Feeds

* Posts by charlie-charlie-tango-alpha

55 posts • joined 28 Jun 2011

Page:

Ex-Tony Blair adviser is new top boss at UK spy-hive GCHQ

charlie-charlie-tango-alpha
Big Brother

it could have been worse

They could have chosen Charles Farr.

0
0

Running OpenSSL? Patch now to fix CRITICAL bug

charlie-charlie-tango-alpha

Re: And this is why you cannot trust open source

Words fail me.

Yes, we certainly need a troll icon.

1
1

Crack CERT warriors arrive to save UK from grid-crippling hack attacks

charlie-charlie-tango-alpha

Re: What's that sound ?

Actually I doubt that they will be paid very much. UK Public servants rarely get rich.

0
2

Rule of law: Turkish court nixes government Twitter ban ... for now

charlie-charlie-tango-alpha

"Everyone is getting Turkey's Twitter block wrong"

There is a very good post over at https://medium.com/technology-and-society/cb596ce5f27 by Zeynep Tufecki. She argues that Turkey is not really intending to block Twitter per se, because the Turkish Administration knows that to be largely futile (and it pushes the populace towarrds using avoiding technologies such as VPNs and Tor to bypass the problem). Rather, she says that Erdogan is attempting to "poison the well" of social media by painting it as a threat to family values in Turkey. She notes that Erdogan has talked about social media's disruption of privacy, and how the foreign companies do not obey Turkish court orders but obey US and European courts.

Well worth reading.

0
0

BT finally admits its Home Hub router scuppers some VPN connections

charlie-charlie-tango-alpha

Take a look at Andrews and Arnold (aaisp.net).

No-one, but no-one should use BT.

1
1

Fine, you can mock us: NSA spies back down in T-shirt ridicule brouhaha

charlie-charlie-tango-alpha

re: where's the GCHQ version?

I got mine from the Guardian offers page at http://entertainment.guardianoffers.co.uk/i-aa-rm001699/g-c-h-q-always-listening-to-our-customers/. My wife bought me the NSA version for Christmas.

Unfortunately, the GCHQ version does actually not feature their logo - more a generic HMG "crown". As another poster has said though, GCHQ's site specifically states that the logo may not be used "inappropriately".

No sense of humour.

1
0

Getting documents all too easy for Snowden

charlie-charlie-tango-alpha

Re: RTFNYTA?

Journalistic licence. And in my view, not unreasonable. When I read the original article last night, my immediate conclusion was "wget".

But whatever the tool, the principle remains the same. An NSA insider, and a contractor to boot, was able to recursively scan and download a bucketload of highly classified documents, including documents from a Five Eyes partner, without any effective alarms going off.

That says an awful lot about the effectiveness of the NSA's security practices (for both technical and personnel security). No wonder they are pissed off.

3
0
charlie-charlie-tango-alpha

Re: wget - The hackers friend

I have deleted all copies of wget from all my systems.

Honest.

1
0
charlie-charlie-tango-alpha

Re: It's a people problem

Plus 1 for that.

In the UK, the police call the "high vis jacket" the "cloak of invisibility". Wear one and no-one looks at you.

3
0

Hipster SDN firewalls can gentrify hypervisor slums

charlie-charlie-tango-alpha

"Aside from the orchestration capability, it also removes the most troublesome parts of running a cloud - network engineers."

Great. I'm really looking forward to hosting a bunch of applications with a "cloud" provider which employs no network engineers. I feel safer already.

2
0

UK picks Open Document Format for all government files

charlie-charlie-tango-alpha

Re: Seen it before

Yep. Back in September 2002 OGC published "Open Source Software: Guidance on implementing UK Government Policy." I wrote it.

And if you look very carefully at the cover of that document you will notice that it includes a picture of a laptop running the (then) popular X11 game called "kill bill".

Nobody, but nobody, in the publication QA process spotted it.

5
0

WHEW! OpenBSD won't CloseBSD (for now) after $100,000 cash windfall

charlie-charlie-tango-alpha

Re: Volenteers != free

"Mind you, the picture at the foot of their home page makes it look like their test servers are in someone's garage!"

They probably are. I understand that TDR runs the build and test servers himself.

1
0

BT network-level STOCKINGs-n-suspenders KILLER arrives in time for Xmas

charlie-charlie-tango-alpha
Big Brother

Re: "strict", "moderate" and "light".

