Re: What about the other browsers?
They probably will, if these allegations are proven.
310 posts • joined 22 Mar 2010
They probably will, if these allegations are proven.
And the startcom certs, since they're essentially the same company.
That's likely to have a bigger impact.
The problem is bank's ludicrously bad 'fraud detection' requires you to answer the phone otherwise they block all your cards because you apparently buying the same things you do every month is somehow suspicious.
You get a call from mumbai from someone with an accent so thick you can barely work out who they're from, demanding private information for 'security' and if you fail to answer correctly good luck spending any money for a whille.
It's a real concern. Banks should be hauled over the coals for it, as it not only encourages - even requires - behaviour that makes you vulnerable to fraud, they don't offer any alternatives - A simple text saying 'call the number on the back of your card' would suffice, but nope..
Why would it become a route for any network traffic? The OS shouldn't be changing its default route on a whim because something answered ping faster (maybe windows does, but I'm sure even MS aren't that stupid, surely?).
The 980 is listed as an option for that machine..
Or, maybe it works just fine and the article is bollocks?
I have a friend who has been forced to use a fake name because of this policy.
The name that everyone else knows him by was unacceptable to facebook because it isn't on his birth certificate, so he made up an obvious bullshit fake name and apparently that's fine...
Yeah I don't really know how you enforce WAN access only... The windows device has the password. This must be reversible to work, so it's only a matter of time (hours, days) before you can download a tool that tells you the password which bypasses the restriction.
Also, how do you restrict.. I can't see it being particularly troublesome to bypass that. Once you're on the network you have access to that network - simple software blocks (under the control of the attacker, no less) simply won't work. You could simply dump all the now unencrypted traffic straight off the wifi interface & get loads of information.
Basically the password is tied to the BSSID. You have 100 friends, all the networks that they connect to will be stored on your computer somewhere with reversible passwords.
That's quite a lot of passwords.. and I reckon it'll be about a day before you can download a tool to print out all those passwords (and malware starts dumping it across the internet).
Problem is.. can you be certain that everyone who visits your house has it turned off? your kids' friends?
I'm hoping there's some network based countermeasure that can be put in place to block devices with it enabled, or at least block devices using it (those that have not legitimately been given the password).
At home I found freeradius an absolute pig, but the LDAP I have using FreeIPA which does the trick for home.
Most of my devices don't allow WPA Enterprise though... not even the xbox one which is fairly recent. Or chromecasts.. so I still need a password based network for those. I'll have to invest in other countermeasures to defeat wifisense.
MAC filtering is a waste of time against attackers.
Against random windows 10 boxes connecting to your network because microsoft have given away all your passwords, it's quite effective.
I would really hope that it didn't apply to WPA Enterprise, otherwise it'll be sharing windows login details all over the place.
In small companies it's not uncommon to use a single password (smaller companies rarely have the requisite radius server setup or the experience to run one).
At home of course, it's all passwords. That said, from what they're saying you can detect wifisense users - it's saying they can't access local resources somehow.. in which case you can configure a network to break access for such users (for example redirect the first request outgoing to a local portal... if they don't click OK on that - which wifisense users won't be able to do - then no access).
Self Signed plus DNSSEC plus a signature in DNS is enough to verify that the site is what it claims to be at least as far as DNS goes (which is good enough for 99% of cases.. it flags MITM and government/corporate snooping which is what we're interested in).. DANE solves the same problem.
No browser manufacturer has shown any interest in implementing anything like it - it does make me wonder if the CAs are pushing brown envelopes in their direction sometimes.
That said, who cares if HTTP is 'insecure'. My home page with pictures of random stuff on it? Who give a stuff if someone can read that on the wire?
The TPS is simply not enforced.. it even says when you report a violation (or said, about a year ago before I gave up on it) that individual reports are only aggregated.
In fact, a quick google shows it's worse.. http://www.bbc.co.uk/news/business-22833965
You're *more* likely to be called if you're on the TPS, because the 'direct marketing association' just sent out a big list with your number on it..
If they MITM SSL you just wrap SSL in SSL.. they still only see encrypted traffic.
Not that it'd happen - ecommerce and banking, and therefore a large part of the economy, relies on secure financial transaciions.
It does seem that way.
A couple of years back I had the chance of the Hilton for one price on special offer and a 'cheaper' hotel for the same price. I took the Hilton offer.
They then proceeded to charge for *everything*. Parking.. (first time I've *ever* had to pay extra for parking at a hotel), breakfast, even though the offer said 'included', wifi was a stupid price, 1 channel of TV and everything else extra, the bar and restaurant were eyewateringly expensive, etc.
I've never been back. Nowadays I always look for the place with reasonable wifi first and avoid the 'well known' brands.
Some of them already are - I've been in a few hotels where the mobile signal mysteriously dropped to 0 the moment you walked in the door.
Wow.. wifi in wards? The local one goes apeshit if they even see a mobile phone switched on on the wards, or any electrical device.. you'll be ejected if you don't switch it off immediately - that that's not on the critical wards either.
