Feeds

* Posts by Alistair

274 posts • joined 18 May 2007

Page:

Sysadmin with EBOLA? Gartner's issued advice to debug your biz

Alistair
Bronze badge
Windows

Re: AAAAaaaaargggggggggggh.

"It’s important to note that in the tests where the virus lived for days, they were kept in the dark, at low temperatures, around 4 degrees Celsius, which helped the viruses survive."

At room tempurature or above, and/or any exposure to UV, the lifetime on a hard surface is *minutes* not hours. UV and standard chlorinated cleaners will shatter the exposed DNA of this virus. Hell, lye based soaps will do the job as well. Cloth or soft surfaces, once the material dries, there are no transmission vectors remaining.

As noted, getting vital fluids directly *on* you is the method. -- I'll conceded that someone sneezes directly in your face, transmission is possible.

There are a *crapton* of VERY bad news articles going around that misquote a study that found that the virus could live for *days* on hard surfaces. The quote above is the missing element.

Unless you happen to have been in western africa, or one one of the two flights between Cleveland and Dallas, you have nothing to be terrified about.

To be safe:

Wash your hands regularly and DONT touch your face when about in public. (its hard. try to count how often you touch your face in the day)

0
1
Alistair
Bronze badge
Windows

AAAAaaaaargggggggggggh.

so done with the ebola panic syndrome.

amongst all the other OMG PANIC crap that's been falling out of the mainstream media of late.

1) im in IT. If there's the remotest possibility that there is an actively infected ebola patient in my country that has NOT been diagnosed, I can work from home. If they HAVE been diagnosed, they will NOT be wandering about leaving a trail of infected zombie patients behind them.

2) SARs taught a good percentage of the population in my country about hand washing. (okay - not all but better than 10%.)

3) Once I'm out of the house I'm not in the habit of touching my face.

4) You have to get boogers, spit, blood, wee-wee or poop from the actively infected patient into your mouth, your nose, your eyes, or into an open wound on your body.

sweat has been dismissed as a transmission vector. Tears *might* qualify, however the saline and any exposure to UV closes that one down quickly - it is considered an equal risk, but unlikely.

Exposure in this case is not being in the same building/aircraft, but wearing someone else's bodily fluids. Most of us tend not to be comfortable with dismissing someone else's blood/vomit/poop/urine on our bodies, thus will be sufficiently aware of that risk, and likely to seek appropriate medical support.

YOU WILL NOT GET EBOLA BECAUSE SOMEONE SNEEZED ON YOUR AIRPLANE! even if he is one of the dumbest human beings alive.

0
1

No sail: NASA spikes Sunjammer

Alistair
Bronze badge
Coat

Re: Rumours are untrue

On the gripping hand, however, we do have a few observational craft floating around out there. One might be available to give it a closer look.

(mine's the one with the motie coffee pot in the pocket)

2
0

Origins of SEXUAL INTERCOURSE fished out of SCOTTISH LAKE

Alistair
Bronze badge
Coat

did anyone else

"Many miles away something crawls from the slime, at the bottom of a dark Scottish lake"

(c Sting)

(mines the one with a Denon DP29F in the oversized pocket)

0
0

Will.i.am gets CUFFED as he announces his new wristjob, the PULS

Alistair
Bronze badge
Windows

Really?

DrDre and lousy acoustics.

Will.I.am and Not.a.phone.

what next?

I Gotta Feeling this will be sold soon.

1
0

Docker's app containers are coming to Windows Server, says Microsoft

Alistair
Bronze badge
Coat

"A" fear.

No sir!

That will be 4 Fears per core please.

15
0

Russian hackers exploit 'Sandworm' bug 'to spy on NATO, EU PCs'

Alistair
Bronze badge
Windows

Re: The Hype is Strong in This One

Ayyyyyyyyyup. That teamviewer there. yupyup.

/unlocks the gun cabinet under the desk.

(grumpy old sysadmin)

0
0

World govts elect Swiss big cheese as their new ICANN point man

Alistair
Bronze badge
Coat

@Andy The Hat

I think your post will be staggeringly popular in this manor, squire.

0
0

Economics prof denies digital pirates plundered €20bn from EU coffers

Alistair
Bronze badge
Coat

Re: Freetardonomics

Oh look, theres a neat building over there in Paris. I'll steal the plans and build one here.

Please re-read the article the pivot is that the industries in which the largest losses were recorded are the industries in which there is little to no piracy active.

While there is argument that "artists loose revenue" with piracy, the point is that the money still gets spent in the economy. Thus his statement that the pirates aren't pulling money out of the economy.

