Re: Vowed to go clean rather than shut up shop. Shuts up shop
I had visions of things like these: http://www.ttfone.com/
1455 posts • joined 17 Jan 2013
I had visions of things like these: http://www.ttfone.com/
"The real surprise is having a spreadsheet tool with access to flash..."
Yes awful, nearly as bad having say a spreadsheet tool that uses Java?
"Its easy to run a stripped down version of a Linux system - less software running then the less attack space."
It's even easier to run a stripped down version of Windows Server - it comes out of the box. It's called the "Server Core" version. Or "Nano" in the newer versions.
"Those victims have little recourse because no state will reissue a new driver licence number"
But what sort of security system relies solely on a short personal number as any sort of protection?! That's ridiculous - the problem is whatever organisation is stupid enough to allow a license number to have any meaning in terms of personal identity. It's like being able to take someone's money just by knowing their bank account number...
"When has anyone ever worked on New Years Day?"
Ever since mission critical 24 x 7 businesses have had IT departments?
Adding more turd to a turd still leaves you with a turd....
"If, like me your main firewall/NATS is your ADSL router but have a sep. wifi access point then the firewalls on all your devices have to be OK if you let anyone connect to your wifi."
ADSL firewalls by default let open ports on your internal devices connect to the internet. No home grade device does anything significantly more than stateful tracking of connections, which stops nothing if the port you want is open anyway. Therefore allowing access via WiFi is little different. Most modern WiFi routers can separate the traffic between an internal DMZ and the WiFi network to provide the same degree of "protection" anyway...
"Hope your device firewalls are in good shape !"
Because being already connected to the internet, the main risk is from someone using my WiFi, right?
"And some will probably do so without asking if you're okay with that.""
They can do that via notepad and share them anyway - I always keep a record of wifi passwords I get given.
"Just to give you an example, it still runs an outdated (almost 30 years old) filesystem -NTFS-, while others have made enormous progresses and also taken into account new things like SSD"
Just like ext is an outdated (almost 30 year old filesystem) ?
NTFS has multiple versions - currently we are on 3.1- and has had many feature updates along the way. And there is ReFS - which isn't feature complete yet, but it's pretty good.
nb - NTFS doesn't need to take into account SSD as that's handled in other layers in Windows - for instance Storage Spaces that provides features like automated tiered storage.
"Given the push to put Linux tools on Windows (and not use something like Cygwin) makes me wonder if WIndows 10 will, as some have already put it, turn into another distro."
The driver seems primarily to be to not have to use Linux on the desktop, so I doubt that.
" I know that symlinks under Windows were always tricky"
In what way? - always worked just fine for me under say the Windows 7 Korn shell, or the Windows Command prompt.
"know they were sharing their WiFi keys with people by default??"
You have to actively tick a box each time you add a network to share them - it's not by default.
"actually came up with it and thought it was a good idea, obviously not even bothering do a cursory security audit"
It doesn't let you share keys on corporate type WiFi setups - only home / public ones. In general it's no big deal if someone can use your internet connection.
"In the real world this isn't happening"
There know there are many Malware infected Android phones, so clearly it is.
"we will never be like China"
We are already like China. It's just a bit more subtle:
"Ofcom to have power to regulate internet-streamed material from outside EU"
Really? By what god like powers are they planning on subverting foreign jurisdictions and the ability of the internet to route around censorship?
"Circuit breakers broke bad"
Is that meant to read "badly" or is this written in American?
"tell me the use case for even 1 gigabit service at home"
Streaming multi-angle 8k porn?
"No I am thinking of the Ukrainian Soviet leader who gave Ukrain Crimea."
It was given to Ukraine by the Presidium - which is a council of leaders, not by just the head of state at the time Kliment Voroshilov.
"Middle East has been a total screw up since the demise of the Ottoman Empire"
I think you mean since the demise of the British Empire....
