* Posts by tnovelli

201 posts • joined 4 Feb 2011

Page:

Space Commanders lock missiles on Elite's Frontier Devs

tnovelli
Bronze badge

Re: This was going to be my first

I was just playing OOlite (total coincidence, testing a 144hz monitor) and it's pretty fun. Doesn't crash like the previous installment of Elite did constantly :)

Tons of expansions/mods available now too, if I ever have a chance to check them out...

0
0
tnovelli
Bronze badge

Re: If I'd wanted a connected game I'd play Eve

How hard could it be to bundle an initial set of universe data with the game? Easier than downloading it every time you play.

Sounds to me like a lame antipiracy measure.

0
0

Linux 'GRINCH' vuln is AWFUL. Except, er, maybe it isn't

tnovelli
Bronze badge

Re: Hmm...

Yes. It's a little lax, not the greatest system, best avoided if possible. But that's not a vuln, it's a lack of awareness among people using VPS hosting in particular, and there are much easier ways to crack a friggin' WordPress or Drupal website.

3
0
tnovelli
Bronze badge

Re: An easier option ...

Sysadmins with windows? Wouldn't that be nice ;)

9
0

Dr. Dobb's Journal sails into the sunset - yet again

tnovelli
Bronze badge

Re: They were still going?

gamedev.net is the closest one I'm aware of, within a certain niche anyway. It's been around ~15 years, is independent AFAICT, and has a healthy user base. Looks like it'll be around for awhile if they can successfully make the transition from ad-funded to subscriber-funded.

0
0

Chrome devs hatch plan to mark all HTTP traffic insecure

tnovelli
Bronze badge

Re: I don't see the problem with this idea ...

No, the whole concept of HTTPS is broken. It just encrypts data in transit to untrustable servers.

Real security requires (at least) a completely different architecture, where servers only store and transmit encrypted data, never having access to decryption keys. Data would only be encrypted on end-user machines, only within the program(s) that use it. Those programs, and the OS, would need far more robust security than anything in existence today. The whole system would be useless for client-server apps (like websites) and probably less than 100% secure anyhow.

0
1
tnovelli
Bronze badge

@AC "It seems there are lot of cry babies with HTTP-only sites who have a problem with browsers telling the truth to their visitors..."

Ok, say I run SSL on my 100% public site with no private data anywhere. Will Chrome warn users if my site's been hacked? Not until it's too late for many. Will it tell them if I'm passing their data to insecure 3rd party APIs, or selling any information I collect on them, or giving everything to NSA/GCHQ? Nope.

@David Lawton - The fact that you can get away with MITM filtering of most SSL traffic, even with access to the end user machines (malware does too), does not inspire confidence in SSL.

3
3
tnovelli
Bronze badge

Nice try

May as well mark everything as insecure because HTTPS is shit.

8
9

Brit GUN NUT builds WORKING SNIPER RIFLE at home out of scrap metal!

tnovelli
Bronze badge

"Sniper rifle"

.30cal bolt action with scope. Known in the States as a basic hunting rifle.

1
0

'Shadow IT' gradually sapping power and budget from CIOs

tnovelli
Bronze badge

Join the dark side, it's more fun

Contracting, that is, almost universally under clients' marketing chain of command.

IT does tend to get cut out of the loop. They're not prepared to deal with crap like Linux and WordPress though. Stuff would not get done. Yeah, I'm a little leery about the security aspect; marketing and design folks are too quick to reach for the cloudy sharing services. Fortunately the worst case scenario is just a website getting hacked. What worries me are all the doctors' offices, government agencies, etc outsourcing their record keeping to cloud providers. And ecommerce.

2
0

Batten down the patches: New vuln found in Docker container tech

tnovelli
Bronze badge

Re: To be expected

This troll is correct. Systemd is relevant here; Docker is driving a lot of the buzz around it. And these Docker vulns, W-T-F... these aren't arcane virtualization issues, these are just stupid Unix tricks biting these guys in the ass. (Judging by what I read, anyway... I don't actually *use* any of this shite.)

4
1

No more free Windows... and now it’s all about the services

tnovelli
Bronze badge

Re: It will be a cold day in hell...

lol... Windows installation is an all-day affair. Licensing/activation, finding drivers, fumbling around in cryptic GUIs, googling for information which is usually wrong. Screw that. If it didn't come preinstalled on every new PC nobody would use it at all.

I've seen some crappy Linux installers but the decent ones take under an hour.

3
1
tnovelli
Bronze badge
Coat

Re: Windows in kit form?

