861 posts • joined 31 May 2011
There is also a 64-bit version of Chrome for Windows, but so far it's optional. The Chrome download page defaults to the 32-bit version, even for users running 64-bit versions of Windows.
You do not need admin permissions to install Chrome on Windows. It has crap memory management in Windows (Open multiple tabs and watch its footprint increase. Close all but one and watch as nothing happens.). It's almost as if it was designed for another OS entirely...
Re: ...the ciders behind the project...
I asked the author if he was buying when I sent a correction. It's worth a try...
Re: "new memory related functions which are not fully compatible with Avast."
The problem being there's a lot of clever developers that find undocumented and unsupported ways to make their program work, which Microsoft have no way to know about, and can't test against.
This is exactly what happened with Adobe PhotoShop a number of years ago. MS patched a flaw in their memory management that Adobe was taking advantage of and suddenly PhotoShop started crashing.
As far as Avast acting like malware, well what's in a name? Arrr!
Re: Who dunnit?
I just can't get my head around the idea that a government that cannot put together a functioning web site on schedule might be credited with something as complex and professional as this is supposed to be. Perhaps its authors might have been better employed in getting healthcare.gov up and running.
Q: What would Avon Do?
So let me get this straight, you're giving us a printer with ... a web interface which was probably developed as a prop for Blake's 7...
A: Stick the printer and sales droid behind a light drive immediately prior to ignition.
...to create a new type of memory we call ‘write-once-erase’.
New memory to be called WOE? Does not sound like the beginning of a great marketing campaign to me!
Re: Then we're fucked
we will much sooner run out of the resources to built the renewable shit than run out of eg nuclear fuel we have a 20k+ years of supply,
One of the renewables that almost never gets brought up in these discussions is wood (or other vegetable sources). We've used it for more than a few millennia and have worked out most of the issues associated with it. There are a few wood-fired electrical plants out there and they seem to be doing reasonably well. To be sure, you have a much better ability to produce more energy in less area with nuclear power, even if you throw in waste storage, but for those who are ideologically opposed to this and want to push renewable sources, why not at least bring a sane-ish argument to the table?
The world we are moving to is one where there is no anonymity in what we spend our money on.
Yes, alas! We should be wary when our governments push the demise of cash. As flawed as the current set of cryptocurrencies are on a number of levels, they offer a glimmer of hope in this area.
Re: fat vs terrorism
But think of the TAX benefit the NHS benefits from every time the lard arses go into Mcdonalds and buy their burger and fries.
Yes, I guess we know how to tax WMDs (because it's not food that's sold at Mickey D's).
Re: Clarification Please @AC
I believe you missed at least part of my point. I believe Americans should learn about other countries, their people, their cultures, as well as both the good and bad each have to offer. It's not possible to learn everything about every place, but we should strive not to be completely uneducated.
Nice rant, though, Mr Pott. If you will excuse me, I feel the need to look up some things (Oblast, Krais, et cetera).
Re: Clarification Please @AC
Why should we learn American political acronyms?
Same reason Americans should know the difference between MP and PM.
Re: Sorry, but....
Solar System sun circles that centre of the galaxy at around 483,000 miles per hour (774 km/h) 5,621,217 bn/h, dragging the planets with it.
The planets are part of the Solar system, so they cannot be dragging themselves with themselves. Fixed that for you.
Re: The Interesting Thing...
That's good to know. Thanks for the explanation.
Re: The Interesting Thing...
I haven't had any experience with Docker as, alas, I mostly work with MS products these days. This is happily soon to change, though. I did a quick dig through the Docker web site and hoped that someone might answer a question. The diagram comparing VMs with "Dockerized" apps seems to directly compare the hypervisor with the Docker Engine. This would seem to imply that the containers would be kept separate in all ways as VMs are (at least in principle), but the documentation indicates there is a way to tie Docker containers together. This looks like it is a typical development tool in that it puts ease of use ahead of basic security concerns. Am I missing something here?
Re: Sorry wrong number
I would think that there would be at least as great o potential for mischief using the same numbers with a different area code, especially in areas that have multiple area codes. This is also true for 800 numbers as there are multiple toll free codes from which to choose.
Re: Stop signs at junctions.
Except Yield is give way not stop. Stop signs saying, you know, stop.
Perhaps the comment was intended to address the differences in "driving style" between regions. For practical purposes, all three are considered equivalent* depending on where you find yourself driving.
* Stop = Yield = Give Way = Just flip everyone off as you cruise through the intersection
Re: To quote Cold Lazarus
...there must be a way to make what these people stand for spell S-H-I-T.
I believe that is most likely going to happen when the Keystone pipeline legislation is coupled with the drive to legalize pot in this country in order to get both through Congress. Perhaps something along the lines of the "Good Oil - Oh Dude, So High I Tingle" act. Yes, that's GOOD SHIT.
Re: "There are ten million viruses in a drop of sea water"
My first thought was to wonder why they are looking in the sea water for the culprit virus rather than an infected starfish. After all, they should be easy to spot with no arms.
I don't that means what she thinks it means
She said that there is "no evidence" that the information has been accessed... in any way...
So how, in fact, did it come to light that the data could be accessed without someone accessing it? Skip the Guinness and proceed straight to whiskey.
Re: And thats the end of the fitness tracker market then
Who would want to buy/wear such a device daily if it means...
Because they are not being told that up front and many people live in denial. It's not like FB or Google (which FitBit uses) go out of their way to let you know the extent they intrude upon your privacy. Meanwhile, people by the millions willingly give them access to all sorts of personal info. Too, the marketing for FitBit pushes points about sleep apnea but not so much on how your personal data is transferred, archive, encrypted, sold. I am a bit disappointed, though, as I had predicted the first time FitBit would pop up in court would be for a divorce case.
As a simple rule, if the data leaves your device (any device), it will be harvested and used by at least one other party.
Re: Paradoxical Satire
On the other hand, I know of more than one organization that have opened their respective firewalls to FB and similar
time wasting social media sites in order to monitor their employees' posts. Despite the prominent banner being displayed before logging in, there are many users who don't realize they are essentially granting access to their various accounts to the boss.
Just because everything needed to complete fraudulent transactions were not stolen from one source does not mean that the remaining bits cannot be or have not been pulled from another source... or guessed. This appears to be a case of failing to get a basic security concept and then belligerently defending the mistake. Individual pieces of sensitive information can be assembled from a variety of sources. On their own, they may not do any harm, but together they can be used with great effect.
I would not look for any announcement on the actual outcome in terms of accounts hacked, but I am happy I do not count as one of their customers!
Re: What are they thinking?
What? I think you're missing the difference between fiscal conservative and fiscal liberal. Fiscal conservatives want to reign in both taxes and spending. Fiscal liberals are more widely known by their "tax and spend" labels.
On the contrary, I am quite aware of the differences between and among the different camps. You either missed or ignored the irony in my comment. From yours, I would guess you style yourself a fiscal conservative. Play the devil's advocate for a moment: explain the point of taxing without spending. Too, the preferred method of the conservatives in this area is to supposedly reign in spending by reducing taxes (look up Starve the Beast). Reducing spending is never a popular cause, so it is seldom approached directly.
Re: What are they thinking?
Boehner (R-Ohio) had been among the critics of the bill, funnily enough.
For those outside the US, Congressman Boehner is a "fiscal conservative." This means that he wants to reduce taxes so that the government will operate at an unsustainable deficit. This is in stark contrast to the "fiscal liberals" who want to achieve the same end by the socially reprehensible method of spending more than the amount brought in by current taxes. By alternating between the two camps, the American people have managed to achieve the stated goal with close to maximum efficiency.
Re: Where are the frickin' laser beams when you need them?
I suspect this would have exactly the opposite of the intended effect as the ice would be apt to sublimate instead and push you away from the comet.
The bottom line?
A broader scope of the NIS Directive risks undermining the law’s ability to protect what really needs protection.
Why is it that if a physical business gets robbed, there typically is no problem reporting the incident to the authorities but when they are hit online odds are good they will not only fail to report it, but will instead work to cover it up? I find this genuinely confusing,
The Internet Was...
...promoted as "a forum for a true diversity of political discourse, unique opportunities for cultural development, and myriad avenues for intellectual activity." It's hard to imagine anyone could write that with a straight face in 2014.
Just add "and pr0n" to this and any similar statement and you will get nods all around.
Good article and good discussion.
What's so neat about it?
California law still applies on private land. It does not, however, apply on federal properties.
"There should be no toll roads on the information highway,"
...in my state, there are several large highways that are converting (or have converted) over to Toll Roads owned by foreign agencies because the states can't figure out how to maintain them.
I truly loathe toll roads, but the comparison is not apt unless you consider that pretty much the entire internet is currently made up of toll roads. It seems intuitive that in today's world, an ISP occupies the same place in society as telcos did 25 years ago. The only thing preventing them from being regulated in the US as such is politics (that is to say, "money").
So how many wee little planets should we expect to buy diapers for? Seven? Eight?
What's the equivalent of password recovery?
User: Hello. I can't log in to my e-mail account.
Tech: OK. So where are you?
U: At home, where I normally read my e-mail.
T: Right. Then, what are you doing.
U: Just sitting here in the chair where I normally read my e-mail.
T: On Tuesdays? Because that can make a difference you know.
U: No, I am normally at work on Tuesdays.
T: Right, so we need to reset your access. I need for you to do the following. Are you ready?
T: OK, I need you to stand on just your right leg. Got it?
U: Uh, yeah.
T: Now, while you do that, I need you to hold your phone to your right ear with your left hand, but you have to have your left am behind your head. Got it?
U: Hold on a sec. Yeah. OK. Got it.
T: Now hop up and down while you hum your favorite movie's theme.
U: Uh, sure. Hmm-hmm HMM-hmm-hmmmmm...
T: Great. Try it now.
U: (panting) Let's see... Nope. Still can't get in.
T: Right. Let me try this <clickety-click>... Try it now.
U: Oh, it works. Great! Thanks for the help
T: My pleasure. Now, if you don't mind, please stay on the line for a brief survey rating your satisfaction with your service today.
Re: Don't piss yourself, iOS-device owners
So what happened is that these people went to a website that is none to host pirated software; that means anything they get is deserved.
Blame the victim much? While I have no sympathy for these folks, it has once again been shown that simple greed can defeat security. No surprises there, but if you think that it is as simple as, "They got what they deserved. Move along. Nothing to see here," the perhaps you should reconsider. The black hats are upping their game and will eventually find a way to get past security controls without user intervention. Between now and then, I would expect incremental work toward that end. Why wait? Fix the underlying issues now and we will have a much better measure of security.
The mess that is the US legal system, with States competing to be dodgy in different ways...
You obviously are unaware of the fact that US federal law can be just as messed up as anything the states provide. Your suggestion seems to imply that the interests of people living in a given region should be superseded by those of multinational businesses. I realize I am engaging in a bit of sophistry, but you should have stuck to copyright as an issue, which is under federal jurisdiction in the US.
It's only a bug if it's not Apple, right?
No, no, apples get worms!
Re: But against the backdrop of your British readership...
Buying a WW2 era souvenir might not be ridiculously difficult but getting the ammunition will be.
Hardly, at least not in the US. I bought a .303 over 20 years ago and had no problem then. It has only gotten easier, if more expensive since that time. I have looked into other vintage weapons as well and have seen pretty much the same.
Re: A simply secure OS ?
I use No Script in a Firefox browser running on a Linux distro. That is as safe as I can make things...
You might try running Lynx on Qubes OS.
Re: Some perspective on this
That was Alan Shepard, according to Gene Kranz in Failure Is Not an Option.
P&C No More
Look, us Windows admins happen to enjoy the point and click interface, and not having to learn too much more than the average user.
Such a shame about Windows Server 2012, then. Not so much with the pointy-pointy-clicky-clicky. You are correct about the rest, of course.
Re: Give us teh powers!