Personal opinion, "artists loose revenue" still applies in the current situation, but they're probably loosing more to the MPIAA/RIAA/(whichever organization collects the revenue/sets the rates) than they really are loosing to piracy.

18
2

Siri ... why is this semi headed RIGHT AT ME? Phone apps distracting as ever – new study

Alistair
Bronze badge
Coat

"We already know that drivers can miss hit stop signs, pedestrians and other cars while using voice technologies because their minds are not fully focused on the road ahead,” said AAA CEO Bob Darbelnet.

FTFT

But then, perhaps I'm just too damn blunt.

turn it off, put it down, and just #%#$%^ drive dammit!!!!!!!!!!!!!

0
0

Dot-gay told it's NOT gay enough – but web'll be officially .eco-friendly

Alistair
Bronze badge
Joke

missed on .taxi.

I guess thats an "Uber" fail?

/ducks and runs.

5
0

Behind the Facebook DRAG QUEEN CRACKDOWN: 'Anonymity soon!'

Alistair
Bronze badge
Coat

Re: I'm facing a problem with Facebook's privacy settings...

I suspect (insert appropriate photo edit software) would engender a chuckle in the long run.

2
0
Alistair
Bronze badge
Coat

in the category of "what can go wrong" this week....

(In the voice of clippy)

"Oh, I see you're trying to be anonymous on Facebook......."

And of course, they will make a phone app as well.....

Nope, nothing could go wrong there..

5
0

Adobe spies on reading habits over unencrypted web because your 'privacy is important'

Alistair
Bronze badge
Coat

Re: adobe digital editions

*cough*

ISWYDT

0
0

'Cops and public bodies BUNGLE snooping powers by spying on 3,000 law-abiding Brits'

Alistair
Bronze badge
Coat

Re: unauthorized snooping by noobs

sorry -- misread that as unauthorized snooping for boobs.

dunno what came over me there.

(the rumpled, grubby one)

0
0

Linux systemd dev says open source is 'SICK', kernel community 'awful'

Alistair
Bronze badge
Windows

Re: Olivetti and Time Travel

Ayyyyyyyyyup.

"Who the hell decided that we need to do....."

"oh...... crap."

But being willing to stand up and ADMIT that you screwed up in the past (or even right this moment) is *FAR* more important than putting a lead shield around your ego.

3
0
Alistair
Bronze badge
Windows

Re: Oh please...

Agree - avahi is crap that causes more problems than it solves in most cases. I pull it out the instant I can.

Pulse has been a serious PITA... oddly of late I've found it seems to be getting its act together -- I wonder why...... (checks commits)

But then I have been an *anything* but gnome user for ages.

1
0
Alistair
Bronze badge
Windows

systemd does appear to be a cancer on *nix, I will not install a distro that uses it...

Best get your Slackware on then. Or Gentoo.

Sadly RHEL7 is infected.

I don't need Toppins opinion, mine's even lower and more vilifying.

Poettering's crew are ignoring pleas from app teams, system admins, and environment managers, insisting on tying non server toolkits into a core server process and then dropping the ball on bug filings "because it doesn't meet our agenda" (I've seen that on a closed bug once, I'll see if I can find the BZ entry)

Personally as an SA, having had the exposure through F18/19/20 I can see nightmares ahead of us on a scale that staggers the imagination. .......... (ahhhhhhhhhh I could go on for quite some time, but that would make me an intolerant, ignorant empowered white male egotist in some dev's mind. Instead of a grumpy old bastard.)

15
0

Man brings knife to a gun fight and WINS

Alistair
Bronze badge

Re: Simple solutions ...

Simpler solution:

Don't attend gunfight.

Nuke from orbit.

Proceed to evacuate the system. Sadly, I'm too close to the north end of the problem to implement said solution.

0
0

My employer, comply with data protection law? Don't think so – say 3 in 4 office drones

Alistair
Bronze badge
Coat

Re: You can't do that

I'll agree with UKgnome. 99% of the "compliance issues" I've seen have had nothing to do with actual legal compliance, mostly "But our security people said......" compliance. That said, there are unfortunately some security types that have been handed a mandate, and thus have become bulls in the proverbial china shop.

On the other side, I've mined data out of application transaction streams that was blatantly clearly violating essential security rules and had the app team come back with "Oh, no, there is no such data in our application, you must have seen something else." For MONTHS after the fact. Only to have the DSS third party analysis agree with my findings.