The only internet access is through their overpriced and shitty 'patient line' (which thankfully was completely broken when my wife was last in hospital, as it was £30 a day and that mounts up over a couple of weeks).
I've quietly scanned a few times and there's no 2.4ghz or 5ghz anywhere even in outpatients, or at least nothing obvious.. they could be using a proprietary protocol of course.
Indeed I actually had this happen last week. I had a USB->Serial I'd been using in linux, and for a specific application needed to plug it into windows. Instant brick. Windows wouldn't even enumerate it, and neither would linux afterwards.
I'm fairly technical but I hadn't heard of this 'feature' of the FTDI driver at that point and nothing I could do could poke it back into life, so it went in the bin. It was, as far as I can tell, a 100% genuine cable (bought from an established site, not ebay) so it was a false positive too.
In future I'll ask what chipset is used and stick to PL2303, as they've never failed on me.
1. AOSP has not been killed off, and I've never heard anyone suggest that it would be. They're talking about the AOSP *browser* which has been replaced by Chrome.
2. 4.2.1 is not 75% of phones. The entire 4.2.x series is only 20%, and 4.2.2 would be the majority of that - and 4.2.2 was released 18 months ago. Note the CVE relates specifically to 4.2.1. You can't even get close to 75% by adding all the previous versions together (which would be bogus anyway unless you could prove it existed right back to froyo/gingerbread).
So bug exists in a small % of old phones. Other than saying 'time to upgrade' what are people expected to do?
It's mostly press exaggeration... gets hits. The only place I haven't been able to get HSDPA is in the middle of wales, and apparently that was just O2 being shit (three have better coverage there).
In villages like the one I'm currently sat in there's nowhere that doesn't get plenty of signal.
OTOH one of the reasons to use free wifi is it doesn't come off your allowance - I pay £2/mo plus data, but that data is quite pricey, so free wifi is a net win.
The local greggs has free wifi and continental style outside tables. They're the ideal breakfast/lunch destination.
DNSSEC + DANE does seem the best route, but DNSSEC rollout is basically nonexistant (none of the major banks even use it), and DANE isn't supported by any browser - it was added to Chrome then pulled.. they cynic in me says verisign is pushing out a lot of brown envelopes to keep it that way.
Spreading the packets across multiple exit points means that no one person has transmitted anything illegal, however I wouldn't put it past someone to define 1% of a CP image as equal to the entire image and lock everyone up..
Basically the authorities don't want TOR around, so they'll use any method to kill it. VPNs will be next, if they can find a way of legally distinguishing between business and private ones.
Example of an LG TV with spying enabled and no option to switch it off:
Maybe they 'fixed' the buggy option by removing it completely...
Install StartIsBack (if Start8 if that's more your style). Banishes TIFKAM to a distant memory (although you can still invoke it if you really want to).
Win8 without the metro bloat is a pretty competent upgrade to Win7.
If you start at entry level support you're a receptionist. The reason the bar to entry is so low is you're not expected to know any IT and you won't have any chance to learn any either.
Agreed with much of the above - if the reason you want to get into IT is for the pay etc. then you've picked the wrong career. That ship has sailed.. I earn only 60% of what I did 5 years ago and my job is harder. And that's normal. The days of 20%+ annual pay rises are long gone.
OTOH if you're doing it because you like working with computers then it may be worth doing, but start at entry level programming not support... and you're going to have to get whatever qualifications are 'trendy' at the moment to get your foot in the door* (haven't heard of any of the ones mentioned above.. when I did it it was HND at a minimum), then be treated like shit for at least 5 years before you have the experience to work your way up the ladder. That much hasn't changed.
* The qualifications won't actually tell you anything - if you've got any interest in computing at all you already know everything (and more, probably) they're likely to teach - but without them your CV will be straight in the bin.
** Thinking about it, we have no formal qualification - it's all experience, and we don't read CVs until late in the recruitment process, if at all.. but as a small company we can get away with that. Larger companies often use recruitment companies - who basically strip your CV for keywords then match with requirements and send everyone to interview who appears to match. Hence having a CV with lots of relevant qualifications/buzzwords on it is essential.
And all the 'under construction' gifs.
Then there's the ultimate horror.. the marquee tag.
If I wanted spelling that bad I'd read the daily mail!
..and if you're in a shopping centre you have no choice on those specifications anyway.
The local apple store is barely a cupboard - I bet they don't meet their own standards!
"Method and System for Supplying Products from Pre-Stored Digital Data in Response to Demands Transmitted via Computer Network"
FTP predates that by some years
UUCP even further
How in *hell* did they get a patent on that.
"The worst gesture might be the one to reveal the list of currently running applications: you need to first swipe from the screen's left edge, and then immediately reverse direction and do a small swipe the other way, and finally make a 90-degree turn to move your finger to a thumbnail of the desired application. The slightest mistake in any of these steps gives you a different result,"
How in hell did anyone even discover how to do that in the first place?
"The BBC offers a perfectly workable HTML5 system based on Web standards. The Air stuff is *only* for people who want to download the programme to their machine for later viewing."
