* Posts by Velv

1616 posts • joined 21 Jan 2010

Company in shambles, marriages ruined. My work here is done, says Ashley Madison CEO

Velv
Silver badge
Holmes

Conspiracy Theory...

Avid Media was originally formulated as a concept by a secret group of religious crusaders who had an idea to gather the details of cheaters so they could later release the damming material on the world and thus promote the fidelity of their religion while otherwise demonising the hedonistic heathens and exposing them to suicide, murder and social breakdown.

0
0

Drum roll, please .... Results are in for the collective noun for security vulns

Velv
Silver badge
Trollface

Ironic that so many votes were for "Windows" when the vast majority of recent vulnerabilities relate to open source software and operating systems (it even mentions in the article that the Android crop was the inspiration)

2
0

Another chance to win a 6TB Western Digital Black hard drive

Velv
Silver badge

"Kat was surprised by just how life-like the new tattoo looked"

0
0

Google makes it official: Chrome will freeze Flash ads on sight from Sept 1

Velv
Silver badge
Childcatcher

OK, I know it pays for everything and I'm the customer being sold, but can we just turn off advertising.

Realistically advertisers PLEASE stop auto-playing adverts. If I'm browsing the web and everyone in the office turns to look at me because of your blaring advert then you've just lost a potential customer irrespective of what you're punting.

13
1

FBI collars exec who allegedly tried to nick secrets of game fronted by babe Kate Upton

Velv
Silver badge
Paris Hilton

Kate Upton Peter Cottontail

0
0

C For Hell – Day Two: Outage misery continues for furious C4L customers

Velv
Silver badge
Coffee/keyboard

Come on El Reg, you just trot out these articles about service outages so you can slip in the Total Inability To Support Usual Performance (TITSUP) line, don't you?

2
0

'Web brothel' CEO, staff cuffed on prostitution rap – clue: the website is called Rentboy.com

Velv
Silver badge
Paris Hilton

Re: Iron Man

Agent Maria Hill can give me a ticket anytime :p

0
0

Tens of thousands of Popcorn Time movie streamers menaced by anti-piracy fleet

Velv
Silver badge
Go

Re: The proper penalty for watching a downloaded movie

There are services out there that provide a buy to watch facility on a per item basis. They aren't good value.

Pay what you think is fair? Sadly doesn't work as most people just don't bother to pay. Perhaps you should get the first 90% of a film free then need to pay if you want to see the end?

There's got to be a sustainable model out there somewhere, it's just finding it an embracing it...

0
0

BYOD? More like CYOD as companies still set the parameters

Velv
Silver badge
Boffin

"What's next, buy your own chair, buy your own computer,"

Or "work from home" as it's now known

2
0

'Hans free' mobe gag crowned Fringe's funniest

Velv
Silver badge
Headmaster

"You know, of all the things people say they'd take with them on Desert Island Discs, I've never heard anyone say they'd take a record player."

Charles Kennedy

3
0

C For Hell: Data centre meltdown for irate customers as C4L GOES TITSUP

Velv
Silver badge
Facepalm

He who laughs last...

I love the schadenfreude comments idiots make about cloud providers.

For every cloud outage that makes the media there are hundreds of minions running round in-house data centres recovering their business right now that never make the media.

Stuff breaks. Once you accept that fact, you plan how you will work around those times. Doesn't matter if it's in-house, outsourced, hybrid or distributed, plan for it to break, and test it

11
4

Get whimsical and win a Western Digital Black 6TB hard drive

Velv
Silver badge

"I remember back in 2001 these things were huge monolithic slabs"

0
0

Second Ashley Madison dump prompts more inside-job speculation

Velv
Silver badge
Boffin

Re: What theft?

While the letter of the law may originally have had theft written as "depriving someone of their property", you'll find that the spirit and case of the law now more than covers removing something you are not entitled to have.

4
4

PINs easily pinched with iPhone-attached thermal imaging kit

Velv
Silver badge
Boffin

So the simple solution is to touch more keys than you need, actually pressing only those that need pressed, but heating all of them. Increases the combinations any attackerxwould need to test.

4
0

Oi, Google! Remove links to that removed story, yells forceful ICO

Velv
Silver badge
Holmes

If something is on public record then it should be searchable. Just because the Internet makes that search easier doesn't stop the fact from being a fact, no matter how old it is.

Instead of removing results from a search, perhaps search engines should be required to highlight the age of articles, including a warning: "this article is more than 10 years old and the information may be out of date" (or such time as is appropriate, and yes, I know Google puts a date on the results already, but not everyone notices it).

If there really is to be "a right to be forgotten", then that right should permit the person to remove the original information, not filter search results.

7
1

Biz that OK'd Edward Snowden for security clearance is fined $30m for obvious reasons

Velv
Silver badge

Re: So...

