Re: In situations like this, I find it useful
hehe - looks like the letters make out to be - Don't Panic - :)
379 posts • joined 15 Oct 2010
hehe - looks like the letters make out to be - Don't Panic - :)
10-20+ years of experience AND fresh certs - the certs mean something, namely you are continually retraining and staying up to date. 2 years and same certs, welcome to junior level ranks, but at least you stand a better chance of getting in the door than 2 years of experience and no certs. Just don't try to pass yourself off as an IT god at that point young padawan. :)
Probably works for Jupiter Mining Corp hoping nobody figures out he's actually "Dennis the Doughnut Boy".
" look at the tie die"
>> Really! Professional shills ought at least to be literate. The correct spelling is "dye".
It might have been "Deutchlish" - then it would translate to "tie the shirt" ? If that is the case, they might have a point. Tied shirts like those worn by Daisy Duke and other backwoods beautys would be unprofessional in the workplace. Not that I've seen a Linux using Daisy Duke in IT yet.... *sigh* hehe
>>just because you don't know about the flaw doesn't mean no-one does.
@Magnus_Pym is quite correct. In the current era of a menagerie of criminal groups, government agencies (globally, pick a country, any country), and others like hacktivist groups, there are a LOT of flaws that are undisclosed, already found and WAITING for the right time to exploit. This isn't the good old days with a solitary kid in his basement hacking away for the lulz of it, its now serious business. Responsible/timely disclosure should be mandatory, because other people probably already know about the vulnerability and are holding the exploit for it in reserve until the "time is right".
"Hipsters don't have ponytails"
Indeed. Current "Hipsters" seem to wear suits and ties. :)
(and no, I'm not sure if I'm joking or not either, but I've been seeing a weird trend starting in my neck of the woods...)
@Jes.e - Yeah, you are frightfully correct. If you LEASE the vehicle, there would be little you could do to stop this sort of thing. Unfortunately - if you think about it, even if you get a bank loan, the Bank could put provisions in there to give a better interest rate if you agree to getting tracked. Or they could be complete asses about it (since its technically their car until you pay it completely off) and make it mandatory... I'm not sure I like where this might be headed... Once businesses see new ways to further monetize current revenue streams, it seems to be hard to stop.
@thames - Well, Digital Ocean has been growing very quickly. I didn't realize it had been growing quickly enough to get on the radar like this though, but at the same time it would not completely surprise me if it passed Azure in the last 6 months. I've got one VM with them. Pretty nice service, my VM runs FAST, and its quite affordable to boot. No complaints on my side.
>"Brand names online can build trust and security."
Say what? Most of the time now, corporations have already outsourced their online marketing presence to Facebook, Twitter, Youtube, etc etc. So people won't be going to .cocacola, they're already going to socialmediaofyourchoice/cocacola, and even that isn't a direct path, mostly due to so many people always googling the company, then going to one of the top links. We're starting to hit a point now where even the .com addresses have substantially less value then they once did just a few years ago. If it was 1997, then all these boutique names might make sense, but I personally don't see the point of adding much more than ".club" for non-prof clubs (and that one is a maybe after 20 years of people just going to .com first, and then .org), and then ".xxx" for well, you know, wink wink and a nudge.
Most average users have no clue whether that link is .com, .org, .co.uk, or .whatever. Worse than that, most average users don't care as they can't be hassled with security. This describes a large chunk of my own family unfortunately who are already ripe for security exploits as a result. Increasing numbers of boutique domains just exasperates the problem.
There is still huge potential gains on Munich's transition. Even *IF* it cost more on this initial transition (and right now a good chunk of this is transition/startup costs like all new ventures), most of the money stayed inside the EU, Germany, and to a lesser degree Munich itself. Thats opposed to Munich, Germany just sending a fat check to Seattle, Washington. There is a fair amount of Munich/German Government money that stayed close by in their own greater economy as it got spent instead of disappearing half a world away never to be seen again. Right now they are in the "sunk cost" initial phase, it gets cheaper from here. Kinda like building a class of ship. The FIRST one is godawful expensive, but successive ships in the same class get less expensive as economy of scale and engineering/process improvements occur.
