* Posts by Tomato42

363 posts • joined 31 May 2011

Page:

Gay emojis? GAY EMOJIS?! Not here in Russia, comrade

Tomato42
Unhappy

Re: $(name) Youth group

Russia never really left tsardom, not for the vast majority of population

2
0

BONK! BONK! Windows 10 whack-a-mole – Microsoft still fixing bugs

Tomato42
Linux

Re: Epic or epoch?

one was "cobbled" together by "amateurs" and is given out for free while the other hikes a price of a kidney in worse parts of the globe and was "perfected" by "professionals" over a course of a decade and a half

0
0

Are smart safes secure? Not after we've USB'd them, say infosec bods

Tomato42
Facepalm

Windows

Those safes are running Windows!

6
0

Hurrah! Windfarms produce whopping ONE PER CENT of EU energy

Tomato42

you still need a core technology that will provide for the grid base load

renewables like wind and solar can't do it, oil, gas and coal are bad for carbon emissions

2
1
Tomato42
Boffin

"Even taking into account increased instances of radiation-induced cancer that aren't noticed until nearly half a century later?"

yes, including those

it's not hard, as radiation-induced cancer accounts for less than 1% of non-thyroid cancer incidence from stuff like Chernobyl

more people are dying of cancer because we live long enough to die of cancer, not because there is radioactive stuff everywhere

12
1

New study into lack of women in Tech: It's NOT the men's fault

Tomato42
Boffin

or maybe in far east the women have less choices of jobs that will provide for themselves so they choose the best paying ones, not the ones they are most interested in?

2
2

Lottery IT security boss guilty of hacking lotto computer to win $14.3m

Tomato42

Re: Proof of purchase

what? don't the tickets have to be registered and you get a printout with a unique ID?

3
0

The Empire Strikes Back: Disney tractor-beams StarWars.co.uk from Brit biz

Tomato42
Devil

knowing Disney and they history of litigation, that would end in some international tribunal (you say it's not applicable? oh, they will find a way, or they will make a way)

not that I wouldn't like to see them burn money... would be better only if lawyers didn't get paid in that

2
0

Ditch crappy landlines and start reading Twitter, 999 call centres told

Tomato42
Facepalm

facepalm

Can we get people that know what they are talking about and not just ones that want to be "hip"?

16
1

Migrating from WS2003 to *nix in a month? It ain't happening, folks

Tomato42
Linux

Re: Sorry...

I don't see "Do the right thing and migrate them to the next version of Windows" as rational and well thought, sorry.

Even a shred of "if you depend on MS for this or this only, then you should see if maybe this whole Leenyux thing is up your alley" would be ok. Not this decree given from ivory tower.

5
20
Tomato42
Windows

Not a shill?

"In one month? Not going to happen."

because you can totally migrate from 2003 to 2012R2 in a month. /s

The whole point of criticism is that if you have a huge task at hand, no matter how you cut it, so maybe you should take a look at all the options, objectively.

"Decades of being a Microsoft partner and a systems administrator that makes a living from Microsoft"

oh, right, so you have a complete and full picture of what the "dark side of the force" (Unix) has to offer currently /s

"For the record, my company is a Microsoft Partner - (...) we're pretty much participating in order to get the 10 people's worth of Microsoft Action Pack Subscription (MAPS) licenses."

ever thought that this is not the case for the vast majority of companies out there? And that they would have to re-purchase all the Server licences, all the CALs, and so on?

"Anyone who seriously counsels companies with less than a month left to try moving from Windows to *nix needs to be prevented from working in IT"

anyone who has painted themselves into such a corner should be prevented from working in IT, no matter the platform

Now, since your arm is stuck in raw sewage up to your shoulder (be it yours or somebody else doing), you will spend the next few months cleaning it up, no matter if you pick the Penguin or the Redmond.

You should evaluate your options, not blindly go same route you were going.

sorry, my mistake for looking for objectivity in a press article

4
15

ONE MILLION new lines of code hit Linux Kernel

Tomato42
Linux

Re: Lines coming out?

The article does mention that they did throw away quarter of a million of lines...

Also, it's rather hard to implement new features in negative code, especially significant ones, like support for new class of GPU...

1
0
Tomato42
Joke

Re: One MEEELION lines…

@h4rm0ny:actually not any more. Now the major number will change when Torvalds feels like it.

Let's just hope he won't aim to catch up to the Firefox/Chromium team

4
0

Amazon just wrote a TLS crypto library in only 6,000 lines of C code

Tomato42
Boffin

Re: OpenSSL

"These days, compilers can write assembler better than humans can."

