* Posts by diodesign

1202 posts • joined 21 Sep 2011

Page:

Win 95 code gaffe nearly made Stuxnet Suxnet, say infosec blokes

diodesign
(Written by Reg staff) Silver badge

Re: Re: Luck, or Unicode? Neither - just accurate coding to the API.

Sure, but the point is: we were told this worm would try to install itself on Windows 9x, when the shown dwPlatformId check clearly stops that.

C.

0
0
diodesign
(Written by Reg staff) Silver badge

Re: Interesting bug. Too bad it wouldn't have had the results described.

Indeed – we've added a bootnote.

C.

0
0
diodesign
(Written by Reg staff) Silver badge

Re: Luck, or Unicode?

Thanks, fellas. We took a closer look at the code – and something's not right. We've added a bootnote.

C.

1
0

Windows 10 Device Guard: Microsoft's effort to keep malware off PCs

diodesign
(Written by Reg staff) Silver badge

Re: Kernel has control

"Of course, the kernel can stop the Device Guard VM and replace it with another."

No, that's not possible according to Microsoft's design. Read the article again, please, I think you missed an important point.

There's an always-on hypervisor, which runs under the kernel and Device Guard. Device Guard is allocated its 'secured' corner, the kernel gets the rest. The kernel controls the vast majority of the machine as a result, but the barrier between the kernel and Device Guard isn't controlled by the kernel. That separation is enforced by the hypervisor.

I didn't want to bog down the story with an OS development 101 class, so I kept it simple. But I think it's all clear if you read it through.

This is all in theory: as linked to in the article, previous secure execution environments on other platforms have been popped by bugs in the interface between the two sandboxes.

C.

13
0

FBI alert: Get these motherf'king hackers off this motherf'king plane

diodesign
(Written by Reg staff) Silver badge

Re: Either

This is also the same FBI that thinks North Korea hacked Sony Pictures.

C.

28
1

One small shot for Man, one espresso maker IN SPAAACE: Dragon snatched by ISS

diodesign
(Written by Reg staff) Silver badge

Re: No cappucino of course

That's a hell of a first post, artificial bitterness. Welcome aboard!

C.

4
0

Google drives a tenth of news traffic? That's bull-doodie, to use the technical term

diodesign
(Written by Reg staff) Silver badge

Re: Whatever you wish to measure, you will

Sorry for any confusion: when we say search traffic, we mean people searching for things like "hp notebooks", and Google pushing news articles about HP netbooks to the top of the results. People click on those, and that's your traffic.

For example, if you Google search right now for "Nvidia's GTX 900" the top hit is The Register's article on the open-source Nvidia Linux driver faff. If you search for "Miliband Cameron poll" you may get a Guardian article about the UK election campaign. That's search traffic. A stupid number of people use Google so getting even a tiny slice of that each month is valuable to publishers.

Ultimately, it's about ads. You could shift 50 million page views a month but if you can't extract any ad impression cash from that then you're just another VC-funded blog burning through money.

C.

3
0

Someone PLEASE stop patent trolls' stroking their favorite tool, cries Google and friends

diodesign
(Written by Reg staff) Silver badge

Re: ratfox

Microsoft isn't on the list – sorry.

C.

2
0

Nvidia's GTX 900 cards lock out open-source Linux devs yet again

diodesign
(Written by Reg staff) Silver badge

Re: JustNiz

"I actually am a professional Linux dev"

Brilliant – post the URL to your software's bug tracker so I can file some bugs that don't exist. It's only fair – you lied about our headline, I get to make stuff up about your project.

C.

24
13
diodesign
(Written by Reg staff) Silver badge

Re: JustNiz

Sigh, the article + headline are fine. If you don't care about software freedom, fine. But some people do.

C.

36
6
diodesign
(Written by Reg staff) Silver badge

Re: Terminology issue?

My understanding is that the firmware must be uploaded each time to the card when the driver starts. If this firmware isn't present or signed, it breaks.

Grep this page for firmware: http://nouveau.freedesktop.org/wiki/InstallDRM/

C.

6
0

Videogame publishers to fans: Oi, freetard! STOP RESURRECTING our dead titles online

diodesign
(Written by Reg staff) Silver badge

Re: very fair and balanced

BryceP gets it. We're rude about everyone. And Google has given the foundation a million dollars here or there. Small beans for Google, but a big chunk for the EFF.

