the Garden of Eden come from? Did they just magically appear? And don't even get me started on the way people go "yup, an ark, every single animal in the entire world, 2 of them in fact, even though there is the thing called the food chain which means the vast majority of them are dinner for another animal higher up the food chain, yup - it seems entirely plausible that - that really happened" I mean has anyone ever worked out what the dimensions of this Ark would have had to have been? and How long it would have taken for it to be built? Bearing in mind that not only did the Ark have to be built, but trees needed to be chopped down and made into planks of similar in order to do this? Yup what a totally believable book.........
Oh no! The 22 year olds don't like the rules, maybe we should change them so they are better suited.
Oh no! The 22 year olds don't like ANY rules, maybe we should exempt them from all rules to better suit them.
Oh no! The 22 year olds don't like being in prison for breaking the law, maybe we should just them release and wipe their criminal records clean.
DO NOT start down this path, it's bad enough that a worrying amount of the younger generation (god I can't believe I have reached the age where I am using words like that now) have this "the world owes me " attitude!
Otherwise, feel free to go ahead but don't start complaining when your cinemas are barely filled with ONLY teens and young adults sat texting, while anyone who actually wanted to watch the film, have started frequenting other cinemas where if someone turns on their phone screen in the middle of a film, they get thrown out. I've actually seem some news sites' comments sections filled with people who claim it is not distracting when someone turns on their phone screen - in an otherwise relatively dark room.
Re: Interesting age range in the study ...
Completing School, Completing College and then Completing University - with plenty of qualifications that should allow you walk straight into a job - except that there aren't any to walk in to - is probably a significant factor, add on to that the though of being several thousands in debt from tuition fees - it's pretty easy to see why young people spiral very quickly into depression. As someone who had to spend a fair amount of time on the dole (between various jobs) - and getting sent on courses when on New Deal - none of which actually provide you with any qualifications (the most popular course they liked to send you on - was a life skills course - where you learned to socialise and write CVs, and the fact that you had already been on the course multiple times before apparently made no difference.) You could only be on New Deal for 6 months and any decent course that would provide you with an actual qualification - was always a minimum of a year long. Add to the that the favourite game of sending you a letter telling you that you had to come in for an interview or your money would be stopped, but sending it specifically to arrive a day AFTER the meeting you were supposed to have, or another favourite - sending 3 letters about "due to a change in your circumstances, the money you are entitled to is....." and each letter having a different amount so that you then have to go to the job centre to speak to someone (because you can't do it by phone).
Nowdays of course they have a lovely system that you are forced to use where you search for jobs online, and you say within 20 miles of me and it goes, oh OK within 20 miles of a village in Scotland - well I have 4 in Germany, 3 in France. I was helping someone last year to do a job search and the system claimed that it was perfectly reasonable for her to apply for a job that started at 8 in the morning and was located about 200 miles away (and via multiple forms of Public transport), and was a whole 7 hours a week. The entire system is designed to cause as much stress as it is possible to do, and stress and depression are very intimately linked.
@Jack - I'm sorry to hear about your mental issues. I suffer from anxiety and panic disorder which arrived out of no-where and refuses to leave. Psychologist appointments have been fruitless, and the Psychiatrist has me on something that might as well be £100 a bottle - sugar water - I often can't remember if I have actually taken it - and missing doses doesn't appear to make any difference to the anxiety.
I find Social Media to be quite helpful too - but there is a moving invisible line - beyond which it starts making the situation worse rather than better.
"On Thursday, Facebook showed off its open-source telecommunications tech that it hopes will get unconnected folks connected, and give those of us already on the internet a smoother ride." .... Thursday?! Isn't it still Wednesday on DAY 2 of the Developer Conference? Are Facebook open sourcing telecommunications and time travel?