> Unfortunately, at that point it's probably meaningless to the security git, the bomber git, and all the poor gits in the immediate vicinity.
Sounds like a git push? You know this wouldn't happen on SVN. ;)
> In other words - a cartel cornering the market. Things like that are illegal in every other industry. Why should they be allowed for media rightsholders?
While I agree that its probably of questionable legality in view of various international treaties on trade, WHO is really going to both challenge it and have the proper legal standing in International courts? The Governments who signed the treaties but also did various local bits of legislation that allows region locks? Probably not...
> (guess reading sites such as TechNet and MSDN is really old school ;)).
You got that right. Both have excellent resources available and code snippets out the wazoo. It seems that a good chunk of current batch of 'Softies seem to be experts in "next, next, next, Finish". Unfortunately I've learned that the hard way with Sharepoint "experts" that didn't know anything about IIS and MS SQL. Their initial deployment was installed exactly as stated, and had to be completely demolished and re-done by old timers who knew how to configure old skool crap. The kids had no clue on web server farms and clustered SQL servers... Much of Corp Management is also convinced MS means "next, next, next, Finish", so trying to talk to them about configuration issues as you've mentioned is as productive as talking to a brick wall. What I would get back a lot of the time is "Its installed and working isn't it?" Ugh..
Which gets us into why Macros are still a problem ~20 years after the first attacks... I agree that Code signing is the solution, but invariably Finance will push back because it'll break some legacy spreadsheet from 1997 that the author has left the company 12 years ago, nobody understands how it works, and they're unwilling to even test. (and yes, I've had several very similar scenarios, very frustrating, and a reason why Excel 2003 was still required on a lot of machines rather than actually updating the sheets in question with modern code so as to be able to upgrade Office...)
"... The problem is, it worked by transmitting all data about the subject to the destination, where it was reconstructed, then the original (which was not harmed by the process itself) was normally killed. The aliens saw this as a necessary clean-up operation, the humans ... objected"
That's also the understood premise of the "Star Trek" transporters, which use additional energy to then destroy the original after transport is complete. It would be less costly energy wise to keep both copies, but presumably there would be a population explosion of clones and the writers didn't want to deal with that. One "accident" creating two Rikers is already over the top right??? :) Then based on how the "Trek" transporters operate, how the !@#$ did they have transporter accidents every other episode?
The biggest issue is the computing power and energy required to transmit the quantum state data of an entire being and recreate it on the other side, which is nearly off the scale to start with. Not impossible, but it seems unlikely in our lifetimes. Maybe in the 2100's.
> Has anyone ever encountered a working and productive SharePoint install? Because I never have.
While I'm sure there *MUST* be one that exists based on what consultants that came in to fix the last installation said, what I've actually seen so far would indicate you'd have better luck finding the Loch Ness Monster or Sasquatch. Too many people in the "click next, next, next, finish" crowd handling the design work and installations.
(and no, the consultants didn't fix it per se, although they did get it actually performing better.)
+100. The last company I was hell bent on deploying it, and I was pretty skeptical, particularly as my other sysadmin buddies at other companies were emphatic about NOT deploying it. I sent those reservations upstream but to no avail. I had no personal exposure before that deployment to bring to bear and stop it... Long story short - my exposure to Sharepoint 2010 and 2013 was enough to have me make sure any company I'm working for DOESN'T have Sharepoint. I never want to see that steaming pile ever again. Ironically MS apparently feels the same way by pulling it from o365. :)
@Jim 59 - you didn't miss anything. The vulnerability is limited to users that could already utilize it. With that said, if an application got fired off with that user's rights and then escalated, then we might have a problem. :) As always on servers (regardless of OS), if you are on the physical console (or virtual physical for vm's), you should have a good reason for doing so.
Net takeaway - be sensible in your assigning of sudo rights, and be sensible in how you access your servers. That is nothing new to seasoned sysadmins.
Keep in mind the entire industry is made up of "Frenemies" who are trying to slaughter each other in one arena, and are highly dependent business partners in another.