And I'm speaking as someone who thinks the EFF mostly does good. But giving people a shoeing is why we're here.

C.

7
1

Why is nobody here?

diodesign
(Written by Reg staff) Silver badge

Re: Why is nobody here?

Everyone's in the article comments, and perhaps not aware separate forums exist. Or everyone's too shy to talk ;)

C.

0
0

Urine for a treat this Monday, ISS 'nauts: SpaceX to launch pee-powered coffee pot

diodesign
(Written by Reg staff) Silver badge

Re: Friday... beer o'clock.

Yeah, well, pee-powered coffee pot was too good to pass up.

C.

4
0

comments moderation or censorship?

diodesign
(Written by Reg staff) Silver badge

Re: Re: Censored too

Email corrections @ theregister.co.uk if you spot any issues with stories, ta.

C.

0
0
diodesign
(Written by Reg staff) Silver badge

Re: comments moderation or censorship?

"This is a pure censorship. Shame on ElReg!"

PS: You don't understand what censorship means. Read this.

C.

2
0
diodesign
(Written by Reg staff) Silver badge

Re: comments moderation or censorship?

"It's unacceptable, ElReg!!! Comments now are being censored?"

It's absolutely acceptable. Our house, our rules. We see nothing wrong with curating comments that appear under our articles.

You're always welcome to email our writers if you feel your opinion isn't being heard.

C.

1
1

Who is the fastest-selling phone maker of ALL TIME? Samsung? Apple? No, it's Xiaomi

diodesign
(Written by Reg staff) Silver badge

Re: Register spin..

No spin – just pointing out that the mobile world isn't just Apple, Samsung, Blackberry and Nokia. I've made it super clear in the story that we're talking about online sales.

C.

1
0

Intel, Cray bag $200m to build 180PFLOPS super for US nuke boffins

diodesign
Silver badge

Re: Coincidence

Yeah, we're on it...

C.

0
0

Marvell: We don't want to pay this $1.5bn patent bill because, cripes, it's way too much

diodesign
(Written by Reg staff) Silver badge

Re: Blasphemy

Changed the headline to make it slightly shorter (for design reasons, layout nerds; it now fits in just two decks in the article view). I'm pretty sure your omnipotent deity can cope with an enterprise tech newspaper using his son's name flippantly.

(Original headline.)

C.

3
1

Bone-tastic boffins' breakthrough BRINGS BACK BRONTOSAURUS

diodesign
(Written by Reg staff) Silver badge

Re: Biological accuracy

Uh-oh, here comes the fun police.

It's a couple of grown dinos skinny dipping on a warm summer's day, officer.

C.

25
0

Mobile 4G spectrum investors actually spent $12.4m on walkie-talkie frequencies – US SEC

diodesign
(Written by Reg staff) Silver badge

Re: Peter2

Your wish is my command. I was too busy chuckling at the thought of some poor sods spending $12.4m on two-way radio frequencies.

C.

1
0

Popular crypto app uses single-byte XOR and nowt else, hacker says

diodesign
(Written by Reg staff) Silver badge

Re: Unclear

"Not sure where the AES128 comes in."

I believe the app makers are saying AES128 is used for messages, contacts, call logs and other things are encrypted using AES with a 128-bit key. But in the hacker's test, a simple PNG file was 'encrypted' using a single byte 'key' and plain XOR. And only the first 128 bytes of the PNG. Bizarre. So maybe images aren't encrypted in any meaningful way?

I've tweaked the story here and there to make it a bit more clearer.

C.

3
0

Don't be stiffed by spies, stand up to Uncle Sam with your proud d**k pics – says Snowden

diodesign
(Written by Reg staff) Silver badge

Re: YouTube Error

Works for us in northern California – sorry.

C.

0
2

Bloke faces 25 years in the cooler for upsetting Thai king on Facebook

diodesign
(Written by Reg staff) Silver badge

Re: Warning to The Register

"your whole domain will get blocked completely in Thailand"

Our global readership is increasing year on year, but I suspect it is not being propped up by Thailand.

Sorry, sorry – I mean – excellent April Fool comment :-)

C.

