Feeds

* Posts by heyrick

2316 posts • joined 20 Dec 2009

'Things' on the Internet-of-things have 25 vulnerabilities apiece

heyrick
Silver badge

StumbleUpon is ruining your site

There is some sort of problem on their end, so they notify us about this by opening a frame the width of the page, obliterating huge swathes of the content I came here to read. This is obnoxious behaviour.

http://i.imgur.com/MdR1WhA.jpg

1
0

Scotland's BIG question: Will independence cost me my broadband?

heyrick
Silver badge

Re: Realism

The thing that a lot of Europe doesn't quite get is that Scotland is not an annoying rebellious region wanting independence. It is a separate country, and it wants to be a separate autonomous country. British history is messy.

10
1

Israel's Iron Dome missile tech stolen by Chinese hackers

heyrick
Silver badge

Re: Oh Goody, Chinese Knock-offs On Their Way

"is by Hamas deliberately taking their rockets to launch from areas that are known to be occupied by Palestinians."

And, yet, strangely enough it seems that Israel (and the world) knows that there are civilians there...and it still feels the need to "defend itself" by lobbing over bigger and more effective bombs instead of something more subtle and targetted.

With the technical intelligence that Israel thinks it has, and the backing of America, the only reason I can think of for why Israel hasn't taken out Hamas sooner and more discretely is that they don't really want any Palestinians left there at all.

5
0

How long is too long to wait for a security fix?

heyrick
Silver badge

Re: Home router patching? You're having a laugh...

@ Trevor: Does it offer SIP VoIP with a socket for regular phones? I have a backup spare WAG200 router with open firmware, but when I use that, no phone...

0
0
heyrick
Silver badge

Home router patching? You're having a laugh...

"Patching your NAS is important, just as it is for your home router, switches, firewalls, servers and endpoints. Sadly, as has been made quite obvious, a great many people simply refuse to do so."

Last week, Orange (France) updated the firmware in (some? all?) of the domestic Liveboxes, after - when was the last update? 2012? Anyway.. This adds a nifty looking user interface that is horribly broken, gives you advanced configuration options that just don't work right (good luck associating a device with a 'fixed' IP address on the (W)LAN via DHCP), gives you an 80:20 chance that the box won't recognise a USB key plugged into it, and means the previously working DNLA server struggles with 720P and even some 480P content. The Livebox 2 (Sagem) is locked up tight. I really wish I could revert to the previous firmware, and disable auto-upgrades. Instead, we are all beta testers in software that is very clearly not up to expected release quality. I suspect this is tied in to IPv6 that Orange might be rolling out around 2017, maybe...

I am not against the idea of automatic upgrades, especially in domestic devices, however when said upgrade is clearly rushed out the door, unfinished, and mucks up stuff (people of Orange forums have reported drops in connection speeds and alsorts, but since my pipe is only 2mbit, I wouldn't notice!), it is hard to be in support of such automatic upgrades.

Point being - whether or not the home router firmware is updated is out of our hands, and it is especially galling when such upgrades are forced and offer a worse experience then before.

0
0

Apple smacked with privacy sueball over Location Services

heyrick
Silver badge

Re: Who reads that cruft anyway?

Update iOS? Update AppStore? Update...

You get a square box on the screen, maybe 2/3rds the size of it, with text. A helpful indicator shows that there are over 40 pages of it to read. There's no indication of what is no or different to before, and best yet, there is no "I disagree". The new software has been installed, there is no (simple) way to revert to what there was before, just an "accept this rubbish and you can carry on using your iThingy" button.

1
1

PayPal post-checkout cash slurp a FEATURE not a BUG

heyrick
Silver badge

Re: So buried in an email you ignore...

To follow up - it would be an interesting case for eBay seems to think that clicking the "buy" button is completely binding and commits you to purchase (I'm talking about a buy it now, not an auction). You are now in a situation where you are committed to buying something that the vendor could pile on some additional charges not mentioned in the price shown by the buy it now button...