Not if said assembler is supposed to be:

* fast

* portable

* strict constant time

* resistant to radio emissions and power use analysis

0
0
Tomato42
Boffin

Re: How it should be done

you think TLS is bad?

take a look at X.509

you'll need a tanker's worth of mind bleach for that

10
0
Tomato42
Facepalm

OpenSSL

oh, right 6k LOC of code

hardly an achievement given that it implements just the absolute bare minimum (client certificates? ha!)

also guess what is used for actual cryptography (hint: it starts with O and ends with SSL)

5
9

Intel infosec folk TEE off open source app dev framework

Tomato42
FAIL

real question...

Does it help with buffer overflows?

No? Then not interested.

What's the point of checking if the code is signed if the code is still coming from Adobe?

We need to "trust" all CAs in operation in TLS and we know this is bad, so now we're going to trust all big software makers. How exactly does that make the situation better?

0
0

IETF updates TLS/SSL best practice guidance

Tomato42
FAIL

Re: Maybe the IETF should visit Redmond

you mean, like here: https://support.microsoft.com/en-us/kb/245030 ?

0
0

Killer ChAraCter HOSES almost all versions of Reader, Windows

Tomato42
Linux

Re: Does this also ...

actually, you can have rootless X for some time now, dunno how many distros default to that

4
0

Why is it that women are consistently paid less than men?

Tomato42
Joke

Watch out for the pitchforks!

This is a heated debate, not a cold reasoned calculation!

<insert calls to patriarchy, discrimination, etc. here>

5
4

Stealing secret crypto-keys from PCs using leaked radio emissions

Tomato42
Headmaster

technically speaking it is news

it's certainly not newsworthy, I'll give you that

7
0

Chrome, Debian Linux, and the secret binary blob download riddle

Tomato42
Facepalm

the world is changing, get over it

2
44

British banks consider emoji as password replacement

Tomato42
Windows

New most common password

And the most common password isn't 1234 any more, its

:) :) :( ;)

8
0
Tomato42
Trollface

Re: I'm still trying to wrap my head around

Chimps communicate using grunts.

Doesn't make the communication any meaningful outside their social circle, but it's useful enough to attract a mate and get rid of competition.

9
0

LastPass got hacked: Change your master password NOW

Tomato42
Boffin

salt just needs to be unique, 256 bit one is beyond overkill, it requires there to be 2^128 accounts before the chance of two salts repeating comes into 50% probability territory.

2
1

Would EU exit 'stuff' the UK? Tech policy boss gets diplomatic

Tomato42
FAIL

Re: Straight banana

The UK then could officially become the Air Strip One it so desperately wants.

0
0
Tomato42
Stop

Re: “national measures” continue to entangle the single market

"They would both then have to apply to join the EU, which would require them to join the Euro, you think that the Scots would be that daft?"

where this FUD comes from?!

You don't have to join the Eurozone to join EU. Neither Czech Republic, Poland or Croata use Euro!

0
8

Amazon turns up spectacularly late to 'transparency' party, pours a large one

Tomato42
Boffin

Re: No need

just because it's not required doesn't mean it's not a good idea, even with A(EC)DH or self-signed certs

3
0

China's hackers stole files on 4 MEELLION US govt staff? Bu shi, says China

Tomato42
Boffin

if you run puppet or ansible you are aware and have catalogued every single one machine, including transient virtual ones

0
0
Tomato42
FAIL

Re: Jeez

problem is that IT is woefully underfunded and its importance underrated

we really need to change that, because a world where a bored teenager will be able to wreck half the federal agencies is not a nice one when really malicious actors start using it

the only way to fix it is to start finger pointing and demanding real solutions, not just "security audits" that achieve squat

0
0

The weapons pact threatening IT security research

Tomato42
FAIL

"Mom, I have given a friend a copy of GDB, now Interpol is looking for me as an arms dealer."

Seriously, has this agreement ever helped? Al Queida had guns from CIA, South American drug lords from FBI... It's such a massive FAIL that I have no words to describe it

26
0

We stand on the brink of global cyber war, warns encryption guru

Tomato42
IT Angle

Sony hack costing $15 million? I think they counted only the cost of cleaning ladies and detergents, not BOFHs working overtime.

2
0

Facebook farewells flaky SHA-1

Tomato42
Unhappy

Re: Trust, which trust?

it's as if users already weren't trained to click through all the cert warnings by corporate networks and home routers.