7
0

The internet IS a series of tubes. Kinda: A Reg 101 guide to cabling

diodesign
(Written by Reg staff) Silver badge

Re: Re: Errrr

Thanks for the corrections. I've been through these with the writer and a second source, and made tweaks. Not every change you've suggested has been made, mainly because they're outside the scope of this intro to cabling, but I hope all the factual problems have been fixed up. Let me know if not.

It's worth pointing out the problems caused by a misplaced 'the' changing the meaning of a sentence:

"Unlike the other Ethernet standards, 10GbE provides the only full-duplex, point-to-point links for connecting network switches"

v

"Unlike the other Ethernet standards, 10GbE provides only full-duplex, point-to-point links for connecting network switches"

C.

3
0

Europe could be drowned in 'worthless pop culture' thanks to EU copyright plans

diodesign
(Written by Reg staff) Silver badge

Re: So... The Reg editorial line is in favour of geo-blocking? Didn't see that one coming.

Chill out, mate. It's Friday.

C.

(PS: We don't do 'editorial lines'. And the above article is a comment piece.)

0
3

Bye bye, booth babes. IT security catwalk RSA nixes sexy outfits

diodesign
(Written by Reg staff) Silver badge

Re: Levente Szileszky

Keep digging.

C.

3
1

Google-gate: 'Toothless' watchdog FTC nibbles furiously on journalists

diodesign
(Written by Reg staff) Silver badge

Re: Mark 85

We do it to annoy you.

C.

7
0

Snowden dump details Canadian spies running false flag ops online

diodesign
(Written by Reg staff) Silver badge

Re: Wow!

Meant blobs, blocks of data, not literal bits :P

C.

2
0

New Forum Wishlist - but read roadmap first

diodesign
(Written by Reg staff) Silver badge

Re: BBC has just stolen el-Reg's website design!

Where do we send the consultancy invoice?

C.

0
0

Winning a brand new BOFH T-Shirt is as simple as...

diodesign
(Written by Reg staff) Silver badge

Re: Clean Desk Policy!

Proof that our London office is very shiny (and posh).

C.

1
0

Kaspersky Lab hits back at Bloomberg's Russian spy link hit piece

diodesign
(Written by Reg staff) Silver badge

Re: Bloomberg

Kaspersky (the bloke) has written a long response to Bloomberg.

C.

6
0

Hackers prove security still a myth on Windows PCs, bag $320,000

diodesign
(Written by Reg staff) Silver badge

Re: Destroy All Monsters

The Windows kernel does font parsing in ring-0 on x86. Register passim

C.

0
0

AMD, ARM, Imagination, Samsung alliance publish official shared GPU-CPU blueprints

diodesign
Silver badge

Re: Pete H

Very smooth. I mean external buses, or separate interconnects between on-die components. There will always be some kind of bus between the RAM and whatever is reading from or writing to the RAM, but the HSA people want to do this with one cache-coherent bus and one portable programming model.

One thing springs to mind is bandwidth: jamming everything on the same interconnect may be a problem, so I'll look into that. The specification allows you to break up the physical memory into pools if you really want to, as long as you stick to the standardized programming model.

C.

7
0

Sir Terry remembered: Dickens' fire, Tolkien's imagination, and the wit of Wodehouse

diodesign
(Written by Reg staff) Silver badge

Re: Clevew twap?

No, I just left my proffreedng skills in the glovebox this morning. It's been fixed :(

C.

3
0

Australians! Let us all rise up against data retention

diodesign
(Written by Reg staff) Silver badge

Re: Two-way Street. NOT!!!!

"Even though the title says Austrailians... this applies the world over."

This article was written for our Australian/APAC audience in mind, but I felt it was worth extending to our wider readership so I opened it up to everyone to see.

For context, Australia's leaders are considering retaining people's communications metadata.

C.

3
0

iTunes snafu: DNS fail borked Apple's app & iTunes stores for 10 HOURS

diodesign
(Written by Reg staff) Silver badge

Re: Won't cost them much...

But think of the lost impulse buys! :)

I've certainly woken up after an in-depth summit at the local bar and discovered unexpected albums and software purchased on my iThing. I mean, who would buy 3 hours of TV theme music when sober?

C.

8
0

Intel gives Facebook the D – Xeons thrust web pages at the masses

diodesign
(Written by Reg staff) Silver badge

Re: When is a SoC not a SoC? When it's a Xeon D-1500

Fair points. But, and playing devil's advocate here, what's the difference, really? Whether it's discrete, SiP or SoC, it still looks the same to software, even low-level code.

I meant to put in the article (and TPM on our sister site The Platform mentions it) that it's not truly a SoC (like a bunch of ARM cores with an LCD controller and USB and power management glued alongside in a single package) but I forgot, probably because it's not that important.

I just don't think it really matters, personally, but I'll add a tweak to this story anyway. I just worry this affair has a whiff of holy war about it.

C.

0
0
diodesign
(Written by Reg staff) Silver badge

Re: Errr - cooling?

Yeah, that's up to 400W a sled.

C.

0
0

Everything moderated now?

diodesign
(Written by Reg staff) Silver badge

Re: Everything moderated now?

Yes, you're in a sin bin.

C.

0
0

Ouch! Google crocks capacitors and deviates DRAM to root Linux

diodesign
(Written by Reg staff) Silver badge

Re: Desktops don't have ECC

"laptops use low power DRAM"

I've tossed that into the story. FWIW Intel does do desktop mobos with ECC support.

C.

1
0
diodesign
(Written by Reg staff) Silver badge

Re: “On the software from” ?

It's been fixed. Click on some ads and we'll hire more proofreaders :-P

There's always corrections@thereg if you want to point out typos. We don't have time to read every comment, so those emails are appreciated.

C.

16
0

Chewier than a slice of Pi: MIPS Creator CI20 development board

diodesign
(Written by Reg staff) Silver badge

Re: No love for hardkernel's ODROID range?

Yeah, I guess supply is an issue. It's also what to do with one of these ODROID SBCs in a way that can stretch to 2,000+ words, personally speaking.

I bought a Pandaboard and got burned when TI dumped OMAP, so I'm hesitant to trust another manufacturer (outside the usual) unless I've got an interesting project or two for it.

No, not a media center (I don't own a TV). No, not a NAS. I don't have a home network to speak of.

C.

0
0

Grab your pitchforks: Ubuntu to switch to systemd on Monday

diodesign
(Written by Reg staff) Silver badge

Re: More research needed

Tweaked story to make this clear systemd is in Debian Testing. Don't forget to email corrections@theregister if you spot anything wrong - you'll experience massively lower post-publication correction latency.

C.

6
1

Litecoin-mining code found in BitTorrent app, freeloaders hit the roof

diodesign
(Written by Reg staff) Silver badge

Re: "buying that Blu-Ray in the first place"

lol u mad???

C.

11
10

FREAKing hell: ALL Windows versions vulnerable to SSL snoop

diodesign
(Written by Reg staff) Silver badge

Re: A different Freak?

Internet Explorer in the Windows 10 Preview and Windows 8.1 was/is flagged up as vulnerable on freakattack.com. It is the same problem. Microsoft warns:

"Our investigation has verified that the vulnerability could allow an attacker to force the downgrading of the cipher suites used in an SSL/TLS connection on a Windows client system. The vulnerability facilitates exploitation of the publicly disclosed FREAK technique, which is an industry-wide issue that is not specific to Windows operating systems."

C.

4
1

VMware sued, accused of ripping off Linux kernel source code

diodesign
(Written by Reg staff) Silver badge

Re: A few nitpicks

Just to be clear: this isn't about Busybox, and the article doesn't mention Busybox. It's about Linux kernel source code (drivers, specifically).

As for violating copyright law versus violating the GPL, I don't think the article's wording is confusing.

C.

2
2
diodesign
(Written by Reg staff) Silver badge

Re: interesting

Very good question. One way is to guess or work out the version of the Linux kernel allegedly used by Vmware in its vmkernel, compile that Linux kernel for x86 and compare common blocks of code between the two binaries – looking for shared function signatures.

It's happened in the past with Linux: people who spend hours looking at compiler output can spot similarities in other code. Obviously, there will be some small blocks that are the same (start and end of similar functions, for example), but chunks of copied code are easy to spot.

That's just one way. But essentially, you don't always need the source code. Binary analysis is possible.

C.

17
0

Canadian bloke refuses to hand over phone password, gets cuffed

diodesign
(Written by Reg staff) Silver badge

Re: CAN$25,000 (US$19,900)

Guys, I did add a £ conversion. We still love you.

C.

13
8

Page:

Forums