"the Russians annexed land they loaned to Ukraine"
It was given, not loaned:
"the transfer of Crimea from the RSFSR to the UkrSSR was carried out in accordance with the 1936 Soviet constitution, which in Article 18 stipulated that “the territory of a Union Republic may not be altered without its consent.” The proceedings of the USSR Supreme Soviet Presidium meeting indicate that both the RSFSR and the UkrSSR had given their consent via their republic parliaments."
"the Russian Federation expressly accepted Ukraine’s 1991 borders both in the December 1991 Belovezhskaya Pushcha accords (the agreements that precipitated and codified the dissolution of the Soviet Union) and in the December 1994 Budapest Memorandum"
"I think Crimea is understandable, looking at recent history"
You mean that the world generally ignoring Israel's illegal occupations meant Russia thought they could get away with it too?
"That Russians will try to do exactly that and will just put more missiles, more expenses, etc"
Europe and the USA will win that battle. The Russian economy is screwed.
"Instead the Lawrences plan to destroy meteorites"
Presumably for values of "plan" that primarily include threats that happen to be right on top of Russia or China at the time...
"PS What did "RICHTO" mean?"
Nothing - some people assumed it referred to money so I changed it.
"Hopefully they will take Wintel with it."
Some Windows versions run on Arm too don't forget...
"The thing is it is overkill, a read-only SD card slot that is only used to load the boostrap would achieve the same thing."
Your SD card could be malware infected when you obtained it. Secure Boot fixes that.
"If malware is in a position to modify the boot stack you are already owned."
Not with secure boot. If the malware tries to modify the boot stack, the PC wont boot, and you can then restore the boot stack to a known state. Malware cant persist.
"A recent Windows 7 update partially bricks computers that have an Asus motherboard fitted, it emerged this week."
Either it bricks them or it doesn't. Reading the article implies it does nothing of the sort. And it's not a Microsoft issue.
"Microsoft half-bricks Asus Windows 7 PCs with UEFI boot glitch "
So actually it's more like "Asus Windows 7 PCs fail to boot due to UEFI bios glitch" - but I guess that wouldn't get as many clicks?
"Hmmm... strangely plausible... worked "helpdesk" for a while?"!
No one in a frontline helpdesk role would be calling MS Pro Support - it's a feature of 3rd / 4th line engineering type role. And yes for about a year, many years ago...
"Why should license admin not be considered a support task?"
The service he was using is a consumer focused service. Enterprises usually use MAK keys and have no normal need to make such transfers. There IS a professional support option for license admin via the Microsoft Licensing Portal and associated services but again those are always fluently English speaking.
Anyway, personal license transfers are not in anyway part of Microsoft Professional Support (which is usually chargeable per incident).
"First of all, a machine cannot boot off a ReFS partirion, it also doesn't work with databases"
"Users do need to be mindful that ReFS in its current iteration is not meant to be a replacement for NTFS. Instead, it is a complimentary file system, designed to handle tasks where NTFS falls short, such as file and data archival servers."
"Later versions of ReFS may very well replace NTFS as the default Windows file system, but it isn’t going to happen soon. After all, it took NTFS 8 years from its introduction until it became the default file system for consumers in Windows XP"
"Databases? They go in a VM"
Not in any large environment. Or for anything that needs licensing from Oracle.You would normally have an SQL Server (and maybe Oracle) cluster that hosted multiple databases with appropriately sized hardware. There is no gain to be had from virtualising such an already shared platform.
"Get your databases on a proper DB server and thus on a proper OS!"
Yep, SQL Server is the easy choice. My condolences for those still stuck with Oracle.
"My experiences with MS phone support have almost exclusively been transferred to the far east. Namely: every single time I want to exercise downgrade rights. That's two hours per bloody key, every time."
That's NOT professional support. That's license admin.
Professional support is accessible here if you don't have a subscription / other support options:
In many Microsoft support calls over a number of years I have never had anyone who didn't speak English fluently.
""2) per call support costs."
The prices are per incident, not per call.
What competing products do you use where you get free phone support?"