5
0
heyrick
Silver badge

Re: So buried in an email you ignore...

" There is also some onus on you to check emails. "

And what is your recourse if somebody whacks some extras on to an amount already agreed, PayPal seems to think this is okay, and the email is notifying you that the extra has already been paid...

5
0

Snowden wants YOU – yes, YOU – to build spy-busting tech

heyrick
Silver badge
Big Brother

Re: Bravo, Mr Snowden !

Ah, I get it now.

You're a CIA op, looking to discredit all of this by making it seem like the ramblings of a bunch of lunatics. Well, after the ways you failed to bump off Castro (at least, the ones we know about), don't you dare come here trying to make us look like crazies.

6
0
heyrick
Silver badge

Re: Noo..

"sniffing mary jane" ... ? Girl's shoes?

3
0
heyrick
Silver badge

Re: 2nd Level

"all that C-Plus-Plus when basic C code on it's own does the Job better"

As amusing as your post was, I believe that security level code is not inherently "better" in one language in preference to another. The people who can pass the -S option to their compiler and understand that output and correlate it to the binaries...they're the ones we need.

I'm referring, of course, to an article on how much people trust their compiler, that it won't recognise specific cases and insert code to allow backdoor access in otherwise legitimate code.

Oh, and yes, I see the light. It blinks every time my harddisc is accessed.

1
0

BBC goes offline in MASSIVE COCKUP: Stephen Fry partly muzzled

heyrick
Silver badge
Unhappy

Outage?

Ugh.

Failure, incident, error, cockup....

1
0

Mozilla and Facebook snip a further five per cent from all JPEGs

heyrick
Silver badge

everybody wants a faster Web, but everybody wants to stick with the formats they're using now.

...but why snip off 10-15% from images! when you know that half the web will consider the 10-15% saved will allow around 30% more advertising?

Running AdblockPlus and NoScript, my web is extremely nice. On the tablet, where such options don't exist - and would really be appreciated - the difference in speed is notable.

3
0

Native Americans KILLED AND ATE DUMBO, say archaeologists

heyrick
Silver badge

We kill and eat Wilbur. And Nemo (if not Nemo, several of his cousins). And Bambi. And Daisy. And...

There's a story here? Humans eat meat. Usually. ;-)

4
0

Will GCHQ furtle this El Reg readers' poll? Team Snowden suggests: Yes

heyrick
Silver badge

Re: Poll? What poll?

"Ah there it is. Made the mistake of reading this one on an iPad."

??? So am I. The poll was right there where it was expected. And with Safari.

0
0

ISPs 'blindsided' by UK.gov's 'emergency' data retention and investigation powers law

heyrick
Silver badge

Re: There is precident

The interesting thing will be when a British court goes after an American person. What may or may not be legal here much be a "freedom of speech" right there. For a country to try to enforce its law in another will, sooner or later, blow up in their faces...

4
0

InMage now InMicrosoft: Redmond slurps disaster recovery hardware biz

heyrick
Silver badge

announced it had acquired disaster recovery expert InMage

Sounds interesting, until I remember how much fail their dubious hijack of No-IP was. Then I wonder if Microsoft are the right people to be advising about these sorts of things...?

0
0

'Apple is TERRIFIED of women’s bodies and women’s pleasure' – fresh tech sex storm

heyrick
Silver badge

Re: Misogyny?

On the other hand, try asking the iOS spell check to suggest a suitable alternative for "abirtion" or "abortoin". I've tried a number of alternatives and it just won't do it...

If Apple are going to take the approach of censoring certain words, they will by necessity be picking sides.

3
1

Siri, did we just take a hit in that voice-recog patent fight?

heyrick
Silver badge

"Unfortunately, we were not aware of Zhizhen's patent before..."

Since when has that ever been an excuse acceptable by the trolls?