The BBC only support HTML5 on apple devices. And it's a non-standard HTML5 too as if you change your user agent to pretend to be an ipad it doesn't work.
Had this happen to SWMBO's Macbook Pro. Just a few drops of liquid FUBAR'd the keyboard completely - even unrelated keys.. it seems the way they're wired means one failure takes the others out too.
Since it was out of guarantee the apple store didn't want to know - the old 'it would cost more than a new laptop to repair this' line. Her new one (an MSI) has nice chunky keys that look like they'll survive better. It also cost half as much, which is a bonus.
Three has HSPA+ in a lot of places which caps at 21Mbps (although I believe a variant is capable of double that).
Since the BBC were quoting vodafone as saying 'speeds of between 8 to 12Mbps' for 4G I think Three should definately be shouting their specs from the rooftops.
Windows 8 on tablets - which is what this article is about - is 100% dependent on the new store. The only thing it shares with Windows 7 is a similarity in name.
With technical people getting this wrong the average uneducated user is going to have no chance.. Lots of returned tablets.
It's not a 'full blown OS' if you mean what I think you mean. This is the ARM version. It runs WinRT only, which is just Windows Phone on a tablet.
You want the intel version.
You may have a point.. they had it at a show I went to at the weekend.. It didn't look any different to anything else of that ilk to me (those that were playing it didn't even appear to have a learning curve, which could be counted as a good thing depending on how you look at it).
Graphics were pretty though, and I'm sure it'll sell by the truckload & be a big hit .
VOIP still requires setup - it might be built into most phones now but you still have to enter stuff.. OTOH a normal voice call doesn't require any setup at all.
I'm a fan of VOIP - it lets me have a 'vanity' phone number and I don't even care any more what the number on my SIM even is (so I could change mobile providers tomorrow without any downtime).. but it's not mainstream yet.
I'm the opposite.. I hate having to touch things on the transformer. Android is designed around touch, so some things are just clunky on the keyboard.. but that context switch bugs me.
On a full PC it'd be worse - a TF is a small thing, sits on your lap, so you're not moving your hand much. My main monitor is about a foot away.. if I had to keep stretching my hand to touch it I'd get tired fast - never mind 8 hours of it..
Only on 18 and 24 month plans though.. not SIM only, and since their data allowance is only 250MB a month (for this they want 20 quid!!!) you really need the free streaming otherwise it'd be a bit useless.
The frustrating thing about Orange is they have plans that are *almost* good, but their data plans are aimed at old fashioned phones.
I expect in the context, they mean a BT MSO which is a major service outage.
Another fun one is MBORC (matters beyond our reasonable control) - this is a get out of jail free card for BT, hence after any inclement weather they immediately declare it across the entire country.
It's not talking about NFC just google wallet, which works (more or less) everywhere and everyone with a google account has one (if you've ever paid for an app you'll have an active wallet account).
That's a pity, because that's what killed SWTOR for me too - the levelling is nice with a good story then.. nothing to do but daily grind.
I'll see how it pans out, but it seems that every time a new game is released it's claimed to be the MMO that 'gets it right' and a month later everyone says it sucks. WoW gets a pass out of sheer inertia at this point.
No, but it'll make rollout cheaper as they can use each others existing towers to expand coverage rather than building entirely new ones.
It's not really not liking change, it's not knowing what terminals support it, what the staff in the shop would do if you attempted to pay in that manner (they'd probably look at you condescendingly and explain you had to insert the card in the reader - how many minimum wage costa employees even know what NFC even is?).
I'm told Costa does, but i don't go there because their sandwiches are shite. Never seen the symbol anywhere else... The local pub definately doesn't (their card reader still uses dialup).
The card version isn't actually any quicker - Wave card over terminal/type pin is exactly the same as insert card/type pin. In theory fractions of a second quicker.
Putting the cards on the phone could be a win except (a) the banks etc. can't agree on a standard that actually allows you to do it because they all want a cut, and (b) it means if you leave your phone somewhere you've also left all your credit cards.. and I don't trust the security of the average phone as far as I could throw it.
Or the hallway light is on. That's a sure sign of 'I've gone out and left a light on to deter burglars'.
Journalists checking facts? Have you *read* a newspaper in the last 10 years?
They all just reword press releases, and if that doesn't come out sensational enough, pull 'facts' out of their arse.
Unless you're talking about something like fullfact.org, who *are* paid to check facts but they're a blog so not journalists (according to the 'real' journalists).
So.. give cash to the cities where broadband is already good (due to having large populations who can pay for it), not to rural areas where it's non-existent due to it being not cost effective, and needs government subsidy.
How does that make sense?
It's worth what someone would pay for it... Nobody has $1b to spend. They'd also have to do it underhand anyway as under RIPE rules they can't sell it, only relinquish it back to RIPE for $0.
The whole thing's pretty silly. Even if it *was* released back into the pool it pushes back exhaustion about a month. Then you're back to square one except you've spent millions forcing several government departments to restructure for no reason.