* Posts by Synonymous Howard

266 posts • joined 7 Apr 2011

Page:

Ebuyer MD Carlisle exits following board level bust up

Synonymous Howard

Could not agree less

Been an eBuyer customer since at least 2002 and my 118th personal order turned up a few minutes ago (I always use free delivery) after being ordered late Monday evening.

Maybe I'm luckier than most (I also have very few problems sourcing kit from eBay or even AliExpress.com) or maybe I'm more forgiving than some.

I had an issue with a delivery from Apple last year .. it took a WEEK for a laptop to arrive with me AFTER it had LEFT the local delivery office .. turned out that the courier was probably 'mistaken' about why it was 'unable to deliver' as I waited in all day on each of the so-called 'delivery attempts'. In the end, Apple customer service got involved and kicked the courier and got it delivered and gave me a £70 refund for the 'trouble' the courier had caused me.

1
1

DNS root zone drama: Follow live the most important dullest ceremony you'll ever see

Synonymous Howard

It is all rather exciting ...

Well for an InfoSec geek like me it is, as one who has documented and managed such ceremonies.

Although they look dull and highly scripted to the Nth degree, they are still nerve jangling to do especially when you realise how any small screw up then could prove to be extremely expensive later.

0
0

It's 2015, and someone can pwn Windows PCs by inserting a USB stick

Synonymous Howard

Holdouts

Now how many of these vulnerabilities exist in the win2k and win2k3 code bases and therefore remain unpatchable by the laggards?

5
2

RSA chief uncans insurance giant's mega IT infrastructure review

Synonymous Howard

American MBAs per-chance?

1
0

Carphone Warehouse coughs to MONSTER data breach – 2.4 MEELLION Brits at risk

Synonymous Howard

Re: Security Certification ?

Yes (if you must get certified) ...

SSCP for techies

CISSP for architects, managers and techies

They are comprehensive on the best practices... Just reading a CISSP or SSCP study guide and applying the detail would be a good start.

There are also good best practice guides from SANS and OWASP.

Don't get hung up on cyber security job titles though .. my job entails security engineer, analyst and architect roles but I've been too busy over the last 20 years to get certified.

0
0

IT security staff have a job for life – possibly a grim, frustrating life

Synonymous Howard

Re: The most important point is - companies must guarantee their products

I make it a matter of principle and pride to personally guarantee to fix/update any code I write for either the lifetime of the code or mine (whichever is shorter). Been doing that for 25+ years now.

4
0

And so it begins... Cleaning up HMRC's £10.7bn Aspire mess

Synonymous Howard

Maybe they might then be able to take my wife's Voluntary Class 3 NI contributions that she has been trying to give them for over six months (took a long while to get 'validated' and then confirm what was payments were missing; still not had the printed version promised months ago, just verbal figures) .. and the doozy was that she was on the phone to HMRC last night and they said to her 'you can't pay voluntary NI' and then claimed they didn't know what this was ...

https://www.gov.uk/government/publications/national-insurance-application-to-pay-voluntary-national-insurance-contributions-ca5603

Won't even take our money when offered!

0
0

That's not an Ofcom email about your radio licence – it's a TROJAN

Synonymous Howard

This is DEFINITELY not a targeted attack as I am seeing this particular malspam sent to a variety of email addresses (I use unique addresses for each website/service I sign up to and when spam starts coming through on a new address I blacklist it etc). Spamassassin caught

11 'ofcom' messages to 4 unique addresses between 0845 and 0930 today but 4 more got through and were junked by the mail client.

This just looks like yet another phishing template sent out to rather ancient spammer address lists. I have to admit some of the newer templates are looking more plausible and less error prone.

I mark any file attachments in email as suspect and they typically turn out to be malware.

0
0

Global spy system ECHELON confirmed at last – by leaked Snowden files

Synonymous Howard

Re: Where are the OBEs?

Knighthoods surely.

1
0

Microsoft Edge web browser: A well-presented mea culpa

Synonymous Howard

Re: Privacy?

Could be but the author did mention the

Reading View which could do away with Ads (as it does on safari at least).

2
0

Let kids delete their online rants, demand campaigners

Synonymous Howard

Re: Kids these days ...

And an upper limit of 60 as well.

0
0
Synonymous Howard

I'm a responsible parent, I have not bred.

4
0
Synonymous Howard

Re: Not sure this is a great idea

Is that the Catholic approach to Internet use? ... Sin, repent, repeat

Giving rise to arrogance/ignorance/intolerance without responsibility?

(just watched edge of tomorrow again, bang, again, 'no wait I can walk' bang, again)

0
0

Let's all binge on Blake’s 7 and help save the BBC ... from itself

Synonymous Howard

Re: Go for it Beeb!

I have 2 nowtv boxes (when they were £8 delivered), my dad has one, my mates have one ... I don't believe any of us have a sky subscription though ... I've tried nowtv, Netflix and Amazon and apart from watching around half-dozen newish movies on them I've never been moved above 'meh' to subscribe. Even had some free blinkbox money to try that out.

4oD, iPlayer, ITVPlayer, BBCnews even Five are useable on the nowtv (Riki) box but for me they mainly get used for streaming from my Plex server or catching up on iPlayer.

But a beeb subscription service, if pitched as a low monthly fee for full archive access might pique my interest.

1
0

Post-pub nosh neckfiller: Southern biscuits and gravy

Synonymous Howard

Re: Edible

You mean like the Tudor Umble Pie? ... ('deer's innards' pie)

It all reminds me why I became a vegetarian 20+ years ago.

Now if it was cheese (non-animal rennet) scones and soup (leek'n' taters / toms) .. yum.

0
3

HP slaps dress code on R&D geeks: Bin that T-shirt, put on this tie

Synonymous Howard

According to a recent documentary, Richard Branson cuts ties off in 'his' businesses.

Ties are for wearing at trad funerals and weddings. They are only readily worn at 'work' by politicians, car salesmen, estate agents, bankers and other people who are untrustworthy but don't want to appear so.

My wife never trusts anyone in a pinstripe suit .. the wider or more blatant the stripe the less trustworthy.

14
0

Get root on an OS X 10.10 Mac: The exploit is so trivial it fits in a tweet

Synonymous Howard

Re: A simple temporary fix or am I missing something here?

Indeed .. however until a permanent fix becomes available a little whack-a-mole remediation might be advisable to those of us who have Mac users to protect.

The password file and master password file could be set to immutable without any issue as well as they are not modified in normal use (and only used in single user mode).

So I'm now running with ...

chflags -vv schg /private/etc/ /bin/ /sbin/ /usr/bin/ /usr/sbin/ /opt/X11/bin/ /usr/lib/

for the time being. (will need to undo [noschg] that before patching though)

FOOTNOTE: if you mention 'slash etc slash passwd' in a message the posting gets auto blocked 8-)

3
0
Synonymous Howard

A simple temporary fix or am I missing something here?

But is a simple remediation just setting the /etc/sudoers file to be immutable?

bash-3.2# chflags -vv schg /etc/sudoers

/etc/sudoers: 00 -> 0400000

$ echo 'echo "$(whoami) ALL=(ALL) NOPASSWD:ALL" >&3' | DYLD_PRINT_TO_FILE=/etc/sudoers newgrp

dyld: could not open DYLD_PRINT_TO_FILE='/etc/sudoers', errno=1

bash: line 1: 3: Bad file descriptor

3
0

Brit teen who unleashed 'biggest ever distributed denial-of-service blast' walks free from court

Synonymous Howard

Re: Interesting sentence... for the "biggest DDOS attack"...

I would hope that any money left over would be taken off him under the proceeds of crime act.

7
0

Apple Pay's Brit biz bashed by banks planning to Zapp it out

Synonymous Howard

Re: "it's still faster"

In reality it's not as easy as that .. you have to hold it very close (basically touch) and hold it there for a couple of seconds. Still it is very good for simple daily transactions e.g. McDonalds, Lidl etc.

And yes I have a metal (old business) card holder as my wallet but then I have had that for years, long before NFC was available ... it is simply smaller and less pocket bulk than a wallet ... plus it makes a great sound when you drop it.

0
0

Why the BBC is stuffing free Micro:bit computers into schoolkids' satchels

Synonymous Howard

Electric Play Dough per chance?

http://www.science-sparks.com/2015/02/12/easy-play-dough-circuits/

1
0

Chair legs it from UK govt smart meter installation programme

Synonymous Howard

Re: No estimated bills in my house.

I use my smartphone to take a photo of my meter readings .. it's fast to do, I can type the numbers in to the website in the GCH-warmth of my house and I have an audit log of them all, complete with datestamp, GPS location and MPRN/serial number.

They are very useful to email over to the energy billing company (I refuse to call them suppliers) when you need to question the bill.

2
0

Apple's mystery auto project siphoning staff from other divisions

Synonymous Howard

Re: Presumably...

And I for one would buy one of those!

Or one of these .. www.hover-bike.com

0
0

Cross-dressing blokes storm NSA HQ: One shot dead, one hurt

Synonymous Howard

Re: Tapeador

So what is the average actually speed in London then? More or less than 20mph?

For answer turn to page 14 of https://tfl.gov.uk/cdn/static/cms/documents/london-streets-performance-report-q1-2012-13.pdf [PDF]

So actually ENFORCING a 20mph should make your journey go quicker 8-)

0
0

No Silicon Roundabout U-Bend U-Turn: Build that peninsula boys

Synonymous Howard

Re: Is this out the El'Reg window?

Sorry wrong, been a UK tax payer for over 25 years and before I went part time a lot it was at 40%.

And I'd be more than happy for that tax to be spent in the rest of the UK outside of Das Kapital.

0
0
Synonymous Howard

Re: Is this out the El'Reg window?

It is still somewhat parochial, especially to those of us who are, thankfully, not within the gravitational field of the blackhole that is LUN DON.

0
0

What an eyeful: Apple's cut price 27in iMac with Retina Display

Synonymous Howard

In which case just run it under a virtual instance of Windows .. easier and safer then running Windows all the time.

4
2

Secure web? That'll cost you, thanks to Mozilla's HTTPS plan

Synonymous Howard

Firefox could redirect from within

This should not be a problem for end-users if Mozilla add some code to handle the site 'upgrade' from HTTP to HTTPS automagically.

Firefox could simply have an option (off by default but with info on how to turn on though custom error handling) to automatically switch to HTTPS URLs when the HTTP URL does not respond (e.g. TCP port timeout or connection refused).

0
0

Siri, dim the lights and warm us up: First gizmos for Apple HomeKit love-in emerge

Synonymous Howard

Elgato's Eve looks reasonable

And they even have a hardware module for developers ...

https://www.elgato.com/en/eve/eve-core

I'm sticking to my own designs though using ESP8266 modules and a RasPi 2 gateway ... no cloud required and x509v3 cert based security.

As to why ... well why do people have most tech/gadgets; because we can.

0
0

I helped Amazon.com find an XSS hole and all I got was this lousy t-shirt

Synonymous Howard

Re: In a word: YES

Take a look down the list here...

http://www.just-eat.com/jobs/

0
0

IT service management as an enterprise-wide service

Synonymous Howard

Re: Work to the extreme

Hire "perfect curve" obvs. Be the brand.

Very strong. So that's all good.

Yes, no, say again. oh crap.

2
0

Make Adama proud: Connect your Things wisely, cadet

Synonymous Howard

What about good ol' wifi though?

With wifi SoC devices like ESP8266 and Ti's CC3100 putting together battery powered IoT service seems easier than ever and the advantage of easier 'home network' integration.

I'm using both ESP and Bluetooth modules with Arduinos at the moment but could easily see the ESP taking over all the Arduino work for most remote sensing/activation requirements.

0
0

Apple will cut down 36,000 acres of forest in 'conservation scheme'

Synonymous Howard

Re: which company is worse?

I still have a set of beautifully created cardboard folders complete with embossed logos and bright orange internal elastic bands to hold in place the single sheet of carbon copy line printer paper on which the DEC ULTRIX licence was printed (which I think we never had to use anyway).

We got one of these folders for each DECstation we bought. Although only cardboard they have lasted 25 years longer than the DECstations did and still in regular use by me.

But HP definitely biggest offender in the over-packaging stakes ... https://www.youtube.com/watch?v=uyNFNvFAlWs

2
0
Synonymous Howard

Re: Forestry != woodland

Clearly you are 'holding it wrong' when you are opening them 8-)

Love the packaging though but I would blame the Japanese for Apple's obsession with tight fitting boxes and the 'opening experience'.

3
0

Apple Watch: HOT WRIST ACTION plus slim $1299 MacBooks - and HBO TV

Synonymous Howard

That is so fake ... I mean a Dell display and not a 5K iMac? Must Try Harder (ooh err missus).

0
0
Synonymous Howard

Watch Battery Life

18hours = All Day

1
0

OK, they're not ROBOT BUTLERS, but Internet of Home 'Things' are getting smarter

Synonymous Howard

Re: Honestly

My heating controller is a drop in replacement for the standard controller so is easily rolled back. However I have zero intention of moving home.

It is all being documented in detail and as I specialise in security, it is most definitely not going to be easily accessible.

0
0
Synonymous Howard

Re: Honestly

I've been /looking/ at home automation for years (e.g. X10) and the only thing I could finally justify to myself was replacing the central heating controller with a bluetooth connected one.

However it is not a commercial controller it is one I built from an arduino, 2 relays, bluetooth module, LCD and two buttons ... costs around a tenner all in. Linked to my home network via bluetooth to a Raspberry Pi 'hub' which manages everything.

Currently having fun building wireless 'room sensors' to measure temp, humidity, light level + occupancy etc .. I aim to create a system which 'learns' our habits and guesses when the CH and HW need to be switched on/off.

1
0

Pebble Time Steel ready in May. Plus: Now you can strap on sensors, GPS ... Geiger counter

Synonymous Howard

Re: Shaken, not stirred...

Currently it's actually $/£ conversion at the credit-card rate of the day the payment is taken ... then it will be up to the customer to pay any VAT and Duty (and carrier 'processing' fee) ... so could be the fairest way.

0
0

Want a cheap Office-er-riffic tablet? Microsoft Windows takes on Android

Synonymous Howard

Surely you only need to block playing 'videos' through HDMI if it does not support HDCP at both ends .. does not mean you could not use it as a monitor.

0
0

Users shun UK.gov flagship digital service

Synonymous Howard

Was not aware of this LPA online service so had a look..

It came 'top' in a google search and so should be easy for JoeP to find .. however it is not a fully online service and the online bit looks like a guided way to complete a 'paper form' which you then need to print out anyway ... the basic instructions are:

"How to register

Apply to register as soon as you’ve sent the ‘notice of intention’ form to the people who need to be told.

There are 2 ways to register:

+ use the online tool if you originally used it to make your LPA - go straight to step 4 after you’ve signed in

+ download and fill in the application to register (LPA002) if you didn’t use the online tool

Print out the form and sign it when you’ve finished, then send it to OPG - the address is on the form.

Make sure you include the original lasting power of attorney form and the fee."

So I can see why most people might just fill in a blank form and post it off as it is probably quicker and easier for most JoeP to handle.

Personally I think Register's criticism is unfounded in this case.

2
0

El Reg Redesign - leave your comment here.

Synonymous Howard

I'll stick with the mobile version everywhere thanks

mobile = less cluttered

mobile = less ads (see above)

0
0

No more free Windows... and now it’s all about the services

Synonymous Howard

Re: It will be a cold day in hell...

You clearly have not bought Red-Hat then ... Talk about expensive 'subscriptions'

8
1

Men, Women and Children: Shows how crap the internet is via the medium of crap film

Synonymous Howard

Re: A confession

Carrey was good in The Truman Show though.

0
0
Synonymous Howard

"Starring Adam Sandler"

'Nuff said.

30
0

Blade Runner sequel might actually be good. Harrison Ford is in it

Synonymous Howard

The 3hr extended versions are sooo much better .. those extra minutes make the films much better (apart from the singing dwarfs in the first one which really is too much) and actually makes the second one flow better and follows the book more closely.

However, the third one is going to be a stretch.

0
0

ATTACK OF THE DRONES: ‘Nefarious’ private use rising, says top Blighty copper

Synonymous Howard

Re: Nefarious private use of drones

More likely "Estate Agents Ahoy!"

http://bbc.co.uk/news/technology-30080972

4
0
Synonymous Howard

Re: Or - STOP PRESS!!!

Don't worry, if too many people break the rules, the police will simply ignore it as it upsets the crime stats and just causes more to paperwork ... at least 20% of the time anyway (see today's big news story on iffy crime recording).

11
0

SAVE ME, NASA system builder, from my DEAD WORKSTATION

Synonymous Howard

Sorry but replacing caps or other discrete component is an order of magnitude different to resoldering a dry joint or loose connector.

*shakes head* kids these days.

3
1

Page:

Forums