I highly doubt Samsung's Chip division will price it any higher (or lower) than normal for chips manufactured with a reasonably rare advanced fab process based on whatever volumes are negotiated in the contracts. Gotta recover costs for the fab, and there just aren't very many 14nm fabs on the planet.
>I fail to see how MicroSoft can ever get back on their 90s/00s track ever again.
based on Nadella's moves so far- he's killing the old MS, and initiating a new post Windows one. Heaven knows if it'll get them back to previous glories, but if nothing else, it'll keep MS in the game versus getting pushed out entirely. I agree that its unlikely they will ever have that level of dominance again.
Ongoing revenue stream is indeed what its all about. Subscription revenues from the cloud man! Lets face it, so far it is generating some impressive new revenue for them.
I could be wrong, but I'm suspecting that with Nadella's current cloudy focus areas - Windows 10 will be the LAST true Windows desktop OS. (building an OS from scratch is an expensive, time/profit consuming, and thankless business.) With Nadella at the helm, if there is another Windows release after 10, I fully expect them to follow Apple's example and outsource the underpinnings to BSD Unix for some serious cost savings (ie reduced staffing), and then just be responsible for the GUI, API's and MS Services (like AD and Exchange) where the easy profits are, and where their core competencies (1) are.
1)--ok after Win8, count GUI as a *former* core competency. :)
>For the corporate user, this saves licensing costs, which can be really, really absurd, and their whole licensing can be really, really confusing.
Agreed. For the enterprises (large and small) there are some serious savings if you can eliminate at least *some* of the software assurance crap for craptons of desktops and servers and all the supporting costs of running/managing them and the underlying hardware.
In looking at this, it looks like part of Nadella's continued positioning for MS to survive (and possibly thrive) in a post "Windows Desktop" world that now appears imminent.
o365 isn't actually cloud in the conventional sense of a flexible cloud app. Its a relatively standard hosted email solution tied to specific DataCenters (that from experience with o365 - can and do go down and don't get spun up automagically at another DataCenter). That was something the Microsoft Azure reps were quick to clarify that in a meeting to my then VP as he spouted something about having "email in the cloud".
Backing it up like this actually does have some appeal to me, in that properly done, it could ease a o365 to on premise migration, or maybe migration to other provider.
Yeah, App Store was and is too generic. "Apple AppStore" would be much easier to legitimately defend, similar to Microsoft Windows. (ala Windows by itself isn't defensible.) If wanting a single word, App$tore would work. or @ppStore, or perhaps AppStor3? I'd think a company of "think different" would come up with something really creative there. :) Lets face it, App had already been in widespread usage because who wants to type "Application" in an email? I always shortened it to app, and that was in the days of Compuserve.
>> Still waiting for it to open docx files without completely messing the layout...
>I use LibreOffice a lot and it hasn't messed up any docx files. Can't say the same about MS Word, of course.
The last part is something that's an open secret. Since Office 2007 came out, I've noticed I have to open some Word 2003 (and below) docs in LibreOffice and then re-save them for Microsoft Word to be able to read them. Libre can read them and apparently fix the formatting in a way that newer versions of Word to process.
For long complex docs like product documentation, LibreOffice is my hands down go to tool and has been since the mid 2000's (when it was OpenOffice) after I had Word (usually when doing final revisions an hour before a release) screw my document formatting up one too many times.
The female Time Lord wasn't the Rani? Seems like most of the dialogue and character manner was more befitting the Rani than the Master, so I have to wonder if that wasn't a last minute change?
pyite "Finding Linux admins willing to take a pay cut to match Windows admin salaries is the hard part."
Hence why I jumped ship on MS since I was both Windows and Linux. Linux pays better, and generally requires less employees to maintain. Fewer higher paid employees is better than many slightly less paid ones.
Well, one of the WinNT features from the early days is the POSIX and OS2 subsystems (the latter being removed finally). The mechanism is already there. MS could add a full on Linux subsystem to run existing Dockers. That might save Windows Server as an OS in the cloud era.
Disclaimer - I'm really not a fan of the above as I think its sub-optimal, just mentioning it is possible.
"I wonder if Microsoft CEOs are hand-picked to have foot-in-mouth disease?"