"All I want for Christmas is a VPN connection outside of blighty."

Try openvpn. You can rent a really cheap VPS (less than 5.00 USD per month) in a variety of places other than dear old blighty. With your own VPN to that VPS (running on say, port 443) you are good to go.

1
1

Linux Voice journos hit crowdfunding target

charlie-charlie-tango-alpha
Happy

Oh yes indeed. Because taking a tablet into the bog with you looks a little, shall we say, suspect.......

0
0
charlie-charlie-tango-alpha
Linux

Re: Linux

Despite the fairly obvious troll traits, I was going to comment on (and down vote) your original post. But a moderator quite sensibly removed it.

For some statistics on the relative usages of linux v BSD, take a look at http://w3techs.com/technologies/comparison/os-bsd,os-linux. BSD is not even in the running in an environment (servers) where it could be expected to be used. On the desktop it is not even a rounding error. I log statistics of OS/browser types hitting my website. I don't see any BSD anywhere.

And I note from your posting history that you have an apparently disturbing set of phobias. Seek help.

2
0

I thought I was being DDOSed. Turns out I'm not that important...

charlie-charlie-tango-alpha
FAIL

If you have to ask. then you wouldn't understand the answer.

14
18

Thought you didn't need to show ID in the UK? Wrong

charlie-charlie-tango-alpha

Royal Palace security

"You will also need strong identification to get into a royal event such as a Buckingham Palace garden party – Palace police are quite strict on checking ID"

I disagree.

Several years ago I was doing some work with the Royal Palace on behalf of the UK Gov Dept I then worked for. Entry to the site was controlled by Police Officers who insisted on two pieces of identfiication. My official pass sufficed as one piece, but they needed another. On my first visit I gave them my ID pass and my passport. On a subsequent visit I forgot my passport so the officer on duty asked for an alternative to add to my ID pass. I furtled in my wallet, but all I could come up with (beyond the usual bank cards etc) was a fishing licence. He said, "OK, that'll do, it's an official document."

You can buy fishing licences at a post office.

1
0

So many 'cyberspying hackers' about... and most of you are garbage

charlie-charlie-tango-alpha

kaspersky schmersky

Raiu said "“They are opening stolen documents on virtual machines without any internet connection to avoid exposing themselves that way,”

So how does he know that?

1
0

Watch BLUBBERING BILLION-DOLLAR BALLMER: Microsoft goodbye love-gush leaks

charlie-charlie-tango-alpha

At least he didn't sing.

8
0

Leaked docs: GCHQ spooks secretly haul in more data than NSA

charlie-charlie-tango-alpha
Thumb Up

Re: Quoting Terry Pratchett???

Good grief. I agree with Eadon.

0
0

Lego fan constructs Bletchley Park Colossus

charlie-charlie-tango-alpha

Relativity in lego

Very nice. But I think Andrew Lipson beats him. See http://www.andrewlipson.com/escher/relativity.html for example.

1
0

New Google Play terms ban non-store app updates

charlie-charlie-tango-alpha

Re: a plea

"contacted"

8
0
charlie-charlie-tango-alpha
Headmaster

a plea

Please dear Reg, use english in your reporting. The phrase "The Register reached out to Facebook" simply made me cringe. Yes, I am an old fart, yes I am being finnicky, yes I know what you think it means, but it is nonsense. It irritates me almost as much as "going forward" and other such twaddle.

There, I feel so much better now.

11
0

ICO probes Home Office refusal to reveal Snooper's Charter details

charlie-charlie-tango-alpha

Re: The 'request filter' is signature driven

"random data generators, random traffic flows, leave your PC browsing on its own whilst you go to the park"

Interesting idea. Now how, exactly, would you get your PC to "randomly browse" in a way that would look anything other than stupidly robotic and predictable?

0
0

Nationwide Banking off-line

charlie-charlie-tango-alpha
Unhappy

Nationwide Banking off-line

http://www.nationwide.co.uk/contact_us/service_availability/service_availability.htm

Seems to have been off-line for a while. I first tried about an hour ago, but of course it may have been down before that. Mobile banking and payments also down.

0
0

Firewall tech pioneer Gil Shwed: Former teen sysadmin on today's infosec biz

charlie-charlie-tango-alpha
Black Helicopters

interesting snippet

Back when I first installed FW/1, I was puzzled to find that they wanted the external IP address of the device before they would send the licence key (I assumed that the key would be hashed to that address in some way). No entirely happy with that, I stuck mine behind a NAT device so that the external address I gave them was drawn from RFC 1918,

0
0

Obama's new cyber-security tactics finger corrupt staff, China

charlie-charlie-tango-alpha
Black Helicopters

Re: I'm reading that Mandiant report right now....

They are quite well embedded over here too. See http://www.cesg.gov.uk/News/Pages/Cyber-Incident-Response.aspx for example.

0
0

Paper computers: Not mere pulp fiction

charlie-charlie-tango-alpha
Thumb Up

Re: Paper wins

Seconded: http://baldric.net/2011/08/14/in-praise-of-dead-trees/

0
0

Pentagon plans massive surge in Cyber Command staff

charlie-charlie-tango-alpha

Re: Who gives a donkeys...

Actually, no I would not. Not ever.

1
0

Ministry of Fun builds crack team to juice up bumpkin broadband

charlie-charlie-tango-alpha
Facepalm

Re: Bumpkins!!!

You clearly are not from Norfolk or you would know that a Norfolk "boy" is actually a good old "bor".

I, however, do live in Norfolk, and we are not all "bumpkins".

0
0

Linux kernel dumps 386 chip support

charlie-charlie-tango-alpha

Re: 386?

"Linux never supported the 286 or earlier."

Well, the linux kernel didn't appear until 1991 and Linus built it for a 386/486 target (he was playing with Minix 386 and was frustrated with its limitations).

However, somewhere in my loft I still have a copy of v2 of Xenix (an MS licensed version of Unix) dating from the mid 80s which ran on a 286. The earlier version ran on 8086 I believe.

7
0

Liberator: the untold story of the first British laptop part 1

charlie-charlie-tango-alpha
Coffee/keyboard

Check that keyboard

Interesting that your pic of the "prototype keyboard" shows a rather, errm odd, layout. Looks as if someone has been prising off the chiclets and re-seating them.

I had one of these back in the late 80s when I was working in HMT's IT Unit (and shorty before I joined CCTA). It was a rather nice piece of kit. Light, good battery life, excellent screen for its time, and robust too. I used to carry mine around in my briefcase bungied onto the back of my motorcycle. It came loose one day and bounced down the Wandsworth road on the approach to Vauxhall. Brieface a bit battered, but the Liberator still worked perfectly.

I'm note sure the office Lisa would have coped as well.

0
0

Consumer VPN service could be popular as regional paywalls go up

charlie-charlie-tango-alpha
Big Brother

Re: Consumer VPNs Exist?

Yes. If you a re a reasonably savvy consumer (and of course, as a Reg reader you are, right?) For the price of a cheap NAS running debian hanging off your home ADSL router you can set up openVPN and tunnel out through that from wherever you may be. Or you could spend a few more quid and set up the tunnel end point on a rented VPS somewhere. Just check the terms of serrvce first.

1
0

Huawei, ZTE probe showed no evidence of spying

charlie-charlie-tango-alpha

Re: Not Really

"Probably just paranoid (adjusts tinfoil hat), but I do know that about 85% of the intrusion attempts on my various networks originate from China."

No. You mean that "85%" (or whatever) attempts have source IP addresses in Chinese address space. You have no idea whether the /actual/ source is in some other place and is simply using chinese IP addresses as a cover. In the same way you have no idea of the /actual/ source of any DDOS attack - all you see are the multiple IP addresses of the compromised machines which form the 'bot.

"false flagging" is probably more common than most people believe.

1
0

Sites can slurp browser history right out of Firefox 16

charlie-charlie-tango-alpha
Happy

Re: NUMBER of people!

Missed it. But I can never resist the temptation to correct poor grammar.

2
0
charlie-charlie-tango-alpha

Re: NUMBER of people!

Errr. "fewer" people.

Well, someone had to say it.

9
0

GCHQ in new challenge for cyber security wannabes

charlie-charlie-tango-alpha

Re: @YAAc

No. He means PV. At least he does if he is talking about the old vetting system as seems likely .

PV = Positive Vetting.

DV = Developed Vetting.

0
0

UK boffins get £3.8m pot to probe 'science of cyber-security'

charlie-charlie-tango-alpha

Cambridge

Ross is an interesting guy and has some talented co-workers and students. But he is vehemently, and vociferously, anti-spook. So not surprising he is not on the list. Shame really. He might have been a useful counter to the possibility of group think.