They are being fined for not completing the task they were asked to complete. It's not that they couldnt precog the later actions of screened people, it's that they did not complete the screening in the first place.

1
0

YouTube bloggers told to slap 'advert' stickers on their vid posts

Velv
Silver badge

You may not have received any money, but how many cases of Sainsbury's Quadruple Belgian Chocolate All Butter Cookies have you received?

Devil's in the detail!

0
0

Ashley Madison keeps calm, carries on after hackers expose lives of millions of its users

Velv
Silver badge
Pirate

Given the hackers are against the aims of the site, the data was always going to be released even if the websites were shut down. Or does someone out there think there are honest criminals who stick to their word?

4
1

Who should be responsible for IT security?

Velv
Silver badge
Terminator

It's not just cybersecurity that's being missed. It's security. So many businesses don't give a second thought to the threats the world now presents.

Most businesses you can walk into with nothing but a receptionist to stop you. What about the back door where all the smokers go? The loading bay?

Are employees wearing staff badges? Do you know everyone personally, or are there strangers walking around your office unaccompanied and unchallenged?

I could go on, there are so many more security threats.

Educating the Board about security risks is more than just IT. They need to sign up to reviewing all threats to the business. Cascade that down through the staff and you build a resilient business.

3
0

Dixons Carphone still has 7.5k Windows XP EPOS systems

Velv
Silver badge
Boffin

Re: PCI DSS

Without doing a formal PCI DSS assessment you cannot say they are not compliant.

PCI DSS is a framework, with nothing in the guide preventing you from using XP as long as you have the appropriate controls in place.

2
1

Donald Trump dumps on Facebook's Mark Zuckerberg

Velv
Silver badge
Coat

Re: "...details a plan to build a wall between the United States and Mexico."

A poll was taken of construction workers in Texas to ask if they thought there were to many Mexican colleagues on their site. 48% replied "yes", 52% replied "no hablo ingles"

16
1

Take redundancy if you want, Capita IS for turning now, after all

Velv
Silver badge

Won't all the Customer (non) Service move to India when Three takes control anyway?

0
0

Assange™ is 'upset' that he WON'T be prosecuted for rape, giggles lawyer

Velv
Silver badge
Mushroom

"wants to clear his name"

Asshole(™) wants to clear his name under his own terms. Great idea, lets just wipe out 1,000 years of proven justice process and skip straight to the point were the defendant runs the trial. What could possibly go wrong.

Want to clear your name? GO TO COURT. Let due process prove you're innocent.

And before someone jumps in "he'll be extradited from Sweden", he stands more chance of being extradited from the UK (when they get hold of him). And he better pray Hillary follows Obama, otherwise Jeb Bush is going to issue an extradition warrant to Ecuador. And then where will he go...

17
13

Monster Scalextric Formula 1 circuit to go under the hammer

Velv
Silver badge
Headmaster

9m x 9m, and that's just the track. Need to leave space around the outside to get to the cars that have come off. It's in the Telegraph article.

I know Martin isn't the tallest chap in the world but even I can tell this is bigger than 9ft x 9ft!!!

3
0

Dropbox adds USB two factor authentication for paranoid Chrome users

Velv
Silver badge
Boffin

Re: If you are carrying an USB key for authentication.

...

because a big USB key is, err, BIG

because you can't always plug in storage (computer policy or paper policy), but the Yubikey isn't storage

because Yubikey can mark computers as trusted after the first authentication so you don't need to plug it in say at home or the office (yes, this does present an open vector of attack, but not the same risk as allowing unverified non-2FA access from any computer)

because USB key's can break (you did back it up to Dropbox, didn't you??? oh wait, then why not just access your Dropbox)

2FA is a good thing. There are varying degrees of quality of implementation, but more thin layers of security are better than one big layer.

0
0

Exploding Power Bars: EE couldn't even get the CE safety mark right

Velv
Silver badge
Boffin

"By placing the CE marking on a product a manufacturer is declaring, on his sole responsibility, conformity with all of the legal requirements to achieve CE marking."

"If you are a manufacturer it is your responsibility to:

o carry out the conformity assessment

o set up the technical file

o issue the EC Declaration of Conformity (DoC)

o place CE marking on a product"

In other words it is entirely up to the manufacturer to determine that they meet the requirements and can then declare so. And we've never seen anybody falsely declare anything now, have we,,,

13
0

Apple and Google are KILLING KIDS with encryption, whine lawyers

Velv
Silver badge
Big Brother

While we're at it, we need to ban knives. And I'm not just talking big nasty hunting knives and machetes. Pocket knives, key ring knives, kitchen knives, table knives, scalpels, plastic knives and vaguely shaped items with a thin edge.

Why?