I think you'll find the corner office's bathroom medicine cabinet has been stocked with an anti-fungal mouthwash for some time now.
Other significant quotes:
" "He didn't know how to let me be CEO, and I didn't know how to do it," Ballmer said "
" "The worst work I did was from 2001 to 2004," he told the magazine."
The former marketing drone knew he wasn't cut out for the top position in what was then an engineering company almost immediately and soldiered on anyway. Kinda turns him into a more tragic character who really struggled. A guy that wouldn't leave his post because he was eiither too proud, not smart enough or both, and then made a LOT of bad decisions because he lacked the technical chops of his predessor and his successor. This partly explains the angry outbursts, chair throwing and losing a good chunk of the best/brightest software engineers they had as he had no idea how to lead a monstrosity of that size and still let his employees properly innovate.
Marketing weenies have no business being at the CEO/Chairman positions in a TECH company. Yeah, I'm looking at you John Chambers...
The only thing I found was the current tech preview, which looks (to me) to be the last one before release, and no support indicated for anything other than the ultra current Win codebase. Without any indications to the contrary, I can't assume it will be backported, particularly with their push to get people to Win8.x based platforms. For admins, this would make for a good upgrade carrot...
>> It doesn't look like Powershell 5 will be backported to Windows 7 or Server 2008/R2?
hehe - curiosity got the better of me, and I had to look as well. Not only is it NOT for 2008r2, but its NOT for 2012 either (tough luck for those folks who are resource bound and unable to get the 2012 servers up to date. err damn, that's my shop as well....)
Check the bottom of the MS Powershell blog stating Win 8.1 and Server 2012r2 only....:
@Trevor_Pott - well clarified sir. I don't often say this, but agreed on all fronts.
@Trevor Pott - same here on installing Webmin on everything now, and using the repo so it doesn't get stale.
Webmin's pretty cool overall. I had one situation recently with a chroot'd sftp config where I was banging my head on what I had missed on config (it was JUST like what I'd already done a couple times before successfully, but on older SLES versions), installed Webmin, did the config there and learned a couple of things by watching what it changed.
I don't have hate for it. Powershell is great for windows automation tasks, and should have been introduced 15 years or so ago when MS was still a monopoly and sysadmins largely only wore a Windows hat (well the ones that weren't Novell). With the rise of Linux in the datacenter, I had to pick up BASH and Python, and now am over on the other side of the fence. So as it is now, you need cross platform languages. It would have been better had MS picked up Python, made libraries for it, and used it rather than introducing yet ANOTHER language for the toolkit. Windows Admin'ing doesn't pay as well, so *SHOULD* I fully pick up Powershell? For me the answer is no. I dawdle with it here and there, produce a few small scripts, edit on some others, but I really don't see the need to go all in on it.
>Let's hope the version has a user interface suitable for use on a server...
Yes indeed. MS is also going to Unity.
For sake of the mail theme - make it look "laptop'ish" instead of looking like a bomb straight out of <name your favourite cop show here>, and it would make it through the xray's on the perimeter. Besides, done "properly" it doesn't have to be inside company wifi range for too long if it finds the security holes its looking for and breaches them. Lot of trouble though, and some risk of it getting traced back.
It'd be easier for a "guest" carrying a briefcase to just waltz in, and sit in the lobby for a while. In this era of self-service front desks, someone sitting idly by "waiting for someone to come get them" is so common that nobody bats an eye, or even NOTICES them.... I suspect this already occurs a lot, and would be a good reason to hire receptionist/greeters again for each company building.
For pure chuckle value: Maybe it would be a good idea to locate the mailroom at Ted Kazynsky's log cabin.
The iPhone 4/5's are short/squat/fat devices so bending them is harder with them being relatively thick but small. Although I do wonder about a 5 series being long/skinny... The 6 series is more spread out so you get greater leverage on bending with the same material thicknesses. Then we're dealing with a cheap aluminum exoskeleton that doesn't like to get spread out thinly like that, and it sure enough doesn't like to have holes in weak spots. Not sure why Apple didn't move the controls to the top/bottom where there is more structural strength.... That would increase the force required to bend, OR just make it 2mm thicker and beef up the frame and materials a little so it has the same rigidity as previous phones.