So what exactly are they trying to get access to? if it's just his computer - HirensBoot CD will reset the Windows password - or..... use the well known and well publicised windows bug pre WIndows 10, rename the accessibility app, copy the cmd app and name it the same as the accessibility app and then reboot, on the login screen click the accessibility button which will launch a command prompt, but because Microsoft are not wonderful about security, for some reason it launches as the SYSTEM user, and then net user <username> <new password> and you have reset the users password and can access the account. It's been known about since Windows XP, has has persisted through Vista and Windows 7 - showing that Microsoft really aren't bothered about it. But the point is - if the FBI can gain access to a locked and encrypted iPhone, then there is no reason basic plod can't get access to a Windows machine.
@frank ly - "As far as I can tell from the website and instructions, you can do a dual boot installation onto an existing Windows drive or you can run it alone from a usb stick. It needs an option to install onto an empty drive."
That would be a case of hitting TAB on the screen with Guest Mode and Resident Mode. Highlight Resident Mode, hit TAB to edit the boot command line and add "INSTALL=1" to the end of the command line. Job done.
I didn't want to faff around with resizing the data.img so I opted to run Hirens BootCD, resize my windows partition create a 64GB ext4 partition. drag the files from the remix ISO to the new drive, create a folder called "data" and boot RemixOS - it will use the data folder instead of creating data.img, and that meant I had the full 60ish GB to play with.
So confusing - first - SMS 2FA is usually a backup method - the primary method is using an app to generate the OTP codes. Second - the only way to push and install an app from a browser to an Android phone (with no user intervention) is via the Play Store which does show a notification on the device that 1) it is downloading and 2) it has been installed. Is it man-in-the-middle or is it SMS interception? Next -
"6. What can Google do to fix this?
That is easy: move the app installation process (where the user is prompted to accept the app's permissions) to the mobile device instead of handling it in the browser." (from the linked website) - well there we go then, that's exactly what they did in Marshmallow. Sure it might not be on a huge amount of devices, but there is no feasible way Google could have moved the permissions dialog to the mobile device - though it is worth noting that
"In our version of this attack, we assumed the "allow installation from untrusted sources" option to be enabled: we did not publish the repackaged PayPal app in the Play Store due to legal issues. We also expect that repackaged apps are more likely to be picked up by Bouncer." - well you do get asked to accept permissions when you sideload apps - and it is not possible (nor has it been all the way back to at least Android 2.2) for any app to press the install button in an automated way (which causes problems for users that use apps that use screen overlays - like Twilight)
The important question though - is this actually available in the wild, has anyone ever been infected by this type of malware?
Re: Every of my contacts has a limited license to use my number to call me...
"The simple OK from the WhatsApp user is not enough because his or she is managing third party data for which they have no explicit consent to be transferred to third parties."
It's a nice idea, but I'm pretty sure it's wrong. The fact that the phone number belongs to you does not make it 3rd Party information. Your friends entered your phone number into their phone, the information belongs to them. A users contact list is considered first party information because it belongs to the user - the fact that the information is a list of phone numbers, geographical addresses, email addresses, birthdays, contact specific notes and pictures - that don't belong to the user is irrelevant.
When big organisations/companies can't even be bothered to ensure they are storing credentials securely in public facing websites (even after the news being filled with other high profile security breaches) - I don't think we should assume anything (well other than the worst) about the state of play of their internal network......
Oh no! We found a bug in some software that is on millions of devices - what do we do?
Step 1) Come up with a catchy media friendly name.
Step 2) Register a web domain
Step 3) Contact the guys who did the Heartbleed website and ask if we can use their design.
Step 4) Contact relevant people and start working on a fix.
I thought there used to be security lists that people subscribed to for this sort of thing - is every vulnerability from this point forward going to have a catchy name and a website?
Re: Another way?
And did it fail at 32% overall progress and 6% installing drivers & features by any chance?
If you don't want to be stuck with the 8GB user data area - my partition is formated with ext4, and in the root (where system.sfs resides) simply create a "data" folder and as long as the boot command reads DATA= then RemixOS will simply use the data folder instead of creating a data.img file - and thus the entire size of the partition will be available for user data.