0
0

UK govt to KILL OFF Directgov within weeks

charlie-charlie-tango-alpha

Oh the irony

""Moving departmental websites onto GOV.UK will, in due course, realise significant savings for the taxpayer,"

Exactly the same argument was used about binning open.gov.uk (the first single portal into government) following the Gershon review which closed CCTA.

Guess who I used to work for, and what I used to do.

0
0

GCHQ spooks give biz chiefs crash course in thwarting hackers

charlie-charlie-tango-alpha

Wrong

"this latest scheme puts the intelligence services directly in touch with the private sector for the first time,"

Rubbish (or CESG/GCHQ flummery). Both CPNI, and its predecessor organisation, NISCC, have long had direct contact with private sector organisations.

See https://www.cpni.gov.uk/about/Who-we-work-with/Information-exchanges/

2
0

Mr Sulu causes DDoS panic after posting link on Facebook

charlie-charlie-tango-alpha

Re: From the article and comments, we can deduce 2 things;

late 50s...

3
0

LinkedIn users buried in spam after database leak

charlie-charlie-tango-alpha

Re: Idiots

"I would have thought Linkedin would have attracted users with some level of sense"

Now what on earth gave you that idea? It's a social network.

2
0

Google farewells apps in spring clean

charlie-charlie-tango-alpha

Re: How can anybody now justify using Google APIs?

I can lend you a disk drive. But you'll have to source whatever software and OS you used yourself. Now PCK tape would be a bit trickier.

0
0

White House issues privacy warning on CISPA-style laws

charlie-charlie-tango-alpha
Stop

no such thing

"In a closed session Homeland Security Secretary Janet Napolitano, FBI Director Robert Mueller, National Security Agency Director Keith Alexander and Principal Deputy Director of National Intelligence Stephanie O'Sullivan briefed the politicos on the current state of the cyberwar."

What war?

A plea to the Reg if I may. Whilst it might suit the americans (and some people in the UK) to talk about internet based "attacks" as constituting a war, there is no such war and the public is ill served by the media reporting in a manner which suggests there is.

Please stop it.

2
0

New ZeuS-based Trojan leeches cash from cloud-based payrolls

charlie-charlie-tango-alpha

re: You know.....

One upvote from me on that. I wouldn't trust them any further than I can throw an elephant.

0
0

Trojan smuggles out nicked blueprints as Windows Update data

charlie-charlie-tango-alpha
WTF?

Eh? What does that mean in english?

0
0

T-Mobile 'fesses up to secure email ban gaffe

charlie-charlie-tango-alpha

I'm with Mike

Like Mike Cardwell, I too run my own mail server. And for some few months now I have seen exactly the symptoms he describes (my logs show "lost connection after STARTTLS from unknown[178.107.44.76]" for example). But the problem was intermittent and I never got around to sniffing the traffic as I had promised myself I would. The problem is compounded by the fact that I use my own X509 certificates for TLS (so the certs are not signed by a separate certificate authority) and the mail client I use on my phone (k9mail) seemed to have problems with that. So, I wasn't /exactly/ sure that t-mobile was at fault. Now I am. have banged off a complaint to T-mobile via the forum (and pointed out that my contract is shortly due for renewal).

I run my own mail server because I like being in control. If my network provider interferes with my traffic, then I am not in control. So I'll get some PAYG SIMs to try others.

0
0

Christmas headaches? We prescribe a year long course of BOFH

charlie-charlie-tango-alpha

re: Kindle?

I agree. Dead trees make more sense. http://baldric.net/2011/08/14/in-praise-of-dead-trees/

0
0

IT bods to prove their prowess in bed with spooks

charlie-charlie-tango-alpha

professional incompetence

That'll be the same BCS that doesn't understand why you don't send security credentials in email then?

http://baldric.net/2008/09/25/gun-foot-shoot/

2
0

Linux Mint moves to Gnome 3, keeps Gnome 2 MATEy

charlie-charlie-tango-alpha

Xfce is the way to go

Like many others I have shifted to Mint. In my case, LMDE with Xfce. LMDE because it is Debian based rather than Ubuntu and Xfce because it matches the way I prefer to work rather than the way somebody else thinks I should work. And with luck the Xfce guys won't feel the need to fsck with the desktop in version 5.0

0
0

Page: