695 posts • joined 7 May 2012
Are opal cards vulnerable to the same class of attacks?
Re: Maybe incorrect assumption on my part..
No, the best way to fight this is given the failure to encrypt the phone home to randomly send millions of books read (to the point where they cannot differentiate which requests are real)
>Good thing I have no interest in reading e-books. This could've been a problem for me if I did
Oh thank heavens. I was about to ask whether anyone knew whether this would be a problem for Frank.
Re: Statistical Observation
> was the script that deleted all his posts, in fact, run on a windows machine
The site is built using a custom content management system which is written in Perl and filters its input through HTML Tidy. The pages are generated using the GNOME libxslt library. We make substantial use of the excellent DBIx-Class ORM.
The webservers are running Apache, with MySQL for the back-end database and the search engine. Our web applications (search, forums, Reg Whitepapers, Reg Events, etc) are all built on mod_perl. All the software runs on Debian GNU/Linux, chosen for its stability, reliability, flexibility, and especially for its superlative support of remote package management and upgrades.
So my guess is no.
Re: Statistical Observation
EPIC MEMORY FAIL!!!
Re: True Intentions?
If you are talking about the physics involved, then yes, the 2.4 and 5GHz channels over which WiFi operates is a limited resource. Just like a road network, if everyone tries to drive at the same time then no-one will get anywhere quickly, but there are a couple of points that I take issue with:
1. Is it reasonable to expect that the density of WiFi communication is any higher in a hotel environment such as this than it is in a residential building in the CBD?
2. If there is a specific need for a specific set of rooms to be rf pure, then the solution is to build some sort of faraday cage around the room itself.
3. If such active DoS measures are unavoidable (which would be an absolute legal minefield if it reached off premise btw), then the hotel should be providing a ***free*** alternative (guest APs or wired connections), or a lack of availability of WiFi channels should be very clearly stipulated at the time of booking.
Re: A small step in the right direction
Fire with fire!
Find the sales office for these de auth tools and return fire.
Re: I don't get it
I, for one, welcome our meme correcting overlords.
Re: I don't get it
>I'd venture for most people, 500MBps is going to be plenty.
640MBps ought to be enough for anybody.
In your analogy, Google is not the importer. It is an index. Once you click to the link, the content is delivered from the source website. So the source website is the importer.
>Time to show the politicians (and in places like France, that includes the judges) the only language they all understand:
I thought they were using the language of retreat quite well.
No. The rort was to privatise Telstra in the 90s without splitting their retail and wholesale arms.
Re: £58m lost revenues
They need to decide if they sell a product or a licence. If a product then you should be free to do as you like with it once purchased. If a licence, then as a licence holder you should be able to purchase a replacement media or exchange format at (or reasonably close to) cost price.
In simple terms, if you want to force someone to purchase another copy for a format shift, then you are starting that they have purchased something physical rather than a licence.
Also windows since vista. There are basically two reasons to write to disk.
1. A requirement to not lose the data when shutdown or other system crash (including the VM host).
2. Overflow storage where there is insufficient RAM to work in memory (very large datasets).
This solution doesn't solve 1 and if you are using it for 2 then why not just give it that RAM as RAM?
>Have I missed something?
I thought the download links in my comment would suffice as a sarcasm tag. ;)
Deskman is/was always a *Microsoft* powertoy. It is not third party any more than the .net runtime could be considered third party.
Desktops was made by sysinternals but Microsoft bought them out a few years back (one of their more sensible acquisitions) so that is third party in the same sense that Skype or Nokia are third party.
Re: Not with a bang, but with a whimper
>What do you mean...? How else can one access cyberspace...?!?
It is so sad what is happening to the information superhighway.
I think we all know why...
Re: This bendy meme
But will it bend?
Re: Good luck with that
Plus provably secure compiler. Even this can only secure against software bugs (buffer overruns etc). What about side channel attacks? The area of the various chips that heat up effectively leaks information too.
he has a point
I mean, it is only in the last decade that people started to carry pocketable computers that happen to occasionally make phone calls. We seem to forget that before that point in time there was no way to catch criminals. It is only now that crime has been solved.
Re: Very nice -
Just whack bash on there. Then you can sit wherever you feel like.
Re: Don't get too upset
> "guess where I'm calling you from" for hours on end at 30k feet.
I'm on the plane. Hello? Yeah, the plane. Did you hear me? OK what did you hear up to? I'M … ON … THE … PLANE. No, plane. Yes. Anyway, nearly out of credit. I will call you later.
/yeah, that would definitely get old quickly.
Re: What's changed?
If the cell tower antenna is capturing signal from above and responding in the same direction, they are doing it wrong.
Re: Here We Go Again.
>But what if it's not "a little temporary safety," but "the only thing standing between you and utter oblivion"?
I am not familiar with the situation in the UK, but here are the official stats from Australia. You were 45 times more likely to die least year from diabetes than from the last 2 decades of terrorism activities.