5
0

Dubai to get HUGE climate-controlled DOMED CITY and giga-mall

heyrick
Silver badge
Coat

Romdeau

I trust that they're going to call this city Romdeau.

0
0

Alabama quadchopper hits THREE THOUSAND FEET next to AIRPORT

heyrick
Silver badge

Re: I've posted a rant here before

I think the rules in France at pretty stringent, and for my dinky little helicopter (I'd like a quad) I would really prefer to keep it where I can clearly see it.

To add to this, military jets often test drive around this patch of sky. The thing would be a burning wreck in the field long before a model plane operator even had a chance to register the military aircraft's presence, never mind drop out of the way.

So, upvote for you sir. Model aircraft can be lots of fun, but if somebody is going to be an asshat about it, they'll make the rest of us look like asshats too. I agree - if a person is going to fly out of what is considered reasonable for a model, they ought to have a piece of paper to demonstate a lack of asshattery, and another piece of paper providing the relevant permissions.

1
0

Fridge hacked. Car hacked. Next up, your LIGHT BULBS

heyrick
Silver badge
WTF?

Wait... WHAT?

Lightbulbs on the internet?

Jesus effing Christ! Maybe I'm getting too old for this lark, but that seems to me a "because we can" item.

2
0

Oh SNAP! Old-school '80s Unix hack to smack OSX, iOS, Red Hat?

heyrick
Silver badge

Re: Confused...

" I'm I the only one who's wondering why is there such a pletora of articles lately highlighting "problems/defects" in non-microsoft products? "

I said many years ago, in response to "Linux is completely secure!" type statements, that Linux was secure THEN because it was not important enough to be an attack vector. With Windows 8 not flying out the door and many many mobile phones running a variant; it has now matured into something worth attacking, as has iOS...

The non Microsoft products have come of age.

11
15

Amazon sues former employee who took Google cloud job

heyrick
Silver badge

Turns up all over the place, I'd imagine?

One of my first jobs, as a school leaver many years ago, was with a company that cleaned new-build houses after the builders had finished. A clause in the contract specified that I would not work in a related sector (any job involving cleaning anything) for a period of 12 months after finishing work for them.

I didn't sign the contract, and they never asked for it. When I came to leave (to go to another cleaning job that paid a lot more), they started agitating, so I pointed out that they actually had no signed contract, and if they wish to enforce such a nonsense and restrictive term, I would expect to be paid during those 12 months. A lot of threats, but I went to my new job and never heard from the old employer again. Makes me wonder how many people in all walks of life have supposed restrictions like this slipped into their contracts...

2
0

You are ALL Americans now: Europeans offered same rights as US folks in data slurp leaks

heyrick
Silver badge
Megaphone

Dear Mr. Holder - screw you

Redress in America? Same "rights" as Americans?

Sorry.

We have our own rights and laws. When we can drag your sorry ass to our courts, including extradition (taken seriously by your government), then we will have something worth talking about.

But in a country where a secret supposed court hears secret things in secret and doesn't disclose (because it's all a secret), plus has a history of locating troublesome people offshore because your legal process seems to only apply when and where you want it to apply, I'm afraid granting us "rights" like that would be, for some of us, a brazen attempt to take away our rights. I can hear it now - "you can't do anything in your country because we offer a remedy in ours".

No.

Just no.

You infringe our rights, you get to deal with it in our country. End of.

(all we need now is for our own gutless politicians to realise this)

0
0

Super-snoop bid: UK government hits panic button on EU data retention ruling

heyrick
Silver badge

Theresa, we need protecting...

...but...

...from the likes of you.

8
0

Google Nest slurps your life into the Matrix? The TRUTH

heyrick
Silver badge
Coat

"but night-time set-backs are still feasible"

I'm sure that will be noticed, and appropriate advertising added to your profile.

1
0
heyrick
Silver badge
Happy

Re: So if we want to break into your house...