Some sort of nickel-and-dime scheme like that, I take it.

Run.... far, far away.

14
1

Microsoft BEATS Apple, Google ... to accepting limited Bitcoin payments

tnovelli
Bronze badge

Re: Welcome to the Darkside

You'd rather not use credit/debit or PayPal?

1
0

Skinny Ubuntu Linux 'Snapped' up by fat Microsoft cloud

tnovelli
Bronze badge

@Mikey

We hate Ubuntu because they got it right, then screwed it up. The writing was on the wall as far back as 2007. It's fitting for them to get in bed with Microsoft. Good riddance!

2
1

BACK OFF, KIM KARDASHIAN. BlackBerry CEO is NOT into SENSATIONALISM

tnovelli
Bronze badge
Trollface

Wow, they even hired three Register commentard downvoters.

1
3

Sacre block! French publishers to sue Adblock maker – report

tnovelli
Bronze badge

Re: How much value to users put on web sites

hahaha, same here. Just installed Adblock Edge after accidentally opening an ad on this article.

I suppose I should send some dough to El Reg and some honest blocker/filterlist maintainers - but not ABP. Fuck them. Fire away, French lawyers!

0
0

US Ass. Commerce Sec hits back at claims global DNS is DOOMED

tnovelli
Bronze badge

Dear God....

The US Department of friggin' COMMERCE owns the internet? As an American that troubles me; I can't imagine the rest of the world is okay with that.

Y'all need to build a fully decentralized internet, at the IP and DNS level, pronto. Sooner or later my government WILL fuck you over.

2
1

Devs: Barack Obama's gunning for your job!

tnovelli
Bronze badge

10 PRINT "FUCK YOU, WORLD"

20 GOTO 10

0
2

Linus Torvalds releases Linux 3.18 as 3.17 wobbles

tnovelli
Bronze badge

Re: Unknown source of kernel lock-ups?

Those aren't REAL Linux users. He's referring to the 2 veteran sysadmins who bothered to try the bleeding edge crap at all. ;)

2
0

Microsoft .NET released from its Windows chains... but what ABOUT MONO?

tnovelli
Bronze badge

Re: Reap what you sow

It's the same old Microsoft. I don't hold a grudge from 20 years ago. Problem is, I walk away but they keep getting in my face and pissing me off. Over, and over, and over. They've done some good things but not enough to overcome my negativity. Just enough to survive.

If only this company had the common decency to crawl into a hole and die...

0
0

It was SPACECRAFT vs BOAT at ORION LAUNCH. The boat won

tnovelli
Bronze badge

700 kilotons of liquid hydrogen and oxygen, airburst at 300 feet... that'll teach 'em.

1
0

Violet, you're turning violet! Imagination unveils graphics-tastic hobbyist board

tnovelli
Bronze badge

Re: Almost...but not quite

And open-source GPU driver.

Still tempting though... very nice specs on this thing. Decent graphics AND hardware geek I/O.

10
0
tnovelli
Bronze badge

Re: "The Ci20 will cost $65 (US)/£50 (Europe)"

Yeah, US law is generally "you must list the pre-tax price". At least we're consistent but it sure would be nice if retailers were allowed to use nice round numbers and list them that way.

0
0

Tenacious Twitter tries to topple terrible trolls

tnovelli
Bronze badge

Re: this is all very well, but...

Yeah. I only hear good things about Twitter from biz/marketing people now - and with a healthy dose of scepticism at that.

0
0

CoreOS's Docker-rival Rocket: We drill into new container contender

tnovelli
Bronze badge

Re: Hmm

Docker is actually part of the systemd hype. CoreOS uses it too though.

0
0

Ten Linux freeware apps to feed your penguin

tnovelli
Bronze badge

Re: @Chris W Haven't we been here before

Chris has a valid point. Most of the Linux/FOSS GUI apps, and the bloated bug-infested libraries they're built upon, are crappy knock-offs of commercial software from the Windows/Mac worlds.

It's true, Windows is complete fucking garbage that costs too much except when it comes with a new machine, but often it's the best platform for running other crapware... especially trendy throwaway apps that'll be relegated to the dustbin in a few years. It's sad to see developers wasting their (unpaid) time on the futile imitation of commercial hypeware that doesn't fit the open-source / volunteer / DIY model. That's just my opinion, man. :)

3
23

Hawking: RISE of the MACHINES could DESTROY HUMANITY

tnovelli
Bronze badge

Re: Dear Stephen

@dan1980

Yes, yes indeed... there's a huge gulf between present day "artificial intelligence" and sentient machines. The "AI" label originated in an era when "artificial" connoted "a crude imitation of the real thing" like vanillin, and "intelligence" was "rote memory and arithmetic/logic skill". So AI's a perfectly good label for the usual brute-force approach to navigation and targeting in videogames... which, by the way, seems to be undergoing a massive dumbing-down trend.

That said, I wouldn't be surprised if a dumb botnet brings down our entire network infrastructure and everything attached to it. Thanks, WordPress... Drupal... PHP... MySQL... SystemD...

4
0

systemd row ends with Debian getting forked

tnovelli
Bronze badge

This is gold

> Waugh also feels “it’s very early in the lifetime of systemd, so it would be wiser to see how it goes before throwing toys around..."

...or rushing it into production.

Thanks, good point :)

41
0

AWS CloudFront wobbles at worst possible time

tnovelli
Bronze badge

it's a meta-basket!

I don't mind using cloudfront but I keep my servers elsewhere.

0
0

Second time's a charm: Adobe has another go at killing Flash hijack flaw

tnovelli
Bronze badge

Re: A simple patch on Linux

No you can't... not in Debian 7 64bit, anyhow. Flash/Chrome crashes galore. What distro/version are you running?

0
0

UK.gov teams up with moneymen on HACK ATTACK INSURANCE

tnovelli
Bronze badge

Nice POS, shame if someone were to pwn it

Isn't this just a preemptive form of ransomware?

Who's commissioning the most sophisticated malware... nation-states, or this freaking shadow-government industry?

0
0

DEATH by COMMENTS: WordPress XSS vuln is BIGGEST for YEARS

tnovelli
Bronze badge

Re: Well....

Yep... by default, pending comments appear right on the admin dashboard so the administrator can approve or delete them. If you can inject script tags there, it's game over.

0
0
tnovelli
Bronze badge

@ Trevor Pott:

Nice theory about the benefits of a mature ecosystem and plugins and all, but that's not the reality of WP. The core CMS is a bloated rat's nest full of bugs and dodgy practices (soft-fail, functions that second-guess their arguments, etc). The plugin/theme interface is "everything is global, you can do whatever you want, but please use our poorly documented monkey patching hooks". It doesn't matter how secure WP core is - any plugin can undermine it. Even the official WP repository is full of shoddy plugins. Few users possess the knowledge (or time) to choose wisely.

Most WP sites I've seen have so much custom code that they might as well be written from scratch. When you have to copy-and-modify half of the login/signup code to make the client happy, it makes you wonder if you're really gaining anything from a ready-made CMS.

If the #1 CMS did just the few things WP does well, built on a solid architectural foundation, then you'd have a point.

WP's handling of this vuln/update is another red flag. First, they downplayed the severity in their update notice, saying a "contributor or author" could "compromise" a site, versus the apparent reality of total ownage by random commenters. Second, the update broke a bunch of sites & plugins; people are screaming about it on WP forums, questioning the wisdom of auto-update.

"Static" sites just keep looking more and more attractive...

2
1

Google's Chrome to pull plug on plugins next September

tnovelli
Bronze badge

Flash crashes constantly in Chrome 35+ on Linux (Debian 7 at least) i.e. ever since the switch to PPAPI. Chrome itself (and Chromium) has been almost unusable all year. Yayyyyy Google.

0
0

Mozilla remembers 2013. Y'know, back when it still gobbled at the Google money-trough

tnovelli
Bronze badge

Re: Lots of fat to cut from their budget

It's not even a new OS, it's basically just Firefox running on a stripped-down Linux distro... like Chrome OS. I like Javascript... but it will never compete with native apps for battery life. End of story.

We won't have to wait 2 years to find out how Mozilla's faring. Layoff annoucement coming in 3... 2... 1...

5
0

All ABOARD! Furious Facebook bus drivers join Teamsters union

tnovelli
Bronze badge

Supposedly it's so pricey in silicon valley, the facebookers' and googlers' $100k salaries are barely enough to survive... certainly those who moved from elsewhere and were forced to pay market rates for housing. 100k salary, 50k taxes, 40k rent... ouch.

So if you're a bus driver making 30-40k, you won't find affordable housing within an hour's drive.

9
0

Mozilla, EFF, Cisco back free-as-in-FREE-BEER SSL cert authority

tnovelli
Bronze badge

Re: Do I understand this?

This provides no better authentication than self signed certs. If Mozilla and Google want encryption everywhere, authentication be damned, they could just tweak their browsers to quit bitching about self signed certs.

3
0

Remember that internet sales tax? Wasn't that a great idea? It's dead

tnovelli
Bronze badge

Re: What are they thinking?

Yes, there's no reason for the discrepancy. Sales tax is a can of worms. Offline sales should be tax-free as well.

Unfortunately that can only happen if we repeal the 16th amendment. Hmmm.... "Repeal the war tax" just might work.

3
2

DAY ZERO, and COUNTING: EVIL 'UNICORN' all-Windows vuln - are YOU patched?

tnovelli
Bronze badge

SSL lib quietly patched

Is Microsoft just catching up to the round of fixes OpenSSL got in the months after heartbleed?

For all we know, SChannel could be a proprietary fork of some old version of OpenSSL.

3
1

Patch Windows boxes NOW – unless you want to be owned by a web page or network packet

tnovelli
Bronze badge

XML too

Interesting that Microsoft's XML libs still have security bugs. Same deal in Linux; a few libxml2 security patches this year. Normally one would expect more robust libraries for a (lamentably) near-universal 15-year-old file format.

But we always knew XML was shit.

6
0

SO LONELY: Woman DARED to get rid of her iPHONE - Apple DUMPED all her TXTS

tnovelli
Bronze badge
Thumb Up

Teach 'em good

Having never used an iPhone, it took me a while to realize why I started getting unreadable MMS messages toward the beginning of this year. Only workaround is to reply "didn't get that.. please turn off iMessage and try again". Arrrgh.

Google should take note as well - Android phones do something similar but only when texting to multiple recipients... so it's even harder to guess why.

3
3

Red Hat goes nuclear in Linux container wars with Atomic Host beta

tnovelli
Bronze badge
Mushroom

may contain systemd

Too radioactive for me.

2
0

Words to put dread in a sysadmin's heart: 'We are moving our cloud from Windows to Linux'

tnovelli
Bronze badge

Re: Retitled

As a Linux admin, the only thing I dread is being expected to run these former Windows cloud systems.

11
1

Apple OSX Yosemite infested by nasty 'Rootpipe' vuln

tnovelli
Bronze badge

Re: Ubuntu etc too?

I was thinking trojans, drive-by downloads, the sort of attacks that have been biting casual Windows users for 20 years.

Downvoted?? Apparently I rattled the Ubuntu fanboy contingent, all 2 of them.

2
5
tnovelli
Bronze badge

Ubuntu etc too?

The way all these Apple-aping OSes use Sudo makes it easy to trick people into entering their passwords.

0
6

Mozilla promises browser just for DEVELOPERS3

tnovelli
Bronze badge

Great. Fix the UI and I might like it. If it's actually fast and light, non-devs will flock to it in droves, then we'll almost have to use it.

I was using Chrome mostly, but new versions are unusable on Linux, crashes all the time. Midori is getting better, could be the nicest open-src browser if they plug the mem leaks.

Could always switch to mobile app dev...

1
0

Hey, YouTube lovers! How about you pay us, we start paying for STUFF? - Google

tnovelli
Bronze badge

Re: Hosting/Bandwidth Costs?

I figure $3m (say £2m) for 2 billion views, or $0.0015 per view. That's based on 50MB for a 720p MP4 video, served via CDN at $0.02/GB.

0
0

Mozilla releases geolocating WiFi sniffer for Android

tnovelli
Bronze badge

Re: So remind me how these two tally up?

Just change your SSID everytime you reboot or replace your router, I guess.

0
1

BONFIRE of the MEGA-BUCKS: $200m+ BURNED in SECONDS in Antares launch blast

tnovelli
Bronze badge

Re: "I'm not a moon landing denier by any means, but I still ponder about how we got men to the moon and back over 40 years ago and yet these days even getting things up to a low Earth orbit is a problem."

It was a relatively sane and optimistic time in America... less distraction and communication overload and software fragmentation, very little automation. Engineering was basically done by hand, and all of it checked and rechecked by humans. Now we're in a 1-step-forward 2-steps-back situation with regard to tech.

I wasn't around back in the day and I'm no rocket scientist, but I've perused enough new and old civil/mechanical drawings to get a feel for quality standards over the years: excellent from the early 1900s to the 80s, then CAD came along and we got sloppy... too busy fussing with our tools to do our work properly.

I've also done just enough government work to see how government agencies and contractors function (loosely speaking). Top-down decision making by unqualified politicians and bureaucrats with budgets beyond their comprehension. Technical staff who show up from 9 to 5, do what they're told, and don't ask questions, or just kill time. This isn't new but apparently it's been getting worse as governments become bigger and more controlling.

3
2

Page:

Forums