Because a tiny proportion of these items are used in crimes. People get cut and slashed. Kids are in danger. Only by banning ALL sharp objects will we remove the terrible overhead from the police of investigating these crimes and make the public safe.

4
0

Repeatedly robocalling? That's a paddlin' – a record $3m paddlin'

Velv
Silver badge
Boffin

Re: It's a wonderful world we live in...

20 years ago a Marketing exec was telling me about her bold mailing campaign, and how a 2% return would be a good result.

Not defending it, but I suspect that with the costs now so much less (no stamps, no printing) the return expected is orders of magnitude smaller to still get a "successful" campaign.

0
0
Velv
Silver badge
Boffin

Re: outdated rule

The fixed line number is a termination point as far as the law is concerned, and where you route calls beyond that is your problem

1
0

Want to avoid a hangover? DRINK MORE, say boffins

Velv
Silver badge
Pint

Being Pears, can you make Perry out of it? (Pear Cider for those who youfs out there).

Best of both worlds :)

5
0

Contractors who used Employee Beneficiary Trusts are in HMRC's sights

Velv
Silver badge

Re: Clarfication

If you have letters from HMRC confirming you were "legal" then you have nothing to worry about. Go to court and you will win. The laws cannot change retrospecitvely, and the courts cannot expect you to cover HMRCs mistake if they've made one, If.

0
1
Velv
Silver badge
Boffin

The law has not been changed. Like all laws the words rarely cover every eventuality (Rumsfelds "unknown unknowns"), so what happens is the words are reviewed by the courts and an interpretation given. These "schemes" are playing on technicalities in the wording and relying on the interpretation being avoidance and not evasion. They lost. As it says in the article, the employee was "technically" employed by the foreign company

2
0
Velv
Silver badge

Re: Pay your tax like everyone else

Further to Evil Graham, if anything has the word "scheme" in the title, probably time to walk away!

Not just tax, anything.

"Scheme"

goodbye

2
0
Velv
Silver badge
Boffin

Re: Pay your tax like everyone else

@TheAxe

Contractors do have a guaranteed job, they are employed by their own company. And it's very clear from the operation of these EBTs that the contractor was an employee of the foreign based company.

What Contractors might be lacking is fee earning opportunities, that's why they charge the rates they do, to cover the slack and provide the pension as well as salary. So if the Contractor can't structure their business to cover the lean times and insist on stripping every penny and cent from the company while evading tax then that's just bad business and bad financial management. Stripping money from the company, even one you own, potentially leaving it unable to meet its financial obligations is fraud. Try getting your next contract with that conviction behind you.

5
4

How to quietly slurp sensitive data wirelessly from an air-gapped PC

Velv
Silver badge
Boffin

If something is so secure it needs to be air gapped then generally it should probably be in a Faraday cage too.

Electromagnetic emissions have been known to be a problem since not long after they were discovered.

5
0

Your voter-trolling autodialer is illegal: The cringey moment the FCC spanks a congresscritter

Velv
Silver badge
Headmaster

"some political groups have expressed concern that the laws could hamper their ability to run campaigns"

Since when have politicians worried about the legality of any action they want to take

7
0

Amazon comes up with delivery-drone zones after watching Fifth Element all night

Velv
Silver badge
Thumb Up

Maybe Amazon need to work closer with Uber and we can haver Corbin Dallas in a taxi too...

3
0

Bug hunter reveals Apple iTunes, Mac app store receipt deceit

Velv
Silver badge
Devil

Don't worry, it'll be fixed in the next OS release which will be available shortly to buy from the App Store...

0
3

Neat but narky at times: Pebble Time colour e-paper watch

Velv
Silver badge
Mushroom

"Why would anyone want...", "I don't see the point of...", "that's a lot of money for..."

Who would ever want a phone you could take with you, you've got a phone in your house and your work, and there's pay phones if you need to make an urgent call. 25 years on and almost everyone has not only a mobile phone but a mobile computer in their pocket. "Why would anyone want a computer in their home" (Ken Olsen, founder of Digital Equipment Corporation, 1977)

3
0

NASA: 'Closest thing yet to ANOTHER EARTH' - FOUND

Velv
Silver badge
Boffin

Re: We don't even understand all of what we need to know

You're right. Talk of another "Earth" is rubbish. We don't know how long the list is to make another "Earth"

But we are finding evidence of planets that more and more match the criteria we know we require. They may be beyond our physical reach, but they are physically there.

And that just reaffirms my understanding of science being right and religion being bunkus.

11
1

Contactless card fraud? Easy. All you need is an off-the-shelf scanner

Velv
Silver badge

Re: Who's laughing now???

While I upvote your RFID wallet, the key thing here is not the stealing of the card number, but the fact that merchants are accepting orders without checking the details. Why bother even stealing card numbers if the merchant isn't validating the address and CVV. Just make numbers up (there's a formula) and put the orders through, some will fail but I'm betting some will succeed.