And the really clever systems could follow that up with "Joe Bloggs is currently robbing John Smith's house!" [you and a billion others Like this]

3
0
heyrick
Silver badge
Happy

So if we want to break into your house...

...we just wait until it tweets "Elvis {$YOURNAME} has left the building!".

3
0

If Google remembers whom it has forgotten, has it complied with the ECJ judgment?

heyrick
Silver badge

This whole thing is idiotic

If I got busted nicking booze as a teenager, and a report on CrappyLocalPaper.co.uk kept haunting me, surely I should be firing my "right to be forgotten" ammunition at the newspaper website and not a search engine?

To go after getting links removed from Google sounds like hitting an easy target because getting something taken down legitimately is more difficult.

5
0

Google spaffs $50 MILLION on 'get girls coding' campaign

heyrick
Silver badge

Re: Maybe women just don't like coding?

"- more male nurses?"

As a person who did this for a while, I got sick and tired of all of the females assuming that I was gay. As if there was no possible way that a straight male would ever consider that as a career option.

2
0

Canada to Google: You can't have your borderless cake and eat it too

heyrick
Silver badge

"Is the Canadian Judge so big headed to think his judgement outweighs any others in the world?"

Isn't this pretty much the same sort of idea as the EU's "Right to be forgotten"? How is this handled? That URLs relating to British citizens are blocked from google.co.uk, or everywhere? I mean - if it was the same argument as this, surely we could sidestep the entire EU ruling and the storm in a teacup that it is causing and discover that the new guy at work was a perv who liked to look up his teacher's skirts....by looking it up on google.com (you know, the default option)?

1
0
heyrick
Silver badge

being ordered to do something that could require it to contravene a law in another jurisdiction

Huh? This the same Google that seems to think the laws of other countries don't apply?

3
2

DON'T PANIC: Facebook returns after 30-minute outage terror

heyrick
Silver badge

How long until...

...they 'fess up what happened to their user passwords, telephone numbers, etc etc etc?

0
0

Luxembourg patent troll suing world+dog

heyrick
Silver badge

vFAT

If you mean the long filenames thing, it typically used a wrinkle that in the patent, a long filename was a long version of a short 8.3 filename. So the workaround was to have a long filename and a bogus 8.3 name. An absolutely horrid "hack" (what happens on LFN incapable devices?), but that's reality...

http://www.osnews.com/story/21766/Linux_Kernel_Patch_Works_Around_Microsoft_s_FAT_Patents

3
0

YouTube will nuke indie music videos in DAYS, says Google exec

heyrick
Silver badge

Um... Guys?

Your value is not the adverts that you show. I can understand why you make this mistake, because you get paid for advertising and stuff. But we are not you. The value of your service, to us, is not advertising, it is the content. Like commercial TV, advertising is something we will put up with in order to get to the content.

And now, you are looking like you are wanting to kick off some content because the creators want to be paid a little more than you have decided they're worth.

Smart move.

Real smart.

Now...what was my Vimeo password again?

6
0

Slippery Google greases up, aims to squirm out of EU privacy grasp

heyrick
Silver badge
Flame

"See, if we comply with your crazy order, you stupid judge - everything breaks."

Can we say this the next time a low ranking US judge "decides" that the entire internet falls under US jurisdiction, or some rubbish like that?

6
0

'Cortana-gate' ruins Satya Nadella's Microsoft honeymoon

heyrick
Silver badge
WTF?

Loyalty my ass

Example - I registered my new iOS device last August. Registrations September or later get most of the nice Apple apps free. They're like €8,99 to me.

This was not done out of any sense of loyalty. It was because iOS7 was having a bit of a Marmite love it or hate it response, so they wanted to do something to encourage new registrations (which means new sales).

So to with Microsoft. They want to try to break into a new market. This isn't about loyalty, it is about a commercial opportunity. As they are an international company, what do you suppose is important to them: making money or making fanboys feel loved?