It IS free if it's found to be a fault or bug in Microsoft software - the incident is credited back.
"Butthurt of Mint evangelists to follow in 3..2..1"
Now that's a collective noun I hadn't heard before. This sort of nerd-ville springs to mind:
"I found out after I'd upgraded that it was temporary free licence and they considered a change of motherboard a different PC and that the license wasn't transferable."
So exactly the same as most people's existing OEM license that came with their PC then.
"Most will get an Open Source hypervisor (Xen or KVM)"
KVMs market share is about 1%.
"Some will get a Microsoft hypervisor."
Hyper-V has over 30% market share.
"Microsoft isn't top dog on servers or endpoints."
According to Forbes, Microsoft have about 75% market share for servers.
That page supports what I said about Postgres performance sucking. In between lots of largely uninformed rants that are basically moans that MS SQL does certain things in a different way that he clearly doesn't understand - for instance "I don't know how easy MS SQL Server is to update".
"You can recover from microsoft and its suppliers only direct damages up to u.S. $5.00"
So $5 more than if you used Postgres?
"So you request benchmarks yet provide anecdotal evidence? Remind me not to hire you for advice."
An example of the many similar comments I see, and of my experience:
Postgres is generally way way slower than MS SQL server and whilst SQL Server has no difficulties at all handling vast databases with 100s of TB, Postgres runs into multiple scalability issues at anything over modest sizing.
"when PostgreSQL is faster"
Do fee free to post some recognised benchmarks to back that up? In all recent examples I have seen, SQL Server was much faster.
How so? Vastly smaller feature set, much less support from other products, and more security vulnerabilities don't exactly seem like that to me...
"and available for free?"
If your time, cost of additional hardware for required similar performance, and security and system capabilities have no value to you - and you don't need support?
"And how often does Microsoft patch their version?"
Not as often as OpenSSL!
"Are you sure that the dozen or so MS lawye^wcoders are up to the same standard as the hundreds of eyeballs looking at OpenSSL"
Microsoft source code is available to organisations for inspection / analysis too.
These "hundreds of eyeballs" looking at OSS don't seem to actually make much difference - if in fact more then the odd security researcher even bother looking. Some of the recent and very big OSS holes in Bash and Open SSL were 2 decades old...
"Determine the MAC address, look up the OUI, use WiFi tool on another mobile to look at signal strength.. could figure out which part of the plane it's in, and which type of device it's likely on."
That's the 2 hour delay explained then. By which time the perpetrator had no doubt simply turned off his hotspot...
"because most enterprise IT people I know are avoiding Oracle as much as they can these days"
"Why limit the length at all?"
Because of potential buffer overflow vulnerabilities? Database schema requirements? Software tool support? That they are not likely to need more possible resource labels than there are particles in the universe?
"Amazon makes 25% net margins on AWS."
Amazon's annual and quarterly reports show large on-going losses on AWS. You could argue that this is due to massive on-going investment, but anything suggesting it's currently "profitable" is quite clearly not the case.
"Microsoft "intelligent cloud" does not equal cloud. It equals cloud plus Hyper V"
Hyper-V Server is a completely free product. Zero cost with all features enabled.
Microsoft's "intelligent cloud" in terms of reporting does NOT include on customer premise solutions.
"but Amazon makes a ton of profit on AWS. It is their most profitable division."
Not sure where you get that from, but Amazon's financial results show AWS is a massive loss maker - and is the main reason they nearly never declare any profit.
"The fact that Microsoft is feverishly attempting to integrate Redhat Enterprise Linux with Docker Containerization into Azure Cloud Computing"
Microsoft are making it so that it integrates with Windows server too. Don't forget Microsoft have had a container solution for many years via SoftGrid / App-V so have a lot of experience in this space.
Besides, Azure (Hyper-V) scales better and is more efficient than KVM, so it makes sense to run your Red Hat cloud on it too if you want Red Hat.
This is why Azure is growing market share faster than AWS, and Microsoft overtook Amazon in cloud revenue a few quarters back.