Security works best when it's multi-layered. An RFID wallet is one good layer, but an RFID wallet is just as easily pick-pocketed as a standard wallet, so that's where all other protective measures come in to play. The big issue comes when Banks refuse to acknowledge fraud is possible at all stages.

21
1

Universal Pictures finds pirated Jurassic World on own localhost, fires off a DMCA takedown

Velv
Silver badge
Boffin

Doesn't even need to be malware, they may be aware of a new tool that does background routing to prevent ISPs from blocking downloads.

Directing traffic to localhost:4001 means a service is running and listening. User google searches for required download, google returns link to 127.0.0.1:4001 and when clicked user can reach download site by VPN bypassing any ISP restrictions or take-downs of public servers.

2
0

The French want to BAN .doc and .xls files from Le Gouvernement

Velv
Silver badge
Boffin

Re: What's up DOC?

"using non-proprietary open formats guarantees you can still read these documents decades from now"

No it doesn't, An Open format no more "guarantees" anything will open these documents decades in the future than a proprietary one. There is as much risk of an open format being deprecated in a future release, and while there are Internet archives, if you want to guarantee reading a document at some point in the future YOU need to retain an archive of all the required tools and applications along with the documents.

Alternatively if in decades time you find you need to read an ancient document then at some point in history there will have been a published standard against which you can get someone to write you a program to read the documents. Assuming you've retained a copy of the open standard.

1
4
Velv
Silver badge
Childcatcher

Re: What's up DOC?

Ah, OK, I'm with you. We're going to save money by using Open Source, then still pay millions per year for Microsoft Licenses for Word, Excel, PowerPoint, Outlook, OneNote, Access, Visio, Project, etc.

Good one, that'll save lots of money.

If you're going to deploy free tools, you're going to need to re-train staff. Trust me, I've been through that loop. If its not "MS Office" the noise from the business is horrendous. Even when you point out that "Cut" and "Paste" do the same thing, they still don't get it. The trouble with Common Sense is that its just not that common.

2
5

Dough! Dominos didn't register dominos.pizza – and now it's pizz'd off

Velv
Silver badge
Paris Hilton

Cockup over Conspiracy...

...or simply just not being aware of tld's.

Nobody tells you what new tld's are available, you've got to go and look. And you've got to be aware that new tld's are being made available, something the vast majority of non-techies will be entirely unaware of.

OK, so you would hope an international business of this size would have at least one person who was aware. But if IT don't warn Marketing, who actually "markets" the online presence.

This wasn't the first and it certainly won't be the last

(Paris? who's applied for .hilton)

0
0

Google dumps ISP email support. Virgin Media takes ball, stomps home

Velv
Silver badge

Re: Hold on...passwords remain the same?

"You don't think they could use the same hash algorithm and arrange for Google to transfer the hash/salt values as part of the migration?"

They could.

They don't.

See above.

And since Virgin manage the password before its forwarded to gmail, they already have a copy to authenticate against on their new service, so of course it's not going to change.

0
0
Velv
Silver badge
FAIL

Re: Hold on...passwords remain the same?

This has been posted upon many times, yes, Virgin Media store your password in such a way that it can be supplied in normal form (I don't know if they store it "encrypted", but I have written proof they can decrypt and send it in a letter, so it's definitely not hashed).

2
0
Velv
Silver badge

Re: who cares

An email service actually consists of two components:

o An address at which people can contact you; and

o infrastructure to move messages around and hold them, store and forward, that's how a (e)mail service works.

I maintain my own domain name, so my email address never changes. But I don't want to set up mail servers to do the infrastructure piece, so I've got to "buy" that service from somebody. Might as well be my ISP in my monthly subscription.

8
0

Are you a Tory-voting IT contractor? Congrats! Osborne is hiking your taxes

Velv
Silver badge
Flame

" they do not receive company benefits such as pensions and employment benefits including the right to redundancy payments."

I'm a contractor and it really pisses me off when people trot out this type of statement.

You are an employee of your own company and that company provides your full package, salary, pension, redundancy cover, critical illness, medical, car, etc, etc, etc. That's one of the reason you get paid the day rate you do, because the rate covers more than just an hourly pay rate. If the company director chooses not to provided those benefits then punch them in the mouth.

As the article points out, you'll still be better off than your equivalent typically permie, and even on the lowly £43,000 starting point they quote you're still in the top 20% of earners in the UK.

I don't want to pay more tax. But I recognise how well off I am and I need to contribute to the greater good. Roll on the down votes.

37
2

WHOA! Windows 10 to be sold on USB drives – what a time to be alive

Velv
Silver badge

I think Windows 95 was the last time I got official media from Microsoft. Since then it's been downloads and you prepare your own install media.

0
1

Forums