7
0

Supermodel Lily Cole: 'I got a little bit upset by that Register article'

heyrick
Silver badge

Who is she again?

The post is required, and must contain letters.

3
0

Tom Hanks NICKED my COPYRIGHTED PIC, claims Brit photog

heyrick
Silver badge
Unhappy

especially if the copyright wasn't registered

Not technically necessary, except in the US, as the granting of copyright is an automatic thing. However, in typical screwing-with-everybody-else's-laws: "The case Kernel Records Oy v Mosley found that registration is necessary for a lawsuit and that anything published online is considered a US work." [http://en.wikipedia.org/wiki/Copyright_registration]

Accordingly, perhaps the best approach is to make a lot of noise about how "Tom Hanks, a fellow artist, STOLE my creation" and hope that either he or his agent come to some sort of arrangement to make the bad publicity go away, as the legal route is likely to be balanced heavily against the foreigner - - that bollocks about lack of registration removes punitive damages? The US is barely even bothering to follow the Berne Convention (witness the arbitrary messing with lengths of copyright protection in order to "protect" a stupid mouse).

1
0

The cute things they say

heyrick
Silver badge
Facepalm

Technical support from the other angle

To set the scene: Livebox hit by lightning (via phone line).

> Hello, how may I help you?

< Hi, I need a replacement Livebox, this one has been struck by lightning.

> Okay sir, can you please tell me... What lights are showing on your box?

< None.

> Could you please check that it is plugged in.

< It is not plugged in.

> That may be the problem sir. Can you please plug in your Livebox, then we can go from there.

< You are working through a support script aren't you?

> ...

< Can I suggest a small alteration? If hit by lighting, go to oh-crap?

> Please plug in the Livebox, sir. I cannot assist you otherwise.

< For your information, the power pack is bulging and smells of smoke. Are you happy to accept liability for any damage caused by me plugging this in?

> Smells of smoke?

< Yes, the Livebox was hit by lighting.

> You said that sir, but how do you know?

< Because it is black all around the phone port, the ADSL filter is in pieces all over the room, and when I shake the Livebox, all sorts of stuff - burnt, I should add, rattles around inside. {shakes box}

> Right, sir, I think I understand. I can arrange for a technician to come and look at your phone line tomorrow.

< {nnnnnngh!} I don't need a technician, thank you. I just need a replacement Livebox.

> Your phone line may be damaged.

< Possible, but unlikely.

> How can you be certain sir?

< Check your caller ID, notice where I am phoning you from. It is on the screen in front of you, right?

> ...

< This is really simple. Livebox dead, customer needs replacement. If you need to specify a reason for return, just write "customer did not go to church enough, God was annoyed".

> ...

> ...

> ... [thinking he'd hung up on me]

> ...

> ...

> Right, sir. We can arrange for a replacement unit to be shipped out to you. Where would you like to collect it? Your nearest Orange shops are {blah} and {meh}.

The story didn't end there. The unit sent was a recon with a wifi card that flaked out as soon as it got warm. I managed to keep it limping along by pointing a big fan at the box, but made my thoughts known on the support forums. Luckily, thankfully, a tech there picked up the thread and arranged for a proper replacement to be sent out so I didn't have to call support again. Funny in hindsight, but at the time... Grrrr!

7
0

'Hashtag' added to the OED – but # isn't a hash, pound, nor number sign

heyrick
Silver badge

Re: Sharp comment

This is a hash - # (horizontal lines flat, vertical lines tilted to the right)

This is a sharp - ♯ (0x266F; horizontal lines tilted upwards, vertical lines straight)

17
0

Apple: REIGN OF FIRE coming to Europe courtesy of old iPhone chargers

heyrick
Silver badge

The A1400 gets pretty hot charging an iPad Mini, but this is hardly a surprise given that we have 230VAC going in one end and 5VDC at 1A coming out the other. It has the dual distinctions of being both the smallest USB output charger I own, and also the most powerful (by about 400mA). At the moment it is running a RaspberryPi (and is only just 'warm').