3
0

Secure web? That'll cost you, thanks to Mozilla's HTTPS plan

Tomato42
Boffin

Re: The only upside I can see...

actually, most sites will get faster after switch to HTTPS as the traffic won't be inspected and analysed by everybody on the way

see https://www.httpvshttps.com/

0
3

Why voice and apps sometimes don't beat an old-fashioned knob

Tomato42
Coffee/keyboard

Re: New fashioned knob

"Puzzled Happy Face with Eye Twitch."

damn you, I'm in stitches!

1
0

Docker Hub images buggy and vulnerable, say researchers

Tomato42
Facepalm

I'm surprised that it's only 30%. I would have put this closer to 30% not being vulnerable.

Developers don't care for security, they just want their apps to work.

Icon as the whole Docker idea makes me do that.

0
0

Beware Red Hat interviews: You'll pay for coffee, lunch and fuel

Tomato42
WTF?

Re: Sounds appropriate...

@AC 28 May 2015: Last time I checked Red Hat was still paying salaries to all employees and contractors... and then releasing that work for free under OSI approved licenses...

20
0

IEEE's prescription for med-tech crowd: preventing hacks is better than a cure

Tomato42

Re: So of course they will do the reverse

you forgot to add that will also run Linux 2.2 or other as ancient OS

0
0

Microsoft: Free Windows 10 for THIEVES and PIRATES? They can GET STUFFED

Tomato42
Stop

Re: Waiting for the genuine pirated version

you missed the part where he is the paying customer, and as a paying customer he gets worse experience than a pirate

5
1
Tomato42
Linux

Re: Where's my checksum?

if you have iso md5 or sha1 sums, you can record them on read only media and then use a known good OS (this 5 year old Linux live CD will do fine) to verify it on an airgapped PC

similarly with the files, just switch the read only media to a disk with installed system behind a read-only adapter

Linux, 'cause this features come standard there

3
1

Reddit: Gonna SCRUB these TROLLS right outa my hair

Tomato42
Alien

as Chozo said, this doesn't help for canvas fingerprinting

0
1

Blocking pirate sites doesn't weaken pirates say Euroboffins

Tomato42
Facepalm

well, how about the distributors providing a site with half as much of content in a single place that I can watch on demand on any device of my choosing, without problems with stupid DRM

most of Europe doesn't even get Netflix, yet alone Netflix with the same content as in US

19
0

You have the right to be forgotten 41.3 per cent of the time says Google

Tomato42
Alien

YouTube

With search results they are precise to a single comma placement, but with YouTube they are fine to comply to all the shotgun fired DMCA takedowns, even if the claimed reason is they include barely audible music in public domain.

If you ever wondered who Google does respond to...

3
0

Enjoying the Spring? Microsoft has 13 ways to fix that

Tomato42
Devil

Bug fixes to such an old OS? ha, good one!

0
4

Relax, it's just Ubuntu 15.04. AARGH! IT'S FULL OF SYSTEMD!!!

Tomato42
Stop

Re: systemd? Do not want.

do you want a Pentium Pro with them, or those MMX extensions are too newfangled too?

3
11

Mozilla to whack HTTP sites with feature-ban stick

Tomato42
Boffin

Re: Eeejits!

"What are these few basic checks that can make a self-signed certificate trustworthy and give full confidence to all your visitors?"

Those are the same checks that regular certificates from "big names" do - check if the email comes from [email protected] or [email protected] or that you can place a file with specific content on the server. All domain validated certificates require you to have control over that only.

The certificate doesn't mean that the content is trustworthy or that the content comes from a given entity (unless it's a green-bar-enabling EV certificate). It just says that the same people that controlled the domain at some past time are the ones that are controlling the connection you are doing right now.

0
0

Zuck'ed up: Facebook opens up free internet in India – but bans HTTPS

Tomato42
Joke

Re: Data gathering and ad insertion

The mineshaft^W evilness gap!

1
0

Stubborn 'won't fix' Google U-turns on Chromecast vid judder twitching-eye blunder

Tomato42
Joke

It's snowing in hell, obviously

1
1

Good luck displacing Windows 7, Microsoft, it's still growing

Tomato42

Re: Windows 7 is popular because it is easy to pirate

Except the "given away Win 10" is actually a 1 year trial copy

5
5

DDoSsers use reflection amplification to crank up the volume to 100Gbps+

Tomato42
Facepalm

"cloud hosting"

also known as "hosting"

11
0

Page:

Forums