This sort of logic is painful. By definition, everything that X uses to accomplish X's goals helps X. No weasel words, just circular logic. He might have argued his case that extraordinary threats require extraordinary measures, but that they should only be applied to those same threats and no further a lot more successfully. That they maintain a bug collection to use in support of their mission makes sense and should come as no surprise to anyone. That they are discussing this publicly is better than what was done before, even if the change was thrust upon them from outside. Perhaps the following disclaimer should be appended to all such statements.
Warning: Consumption of the previous statement requires a high level of sodium consumption if unaccompanied by a dose of Kool-Aid. Please use caution.
Re: "a less sever fine that didn't run the risk of putting the company out of business."
The article mentioned that the amount of the fine was based on the company's situation so presumably the idea was to allow the company to continue but be proportional to the size of the company. I think it might be effective to make fines of this nature based on a simple percentage of overall corporate income (both on- and off-shore). and multiply it by the total number of times they have committed the act to be punished within the past year. Extend that check an additional year for each recent violation and we might have a workable way to discourage misbehavior of this sort. Fines might be used to purchase some technical expertise for the company to keep it from happening again in the case of a second offense.
Re: Where does this leave Box?
It's like MS is acting like a competitive business again. I wonder how long it will be before they revert to type and buy up DropBox.
@AC Security Design
But a secure vehicle design does away with the need for an IPS.
That's like saying, "A secure house design does away with the need for a household security system." Vehicles literally have a lot of moving parts. Because of this, the complexity makes eliminating all problems highly unlikely. To illustrate this, I invite you to do a search for "recall" paired with the make of the vehicle you drive. Having a layered approach to security would seem to be important in the automotive world, too.
It Just HHurts
The company has yet to acknowledged [STET] a breach, although customers claim it has reimbursed stolen credit to individuals reporting theft.
Perhaps if they don't make eye contact, this will all go away. This program is supposed to entice customers to use their services. Instead, the way they have so far handled this should encourage them to look elsewhere. The way to deal with this should be more along the lines of 1) publicly admitting there was a problem, 2) explain what has been and/or will be done to correct it, and 3) restore any points lost by customers before they ask, and 4) give additional points to all of their customers to apologize for any inconvenience they may have experienced (AKA a bribe).
For a customer loyalty program, they are doing an excellent job for their competitors.
Re: That's all well and good...
For, the only truly unbreachable system is the one disconnected, encased in concrete and dropped into an abyssal trench.
That doesn't have the nice simple ring to it that "air-gapped" does. Perhaps we could work this as and acronym...
Disconnected, Encased in Concrete, And iN Trench = DECANT
Perhaps not. As the AC implied, it might end up indicating the information has already been poured out rather than protected somehow by this action.
There is a lot of misunderstanding concerning this vulnerability, at least among the probably non-representative set of admins I spoke with. Most of the confusion seems to be as to whether this is a client or server issue (it is both). This article has a fairly decent explanation:
Re: "the wife"
Alternatively, if you are using "my" are you not implying that there might be some confusion as to whose wife you are referring?
Re: Great steaming hairy...
I work for the art show of a fairly large SF and fantasy convention. We do not allow any photography in our area except in very specific situations (e.g. the artists wanting pictures of their own display area). We ask people to put their cameras away or put lens caps on. Likewise with wearables like Google Glass, we ask that they be put away or have the lens covered (we provide masking tape).
We have more trouble from people getting excited over costumes and trying to snap a picture with their new favorite cosplaying friend than we do with purposeful copying. We do, however, deal with some of the latter. In our case, this directly impacts the artists, unlike what is more common in the movie and movie industries. We had a couple of folks with Google Glass come through this past year, one of whom was nice enough to give us a quick up-close with the product so we could decide how to deal with it in our show.
Re: ... it could “overwrite your entire filesystem”
This tool is also available for Windows machines. I would suspect the vulnerability would be more apt to allow trouble on them than *NIX machines though its use will be far less widespread as it is not part of the default install.
- Vid Antarctic ice THICKER than first feared – penguin-bot boffins
- Antique Code Show World of Warcraft then and now: From Orcs and Humans to Warlords of Draenor
- iPhone sales set to PLUMMET: Bleak times ahead for Apple
- Regin: The super-spyware the security industry has been silent about
- Review Amazon Fire Phone: What's MISSING... and why it WON'T set the world alight