0
0

Women are too expensive to draw and code – Ubisoft

heyrick
Silver badge
WTF?

Hmm...

Was farting around with GTA3:Liberty on my PS2 the other day (no, I'm not a gamer...) and I don't remember an option to change the protagonist to be female. Indeed, it's a fixed storyline so I don't think you can be anybody else at all.

Some games support lots of customisation, others don't.

0
0

207 thousand lights-out boxes are STILL hackable

heyrick
Silver badge

What I worry about with home routers

Mine is running the latest firmware. It dates from 2012. God knows how old the kernel actually is, but I'd reckon a few vulns have been discovered since then. And don't talk about my little DLink hub. It is old enough that it is firewalled from the internet using physical means.

1
0

Stephen Fry MADNESS: 'New domain names GENERATE NEW IP NUMBERS'

heyrick
Silver badge

Man passing himself of as being knowledgeable in the field makes fundamental mistake

There, fixed that for you.

15
1

I am NOT a PC repair man. I will NOT get your iPad working

heyrick
Silver badge
Happy

I don't mind fixing computers for "free"

I'm nice like that. Plus most of the ex-pats around here prefer somebody that speaks the same language.

But there is a catch. I do a paid full time job. This claims rather a lot of my life. Accordingly, I value the time that I have left. Specifically to the tune of 85 euros per hour (or part of an hour). Which counts from the moment I leave my house. I also state that I will ask you to sign a form to state that the fault that I was asked to fix has been resolved, and that your computer appears to be functioning correctly. This is to dissuade people from saying "you were the last person to mess with it!", somebody pulled that crap on me and went rather quiet when I ran a little VB app I threw together ages ago that prints out every file created after a given date. Oh look, your little tyke has been installing random crap on your machine and you are trying to pass it off as MY fault to get free support? Nope, not falling for that line again.

So. There's the deal. Eighty five hourly, with a signed form at the end.

I seem to be somewhat less in demand now. Oh well, I guess Bob's cousin's uncle's friend will have to do it instead. Can't say it bothers me much. I can waste my time writing messages on forums instead.

3
0

Euro judges: Copyright has NOT changed, you WON'T get sued for browsing the web

heyrick
Silver badge

Re: OMG Mirrors!

@ frank ly: don't worry, the bear will use it to wipe with...

0
0

Linux users at risk as ANOTHER critical GnuTLS bug found

heyrick
Silver badge

Re: How severe is this bug?

True, I rather suspect IE6 was simply a pile of interacting bugs that sort of approximated a browser. Thing is, though, that Internet Explorer is not critical to the functioning of the internet, and while I have not seen every router ever made, I've seen enough that do not run anything Windows.

As for the zero days being fixed quickly - this is good to know but it is only useful for those of you with desktop machines and server class machines. Who is going to patch flaws in Liveboxes and Home Hubs? Who is going to issue firmware updates for WiFi bridges and all these little gadgets that are basically an ARM or MIPS-like SoC with a small Linux on FlashROM?

2
0
heyrick
Silver badge

Re: How severe is this bug?

So what you are saying is that "Linux is free and if parts of it suck, too bad, go fix it yourself"?

Given these systems are deployed in what may be some fundamentally important parts of the Internet (hands up if your ADSL box/router isn't running some hack-job mashing up a cut-down Debian with Busybox), do you think that it is unreasonable to expect that the security side of things be a little higher standard than "too bad, it's free, what do you expect?".

Oh, and as for the "fix it yourself" comments. Grow up. The number of people that can fiddle with a piece of code to fix a bug or two? Many. The number of people who understand said code well enough to fix an issue without subtly breaking a dozen other things? Considerably fewer. This is, of course, assuming that somebody with sufficient experience is willing to audit these changes before committing them, because if not...well, wouldn't that just be the mother of all nightmares.

2
1