Any chance we could get David Beckham .to do a iPhone bending video ?
Even Mythbusters has done a thing on fingerprint readers. Some cellophane tape to grab your prints off of a glass, transfer to some melted gummy bears in the shape of a finger, keep warm, and et voila! Fingerprint Biometrics have been vulnerable like that for years. Every so often see a new study on it as breaking news, but its just the media forgot fingerprints have already been cracked for 10-15 years at least.
"....and each one of them has a different interface for the same service."
Yeah, I was trying not to expand my rant more than necessary. I've got the same problem with all sorts of different streaming devices. The whole experience is annoying, but with that said, I'm still more OK with getting a little jarred going back and forth from Netflix, Hulu, and Amazon on different streaming boxes than I am trying to navigate the craziness that is the US cable boxes which seem completely random/chaotic after getting used to being able to just simply find/play exactly what I want to watch and completely on my schedule without DVR's, without commercials, or any of the normal annoyances (except for Hulu, but their commercials are reasonable at 30 seconds to a minute instead of 6 minutes like commercial TV).
Its OK Mr Cook. Its just a standard point and click interface.... :)
Since "TV" is now much of the time Hulu, Netflix, Amazon, AppleTV and others, then combined with all the different "cable boxes" for those who still have cable, or TV tuner itself for those with an antenna, and what you have is a metric crapton of completely different interfaces. I myself undergo a little UI shock/adjustment all the time switching back and forth between different providers, with the "cable boxes" being the WORST for actually finding something to watch (and one of the reasons I dropped cable). Inconsistency reigns currently...
I haven't been in a Radio Shack in 10 years due to their refocus on phones, which meant less transistors, circuit boards, relays, speakers, etc etc that I went into Radio Shack for. I'll miss the the old Radio Shack, but I won't miss the new/improved Radio Shack... Luckily Fry's Electronics and Altex have the electronics stuff I want/need that I used to go into Radio Shack for.
ISP's when leasing equipment to the end user, technically would have an obligation to keep it up to date for security purposes. That includes no default passwords and providing firmware updates to close security loopholes.
The last "Residential Gateway" device I received from ATT a couple of months ago was actually secured fairly well on the defaults front. It was a forced upgrade off the old one that wasn't supported any longer. That old one when I got it wasn't secured in the slightest. So I'm at least seeing progress on this front. Hopefully other ISP's are also *starting* to finally take at least basic security seriously...
I'd get one. I already pay Hulu, Netflix and Amazon, whats one more? The BBC leaves a lot of revenue on the table due to not understanding what it is being a global commercial enterprise with a proper desire to make money, versus being a local Government enterprise whose desire it is to tax locals in the UK.
I don't (knowingly) know people using VPN's for piracy, but it is extensively used for business for those of us that work from home or the field a lot.
Yeah, there is NO discount. For a 2 year subsidy contract, you pay 99 cents upfront for a Fire Phone I wish the US Trade Commission would start calling the telco's (and others like Amazon) out on this. "Free" Phones really, really aren't when you pay a subsidy like that. Its just "Zero down and pay it off for two years."
Where I'm at, we were just VMWare, but Oracle prefers to be running on OracleVM, and there is about $300K/yr to save in licensing and support costs by the switch, so over time VMWare is probably about to slowly get pushed out. Starting with the Oracle DB/App environments (tired of fighing with their support regarding running under VMWare), and then potentially spreading out from there. No telling if KVM and HyperV won't both also get picked up along the way...
IBM has licenses and is cross licensed on all sorts of stuff, so it *probably* still has an x86 license.
VIA bought and gutted Cyrix ages ago. The current VIA procs are from their other acquisition, Centaur.
since its all about content, and content alone, in the end the engineers who are building the tools do work for the Wikipedieans, but draw their salary and take their orders from the WMF. A fine, but important distinction. Since Wikipedians produce the majority of content, so without them, the software engineers would be writing for nobody. :) The engineers haven't done anything wrong though, thats the WMF for giving crap orders.