Most of the Sysadmins I've met have the little grey cells to read the law so that they have a chance. Few of them are willing to stand up and wave the document around, I suspect due more to the current atmosphere in IT than anything else.

I'm seeing more "dont rock the boat" attitude lately than I've seen in years and I'm not 100% sure *why*.

Mines the one on the far side of the canoe, hold on while I stand up and grab it.

0
0

Google ordered to tear down search results from its global dotcom by French court

Alistair
Bronze badge
Coat

Re: Same as MS & USA judge

*cough*

US court finding an Argentine Court in contempt of court?

0
0
Alistair
Bronze badge
Coat

Re: These Gauls are crazy.

Does that worm sauce include the kitty giblets or not?

You might deter the kittehs and wurms, but if you're doing that in france you might end up with a crowd around your pan.

(The one with the funny face mask and a handcart in the pocket please)

0
0

Linux? Bah! Red Hat has its eye on the CLOUD – and it wants to own it

Alistair
Bronze badge
Windows

Gnome is terrible of late.

But who the hell installs desktop code on server hardware?

systemd *shudder* but I haven't tangled with rhel7 yet. 6 still suffices for now. I don't relish digging into startup issues on hosts where we spawn 15 or 20 apache instances because the app teams are lazy, and have to coordinate that and the application instances.

On my work laptop, KDE, not gnome and fedora20. And I get to work on my systemd paranoia.

Gentoo is still my personal preference.

I rather like the bits of CloudForms I've seen in the presentations. It rather looks to me like they could do very very good things with the ideas there.

(grumpy old guy, cause thats just me these days)

0
0

SPECIAL iPHONE TROUSERS will ease Apple into the fashion world

Alistair
Bronze badge
Coat

I have a feeling that it's a combination of hipsters, skinny jeans and oversized phones....

If the iPhone 6plus rids the world of skinny jeanshipsters it will have done us all a huge favour !

FTFY

1
0

TEEN RAMPAGE: Kids in iPhone 6 'Will it bend' YouTube 'prank'

Alistair
Bronze badge
Windows

Galaxy Edge

Only reason I haven't hunted one down yet is that I tend to use my phone left handed, and it strikes me that I'd want the curve on the left side not right... but then, I'm weird that way.

(grumpy old fart 'cause I'm hunting down a problem on a winders DB server. *shudder*)

0
0
Alistair
Bronze badge
Pint

Norwich has an apple store?

Last I looked it was a table on the side of the road.

http://www.twp.norwich.on.ca/

but thats my Norwich. And those apples DONT bend. They mush. And make good cider too.

0
0

Icahn and I DID: eBay volte-faces, spins PayPal into separate biz

Alistair
Bronze badge
Coat

Icahn dissasemble #5

(although I'm sure its more than 5 he's hit I'm sure there are some that will get it)

Lets see what happens to the rest of the property in the package. I do not hold my breath.

0
0

Third patch brings more admin Shellshock for the battered and Bashed

Alistair
Bronze badge
Coat

Re: More patches....

Say it with me now folks:

Awwwwwtoemmmmmmmation!

cfengine/chef/puppet/etc etc.

1500 to 1600 active systems, no sanity in trying to do each one manually. Test against the app layer in a controlled environment, validate results and push it out with automation. Including the validation.

1
0

Grooveshark caught in a net of its own making

Alistair
Bronze badge
Coat

Hmmm. Parallel for a bank would be:

While you are on your way to work try to find a homeless person who would like a mortgage they can't afford.

>>> end of cycle >>>

"we need a bailout!!"

(okay yeah, I'm carrying on a bit aren't I?)

1
4

Ruskies use commercial crimeware to mask 'patriotic' Ukraine hacks

Alistair
Bronze badge
Pint

Re: Straight outta Nuland

Governments - looking out for themselves since the Assyrian empire.

FTFY

3
0

SMASH the Bash bug! Apple and Red Hat scramble for patch batches

Alistair
Bronze badge
Windows

Bash patches and the flack.

I've been following the discussions that this group of folks are having, on the mailing list. Quite closely.

In our case (approximately 1600 linux hosts, all RHEL, covering 4->6 in numerous set ups, we've had 0 issues with the patches, we waited until the second fix came out before we pushed, and cfengine did the job it was built for so there was no overtime involved. The patch does not require a reboot, but in most cases we did an apache (or other) graceful restart, just to play it safe.