It is a threat, but nowhere near existential threat. That is just an absurd assertion. Any 'victories' in a military perspective that any terrorist organisation can have in the West is militarily insignificant (notwithstanding tragic for the families involved). There are regions where terrorism is an existential threat to some populations, but you can't sacrifice freedom to obtain security because you ultimately end up with neither.
so what you're saying is
They're testing it wrong…
Re: Cue stampede of punters
Can anyone confirm which VPN services work on Vodafone?
Windows 'not 8'
Should sell like hotcakes.
Re: How about...
Re: Listen to the same song on FLAC and MP3 - there's your answer
Um, you can't make such a statement without clarifying what you mean by mp3 and what is being played. A 96kbps CBR sounds very different to a 320kbps VBR. Most people could pick the 96. Almost no one could pick the 320 in a statistically significant way in a double blind test.
Re: Self inflicted
>Suddenly, all of those 128 kbps MP3 audio files you grabbed from Napster in the 1990s are garbage to your ears.
I think 128kbps is low enough that most people could pick which is which for some types of music. If you double it to 256 and add some VBR, the difference is physically inaudible to most the population. At 320, you would have a lot of trouble in a double blind test to pick one from the other.
That is not to say that it doesn't sound better to you. We know for example that the placebo effect is real. Someone who is told that a particular medication will help their breathing performs better at altitude tests than control even if the medication is just a sugar pill. I am in no doubt that someone who knows they are listening to a lossless encoding will experience in their brain a better quality of sound.
Nonetheless, your point about 1990s tracks sounding like garbage is correct* but that has little to do with how the music is encoded ;)
* especially only happy when it rains.
Re: Good source material and very good speakers or good headphones needed
>(Most headphones under £50 and most speaker systems under £500 cause far more alteration to the music than a high rate MP3 produced by a reasonable encoder.
Some headphones over £50 are pretty terrible in this regard; not to mention any specific brands that may have been pictured in the article.
Re: I'm safe. I use a Microsoft Windows system.
EPIC MICROSOFT SUCCESS!?
Re: Bash Vulnerability?
>Write this down: You can't inject anything into machine code, which is what your CGI should be made of.
Yes, heartbleed only worked because openSSL is runtime interpreted rather than compiled.
Re: FUD whack-a-mole
>Still no word of JUST ONE commercial site (or device!) being pwned by this one
How do you propose to validate that this bug was the source of the mentioned pwnage? It would bypass the logging. Your server could be pwned without you even knowing. And Apache cgi-bins are just one vector we know of.
Re: How to check?
BTW, I would usually recommend against taking any BASH advice from someone called rm -rf / (although his advice is correct in this instance ;p)
Re: re: simple solution
>We've all got iPads now...
But will it bend?
Re: Is it just me...
I'm waiting for the series "but will it toddler", where various things are put in the hands of a two year old to see how resilient they really are.
That's the stupidest combination I've ever heard in my life! That's the kind of thing an idiot would have on his luggage!
Personally, I prefer "Supercapacitors are like batteries, but more awesome"
You're folding it wrong.
It is not that a 4K frame isn't better than 1080p frame. Of course it looks better paused side by side but you are at normal viewing distance* hitting some seriously diminishing returns.
It is also quite a way to misunderstand how it is that our eyes work. Our eyes track with a central high resolution focal point and periphery low resolution. If something on our periphery captures our attention, our eyes will move to focus on it and our brain magically stitches it together. You have no doubt seen the kids books in the Where's Wally series. If so you will know it can take a few minutes to find him, but if Wally had an animated hand waving at you with the rest of the image still, you would see him in under a second. Our eyes** are very good at picking movement.
In the real world, I would prefer the bandwidth used to better represent the movement in the frame, even to the point of dropping below 1080*1980 resolution briefly during that movement because that would "look better"
* er, that would be my definition of normal viewing distance; not that of my 2 year old.
** technically our brains rather than our eyes
Does anyone else think that 4K is solving the wrong problem? If you are going to provide 4x the bandwidth of 1080p then take a closer look at that 60Hz figure. I would take a 1080*1980@240Hz over this.
Re: Shallow analysis?
>Why can't I download my upgrade for Opera mini from Opera's site, etc.? Opera sure isn't 'spyware is us!'
Check on Settings / security / allow apps from unknown sources.
Then you or an app can download APKs to your heart's content. I personally like the all updates in one spot rather than having each vendor produce their own auto updater, and I find Google's rules for submitting an app for approval far less arbitrary than certain fruity competitors.
Re: Apple being the biggest spammer ever
Be reasonable! Apart from trying to scam you out of your life savings, what has spam ever done to you? They may be bad, but there is no need to liken then to distributors of u2 songs.
If there was a backdoor, as a US based company, could they be under a secret order from a 3 letter agency to not disclose the said backdoor?
Re: Ah, the t'internet of things ...
Iot; a solution in search of a problem.
- Vid Antarctic ice THICKER than first feared – penguin-bot boffins
- Antique Code Show World of Warcraft then and now: From Orcs and Humans to Warlords of Draenor
- Hi-torque tank engines: EXTREME car hacking with The Register
- Review What's MISSING on Amazon Fire Phone... and why it WON'T set the world alight
- Regin: The super-spyware the security industry has been silent about