Yeah - never going to happen, for a multitude of reasons - the biggest being - Android does not work this way - and as soon as it is no longer possible to have a bootable image based on pulling the code from the AOSP repository and making it - people will start looking elsewhere for the next mobile OS. As for the hardware team that has been "spotted" - Brillo uses the core of Android as it's base - so yup, can quite believe there is a hardware team comprising members of the Android team - Google will after all be wanting to push Brillo this year - and Google IO is only a few months away - looks like some developer kits will be getting gifted this year then.
Can't afford NHS or Education, can't afford a UK wide fibre network - but apparently we can somehow afford a high speed rail network that no-one can afford to use, and will be in the news quite often because of snow on the line, leaves on the line, tracks that can't be used because it is too hot, submerged lines due to "unprecedented" flooding, and worker strikes. Awesome! Money well spent.
It might have been helpful if you had explained what Jibe actually does - Jibe existed before Google bought it and provided a quick and easy way for mobile operators to implement RCS support into their network without having to go to the hassle of implementing it all themselves. In short it took the delivery time from 6 months - 1 year down to around 6 weeks, and means the network operator doesn't have worry about keeping the software up-to-date. That is what the company Google acquired actually does. Google adding native RCS support to Android is wonderful news, but all the sly comments about Google dropping support when they get bored - miss what Jibe actually does and that regardless of what Google does - the GSMA will trudge along regardless.
Exactly the first thing I thought - AirDroid is not called or even referred to as an "Android device manager" - the only thing most people think of when Android Device Manager is mentioned - is the Google app and service.
So...... everyone complains when Google crammed Google+ into all Google services, now that Google is listening and removing the Google+ requirement - that somehow means that Google+ will be killed off?!
Actually all the users were asking was to restore the previous functionality. Previous versions of iOS didn't complain about 3rd Party repairs, and that is why users were upset - because Apple devices that had been repaired by 3rd parties and had been functioning perfectly fine for months, perhaps years - suddenly were no longer able to be used without a visit to Apple. This is in a way very similar to the FTDI fiasco which also has caused a stir.
Re: Country with largest population wins?
A country cannot vote for itself, so it wouldn't matter if the country made up 96% of the worlds population - they can't vote for themselves.
So, while the first attack might not have been targeted - what is there now to stop a targeted one? After all - they've paid up once, chances are - they will do it again if they have to.
This is a whole load of complete rubbish. First they can't "move" the entire OS onto the services layer, that is definitely something that shows that the guy who is essentially guessing the future, doesn't actually know how Android works. Second - the Nexus devices exist so that Google does have complete control over the updates situation. Third - leaving handset makers with no ability to modify Android in any way - will just significantly remove the number of manufacturers making Android hardware, which with the launch of Brillo is the very last thing Google can afford to do if they want more people to pick Android. Fourth - and this is the big one - the jump from Google wants more control and that's why they are preventing rooted devices from running Android Pay - really demonstrates the sort of lack of knowledge this guy has. Clearly - BANKS are behind the requirement that rooted devices cannot run Android Pay - because rooted devices somehow apparently threaten the integrity of the banking system.
Innovate, update layout, compete!
Streetmap forgets who it's customers are though. The average person looking for how to get from A to B just wants a mapping service that provides a pretty picture of the route and some directions - Streetmap does not provide this, and Google are indeed correct - the reason I stopped using Streetmaps was because Google Maps was easy to move around and Streetmaps required me to press an arrow in the direction I want to go, and then wait for the entire thing to reload. Now - given a choice between looking at a Streetmap of an unfamiliar location via Streetmaps or dropping in to Streetview on Google Maps so I can actually see the street and mentally remember buildings and other "stand out" markers, so when I get to the location I know where I am based on the things I can see around me, I know what service I'll be using. If Streetmaps want to compete - they should compete, not stay stuck in the old days (though I note that their map is now draggable, that's a plus, but the layout is still very 2001 - the front page doesn't even fill the screen, it sits at the left hand side and fills about 58% of the screen and all the rest on the right is just empty space)
Yes I saw what the flaw was - my point was that well designed NTP Clients would reject the spoofed time - because really good ones refuse timestamps that are more than about 2 hours from currently set time and most will reject timestamps that are more than 24 hours different to the currently set time. So providing that Apple coded the NTP client correctly - the phones should simply ignore any attempts to respond to an NTP request with a response of "0" (Though having said - whether the phone tries to resolve the timestamp after timezone conversion before rejecting it - thus potentially triggering a crash is an unknown at this point)
One would hope that setting up a nefarious NTP server would not in fact work - because good NTP clients generally refuse to change to the date and time supplied by an NTP server that would require a change across days and most that I have seen won't even change if the time is more than a few hours away from the currently set time.
Hum..... maybe that guy who volunteered to have his head cut off, frozen, thawed and stuck on a different body - is now a little bit closer to surviving the experimental surgery! That having being said - just because the brain slices look "pristine" - that doesn't mean it would actually still perform it's functions.
Source article - a range of tens of metres...... that's a LOT of access points.........
I have often said that viruses used to be intelligent and sometimes quite fun, they existed to destroy hard drives and find new ways to spread. Nowadays they are all about stealing information and forcing you to pay. I don't think you even get polymorphic viruses these days do you? They are all written from toolkits and show very little innovation.
It's very likely that even if the surgery is a success and the young man survives and regains conciousness - his brain will be a tad unhappy about being exposed to a situation that it simply cannot process. Whether his brain is able to accept the new situation or has a freak out and says "that's it, it's too much, I'm done" remains to be seen. But I think we all know deep down - the likelihood is that deep freezing the head will result in the water in cells bursting the cell walls as it freezes - which has always been the problem with cryogenics.
Well..... I mean don't get a move on with informing people, it's not like it's a huge privacy or security risk - tell you what, just for fun why don't you post all the letters to Australia by boat and have someone at the other end post them all back by boat - you could even stick a Christmas card in there too - "Merry Christmas, sorry we got hacked" - it's not really that urgent or anything. Oh and whatever you do - don't bother to send the letters with any form of recorded delivery - it's not like it's important that you know that the letters actually got to the intended person. I just don't understand the completely laid back "oops, sorry about that, we'll have a chat to you about when we can be bothered" attitude.
The thing that seems to be getting overlooked here - is - are O2 having financial troubles? Why are they looking to be acquired? Surely if they are at risk of going under then the landscape will drop to 3 providers anyway?
Re: Anyone use a VPN?
It seems that the authentication server, DNS server and DHCP server all fell over - possibly caused by problems with whatever core router it was that failed. Anyway providing your connection stayed up - then the lack of the ISP DNS server would result in you only being able to load webpages for which your computer or home router already had cached DNS results for. Many users reported that changing their DNS settings to Google or OpenDNS fixed their browsing problems - which it would because their only browsing problems were that they could not reach the DNS server to translate domains into IP addresses. Using a VPN would result in pretty much the same behaviour as simply pointing your computer at a different (working) DNS server - except of course that all your traffic would be routed down the VPN pipe too. None of these things however made the slightest bit of difference to people who could not even get past the authentication stage or to the people who were being handed non routable IP addresses.
Re: Horsefeathers -- was it a DDOS or a failed upgrade?
That was only for the people who could get connected in the first place though - the rest of us couldn't even make it past CHAP authentication - so yes - a DDOS against the authentication server is certainly a possibility.
Is no-one else even slightly concerned that they claim to have the ability to frame someone?
The CHAP authentication was failing here - there was simply no response. Those who weren't kicked off - were provided with a private 172 address. Still no explanations as to why their sites were down, and more importantly - why pretty much all phone numbers for BT including - the operator were down. Surely there are backup systems in place?
Re: It's ISIS isn't it?
Re Win10 upgrade - Oh I really really hope this is the reason!
I have no doubt it will be blamed on a failed server upgrade and that will be it, they won't bother to explain how a failed server upgrade kills so many different systems or why no backup system spring into life. Something must be seriously wrong if you can't even dial 100. I haven't checked but I hope this hasn't also affected to ability to dial 999 or I can see BT being hit with some big fines.
Probably no point asking them to comment, apparently the phones are dead, no reaching customer service, not a huge leap to think maybe they have no internet or email either. One might wonder if this is a denial of service attack, everything works right up to the CHAP authentication but the server never responds with either a success or failure message so after multiple tries a failure is assumed.
While it's devious - there is is at least one good thing about this -
it might encourage Microsoft to do something about the dreaded 32% / 6% drivers and features issues. But then...... as there are now 4 separate KB patches that all aim to deal with Windows Update and SVCHOST hogging the CPU, overheating laptops and Windows Update never actually finding updates - I won't hold my breath that they will be particularly bothered about tens of thousands of people who are forced to upgrade to Windows 10 only to find that half way through the process the upgrade hangs at 32% and rolls back to Windows 7 at which point Windows Update will refuse to find any updates and in some cases Windows 7 has been unbootable. I have spent 5 solid days trying to convince a Toshiba laptop to update to Windows 10 - and in the end I had to give up and install Windows 7 from a retail disc instead of the OEM disc and then immediately update to Windows 10 skipping all the usual 295 windows updates. A quick Google for "windows 10 upgrade stuck at 32" shows lots of people have this issue and all Microsoft can say is that it is a driver issue - one would think Windows 10 would just skip any problematic drivers and complain about them post install, but no - it just hangs with no errors and because the HDD light just flashes periodically - non technical people will probably still think it's doing something..... for about 4 hours until they finally give up.
Re: Easy fix
While there are of course a number of reasons for mobile coverage blackspots - one of the biggest ones is because people say "you can't put a mast there - it will spoil the view" and "you can't put a mast too close to people because it will cause cancer" - and then of course these very same people complain bitterly that the mobile provider they are with has terrible coverage anywhere they want to use it.......
One wonders how much she was paid off with during the EE/BT deal then - because she clearly wasn't bothered about shrinking the number of providers then was she.
There is a tiny bit of difference though between being able to lookup someone's license plate and find out if there is anything dodgy about the car or the owner - and being able to type in a license plate and find out every vehicle ever linked to the owner, every location the owner has ever driven and every person the owner has ever had contact with (including a handy lookup to explore the entire history of these people too) - even though the owner doesn't have a criminal record or any involvement ever with law enforcement - what is being suggested is very much more like the latter situation than the former.
Re: Not an unexpected result
That's pretty much what I am expecting to happen - and then I fully expect some excuse about Brussels not being happy about it - you know - to shift the blame.
Dear El Reg - maybe next time, instead of downloading a Chinese Alpha - which even has CN in the filename, maybe you should try downloading the official international version - which although dated the 11th of January instead of the 12th January, actually includes the Play Store. Of course the Chinese version is going to contain strict legal warnings, and lack of Google Play Store and Google Play Services - it's bloody China - the Jide founders would probably have their heads chopped off if they didn't comply. And in case you didn't see the link to the International version (and not the 630mb one - the 800mb one) - here it is: https://otacdn.jide.com/ota/Remix_OS_for_PC_64_B2016011102_Alpha.zip
I think Microsoft are probably intelligent enough to know that there is no way anyone will actually want to pay to upgrade to Windows 10 after the free year is up. The only way people will be getting Windows 10 after that is on a new machine.
At least 2 mobile operators use the 900MHz band..... I doubt they will be terribly happy about a sudden influx of equipment that could cause interference to their signals.
900MHz - This seems awfully close to GSM frequencies.......
But...... they have to push it out to old hardware - so they can claim that they release an iOS update and 99% of users receive it in days, and obviously the competition (Android) cannot claim that..... They never make claims that the updates are actually usable to all 99% of their users.