Long and short - the issue was discovered, and about 4 days later a set of suggested fixes were discussed, and the first set of fixes was put in place, those were tested and one tester found an additional unique path that had a similar flaw. That opened up a new set of discussions because it was a substantially different path through the code. The debate on how to handle that took much longer since it required much more stringent logic to avoid breaking things in current use. If you went and read the list to see what they were discussing, you'd find that the secondary fix is in no way easy, and despite us already having a fix, will result in much larger code changes in the future.

What scares the crap out of me on this front is all those landfill wifi routers out there that use cgi - many of them DONT use bash, but I'll bet that there will be a crapton that do and have lousy coding practices, and will NOT be updated anytime soon. Worm time anyone? *that* will be a pain in the tuchus when it comes down.

These guys are bright, solid coders, applying solid common sense and strong skills to fix the problem, without breaking things that work the way they should. Not an easy job folks.

7
0

Researchers tell black hats: 'YOU'RE SOOO PREDICTABLE'

Alistair
Bronze badge
Windows

We can predict where the terrorists will sit on the plane.

And just shoot those seats.

what could go wrong?

1
0

Bubble 2.0? Moneybags VC Andreessen warns profit-free startups: 'You will be VAPORIZED'

Alistair
Bronze badge
Coat

VC's are part of the disease. Wallstreet is the pandemic

I'll just re-iterate my previous comment from here:

http://forums.theregister.co.uk/forum/1/2014/08/20/wall_street_woes_tech_companies_are_not_paying_the_bankers/

0
0

Bash bug: Shellshocked yet? You will be ... when this goes WORM

Alistair
Bronze badge
Coat

Re: Smartphone vulnerability?

I was being fairly specific -- I've rooted my phone and put Cyanogen on it - I checked the other 4 phones in the house last night.

a) default shell in all cases is /bin/sh - not bash.

b) bash is present on my Cyanogen unit *and* on the moto (on the moto, it *might* have been installed by an app the young fella installed)

*and* Cyanogen pushed an update last night that has the *first* patch to bash.

Rooted iphone has something *called* bash on it but it does not appear to be a binary.

0
0
Alistair
Bronze badge
Windows

Re: Smartphone vulnerability?

hmmm.

Cyanogen 11.2

/system/xbin/bash.

/wanders off to go fiddle some more --

(for the record, most versions of weblogic have some sort of sanity checking for data strings, but if you happen to *know* the checking done....... it can get ugly fast.)

<edit>

Damn. I can point out that bash on Cyanogen 11.(2) is vulnerable as far as the default test goes.

</edit>

0
0
Alistair
Bronze badge
Windows

Re: What about Windows

if you have bash installed in there anywhere, you'll want to patch it.

And yes, I have windows servers with bash that have to be patched. Its not available yet but it will be out soon.

1
0
Alistair
Bronze badge
Windows

Re: shell shocked admins?

-- Process p = Runtime.getRuntime().exec("bash -c '" + injectCommandLikeABeachedWhale() + '"); --

Thanks for that -- playing with it now.

1
0
Alistair
Bronze badge
Windows

Re: shell shocked admins?

I understand that at this point it's too late?

I suppose that depends on what you do to strip it - check your sshd_config for AcceptEnv objects.

I accept that not everyone is running sshd updated for that - but in our case we are.

1
0
Alistair
Bronze badge
Windows

shell shocked admins?

I think I've got my head wrapped around the worst of this one:

a) in the case of ssh calling bash, this is not an issue until after authentication has completed, ie, you cannot (at the moment at least from what I've read and tested) *spawn* a shell without completing the authentication process. -> no open sewer there that would have opened a pit to hell.

With ssh the issue is the "ForcedCommand" functionality - authentication completes, and with some creativity a user COULD pass in a function definition that would spawn them a shell.

I've about 40 of these accounts out there and I don't know about anyone else, but I wipe the environment at the top of the script intentionally ... and then parse the hell out of the command coming in to make sure it qualifies.

b) HOWEVER - in cases where services are exposed to the network, where those services *can* accept input from outside, and where those services then *can* call or invoke a shell with that input (unchecked) -

You haz a great big cheezburger.

So - at least in my *managed* apache environments we don't allow cgi, and php is heavily limited, we don't have any *screaming* issues -- I've found a couple of things that made me go *ick* but nothing terrifying.

I don't do the DHCP, but its on BSD and should not have an issue

things like weblogic and jboss at this point make things in my gut go ickky. I seem to recall an input in Java 1.5.(something) that could be used to fork a shell out of a jvm.....

We have a few "packaged" apache solutions. *sigh* no comment. 3rd party vendors getting calls to investigate those.

Last check of the patched RH systems indicates that the issue is not 100% resolved yet - and my fedora systems arent fixed yet either. Its gonna be a hella long weekend for some admins.

4
0

FBI boss: Apple's iPhone, iPad encryption puts people 'ABOVE THE LAW'

Alistair
Bronze badge
Coat

Simple really, statistics

I'd hate to have people look at me and say, 'Well how come you can't save this kid,' 'How come you can't do this thing

Please provide statistics that indicate that the FBI has saved hundreds of kids based on evidence found on other persons phones.

Ahhhhhhhhhhhhh. I see. Never happened. Okay.

0
1

SpaceX Dragon cargo truck flies 3D printer to ISS: Clawdown in 3, 2...

Alistair
Bronze badge
Pint

*ding dong* <st>avon</st> spacex calling

@JDX -- might be interesting to see how quickly they adapt to (near 0) G. Fruitflies aren't too bright to start with. (contemplates neon painted fuitflies in (near 0) G under a blacklight) ......

@Irongut. considering the capabilities it has, it wouldn't denigrate it by labelling it a baseball mitt. But I'll grant the license in context.

Always nice to see another successful launch and delivery. I really would like to see the first "controlled" landing in the first person, hell I wouldn't mind being on one of the early passenger ready modules either, but I seriously doubt they'd need me to do an "on site" visit.

1
0

iPhone 6: The final straw for Android makers eaten alive by the data parasite?

Alistair
Bronze badge

Re: Once some players drop out then....

doesn't butter any parsnips - or direct capital.

Wall street might disgree with you on that one - although profit is the principle driver, when profits in general are low, the target with the largest market segment gets the pip, usually since it has the greatest chance of ticking the profit box.

0
0

Spies would need SUPER POWERS to tap undersea cables

Alistair
Bronze badge
Joke

fibre cable undersea splicing jobs.

I thought we had sharks with frikkin lazers man! I mean, teeth. Lazers. Job done no?

Oh look. There's a free port on that there Sonet tree. 'click'. pokes at keyboard.

What? yup, we're all good here.

0
0

SCREW YOU, Russia! NASA lobs $6.8bn at Boeing AND SpaceX to run space station taxis

Alistair
Bronze badge
Joke

Re: What a total rip-off!

CST 100 does come down on land, using airbags to cushion the landing.

What a wonderful way for the americans to recycle used polititcians!

2
1

PLEASE STOP with the snooping requests, begs Google as gov data demands skyrocket

Alistair
Bronze badge
Coat

Re: USA Freedom Act?

And you thought there was some OTHER reason GOOGLE are wanting this in place???????

Anything that's likely to make your (meta) data safer on line is likely to take away something google is making money from selling to someone else.

2
0

SUSE Linux owner Attachmate gobbled by Micro Focus for $2.3bn

Alistair
Bronze badge
Thumb Up

I *like* this idea

COBOL on linux. Even if its targetted at SUSE and I run RH.

Rock solid port platform for legacy cruft. Heck, I can even move some stuff off HPUX to linux when they get this wrapped up nicely.

And perhaps we'll get something better than TN3270 for linux.

4
0

Bank IT bod accused of stealing $40 MEEELLION from employer

Alistair
Bronze badge
Coat

EFCC simply said it is a "new generation bank."

As in "formed out of money farmed from email suckers"

Apparently this lot missed the "security requirements" documents, at a guess they got lost i the "spam folder". Irony at its finest.

1
0

Infosec geniuses hack a Canon PRINTER and install DOOM

Alistair
Bronze badge
Coat

printer lp0 on fire

can now be updated:

"printer lp0, We're ALL DOOMED I tell ya...."

1
0

Intel: Hey, enterprises, drop everything and DO HADOOP

Alistair
Bronze badge

Re: TLDR

You can tune SAS/IDE/SSA disks at the host level. No SAN needed.

0
0
Alistair
Bronze badge
Windows

TLDR

I'm fiddling out network solutions for the hadoop here. Hardware is relatively cheap now, storage is dirt cheap now, but dear lord the networking to get it all glued together well is horrendously expensive. And god help you if you don't grok your storage performance tuning.

All that even before you bring in the analytics, and in that case you need folks that understand WHERE the data is relevant, not just what it might be good for. At this point I get the feeling that those of us actually doing the work have aquired the appearance of wizards, and we're expected to pull all sorts of strange things out of ..... well a hat would be polite.

(grumpy old wizard, no windows here)

(we NEED a pointy hat icon)

0
0

Page: