Re: "Not an uncommon story", you mean.
Yes, but why ruin a good story with the truth?
316 posts • joined 25 Oct 2007
Yes, but why ruin a good story with the truth?
Exactly. Most people, including even many esteemed Reg readers, are confused about what bitcoin mining is. Bitcoins are issued to miners by the system as a reward for so called work done. The work done in this case is the processing of transactions into new blocks in the chain. When the number of bitcoins reaches the arbitrary limit of 21 million no more bit coins will be issued. At the point the only incentive to mine will be to obtain transaction processing fees from bitcoin users.
To control the rate of bitcoin production, the difficulty of the work to be done is increased or decreased by changing the min and max allowable values of the hash of the block, requiring the miner to experiment with different values of a nonce until they arrive at an acceptable hash value.
Being able to tune the difficulty of the work to be done also avoids the scenario of transaction processing consuming every processor on the internet. That can never happen.
Won’t let make online payments, rather annoying and [an] inconvenience as our electric is about to run out! Then we will be buggered,
That's really unfortunate. First your power is going to go off and then someone is going to have anal sex with you. Really bad luck that is.
could possibly go wrong? Not like it's safety critical or anything.
Crappy Old Chips Knackered Under Pressure
A VPN won't do anything to solve this particular problem. Phishing, key logging and reuse of passwords from compromised sites will all still work.
Very good. But did you write that on a smartphone whilst packed into a railway carriage sardine style?
Yes you have been to a few what? If it's third world markets then that's fine. If it's Asdas then get yourself to the doctor. You may well have picked up an amoeba or something.
This is a crucial point. US judges can order US companies to release data even though it is held on servers entirely outside the US and have done so in the past (search for Microsoft Dublin).
- 50% savings are good
- Outsourced infrastructure good
- UK tax payer data at the mercy of the US Trumptatorship - sad. Very, very sad.
Also, is this just IaaS, or are HMRC locking themselves in to the entire proprietary Amazon application stack, in which case two suppliers just narrowed down to one. Bend over the barrel HMRC .... this is going to hurt. That 50% was just an introductory offer.
For those of you who like me think top of the pops when they see TOTP I'll save you a google.
Time based one time password
HMAC based one time password
Or (false) economy toilet paper.
False because each iteration of the while not clean loop uses 6 sheets instead of 2.
So .... the incompetent head of NHS transformation and operations is now the incompetent head of, presumably the same, at HMRC. That explains a lot, particularly about if you're having any self assessment troubles.
Exactly. It's not a bank it's a software house.
Something fishy going on here. First we have Troy Hunt and now Troy Mursch. Can this be coincidence? Troy is where trojans come from. I smell a horse.
Whatever the truth may be, if I ever become a security pundit I'm changing my name to Troy Who.
The thing about programming is that, just like spelling, it's all about attention to detail.
You are very improbably right.
And wow! Hey! What’s this thing suddenly coming towards me very fast? Very very fast. So big and flat and round, it needs a big wide sounding name like … ow … ound … round … ground! That’s it! That’s a good name – ground!
I wonder if it will be friends with me?
VMs are available from $5 per month.
Get two in different locations and mirror them. Nothing fancy, rsync and DB replication will do the trick for most web application servers. It's really straight forward and a simple DNS change saves your cured pork belly.
We go one step further and place the mirrored servers not only in a different location, but with a different service provider.
The golden rule : there is no such thing as 100% data centre availability.
Bit harsh old chap. Wrong side of bed this morning?
Massive Infrastructure as a Service or MIaaS
On the basis that being compromised is inevitable at some point for every organisation, the measure of effectiveness is whether there was a procedure in place for dealing with and mitigating the consequences, and how good that plan turns out to be. It seems that Deloitte have such a plan and time will tell how good it is.
All of that said, having an email admin account without 2fa seems to be a bit of a schoolboy error by any measure. We had a really good fire drill in place but neglected to fix the leaky gas pipes in the basement.
What I want to know is whether lenders are still consulting Equifax credit checks when extending credit to private individuals. The scale of technical incompetence at the company is clearly so huge that, breach or no breach, their credit scores cannot possibly be trusted. I suspect their credit scoring algorithm is something like :
int value = rnd.Next(10, 100);
or is that a bit too sophisticated?
... which is great if you're with a woman but ain't no good in the jungle (Robin Williams)
Dilbert had it much more succinctly back in 2000
Thumb up for Thomas Fischer of Digital Guardian. Tiger Swan cannot blame Talent Pen. If Tiger Swan is using a third party then they need to establish clear security policies and audit the third party to ensure compliance.
At a rate of £50 per hour, 8 hour days and 240 working days a year I make that 13,885 person years. I can just never comprehend this kind of thing. How can anyone spend nearly 14 millennia of people's time delivering a tax system FFS?! Or have I got my maths horribly wrong?
And precisely how many involve a background check on the ex's new shag?
See it's only the K5. The K9 has no such problems.
Exactly, with expensive apps consultants.
And what about completely bespoke third party integrations from legacy systems to banks, third party logistics companies etc... There will be no templates for these so they'll all need to be built from scratch, and because they are likely to be mission critical that will be a lengthy and expensive development and testing cycle.
So people moving to Oracle Cloud have to port all their legacy workloads. At the same time Oracle claim that their cloud eliminates the need for systems integration consultants. Now that is the biggest, slipperiest barrel of snake oil I've ever seen. And I'm a cloud fan.
I've got this issue with my clients too, but I know for a fact that all of those who have safe harbour / data protection issues still send a lot of sensitive data around the world (think spreadsheets etc...) in unencrypted emails, and make use of sharing services such as Dropbox and GDrive for work related material. I know they shouldn't and you can tell them they shouldn't, but they still will. On premises hardware solves none of that.
"bugger out" - like it. I think I'll add that to my vocab.
Reminds me of an Eastern European friend of mine, trying to impress upon me that he knew more than I gave him credit for. "You think I know fuck nothing, but I tell you I know fuck *all*". Legend.
Fasthosts - always pulling a fast one.
Do a Google News search for Fasthosts, and be amazed that anyone is still using them.
When was cloud ever about cost savings?
Outsourcing of any sort is about turning capex into opex i.e. spreading the cost over time.
With cloud in particular it's also about scalability. If you are planning on growing fast you can start small at very low cost, with the costs only scaling as your business scales. When you're building on-prem infrastructure you have to predict the future to a much larger extent. If you think you're going to grow from a 1000 to 1000000 customers in 8 months, you need to build much of the infrastructure for that up front. And what if your predictions are wrong?
Doing cloud properly is never going to be about saving money.
Here's Theresa May's plan. It's a much better plan than she's had for pretty much everything else.
Very, very frightening me.
Mind you, I would have thought that "Copy of K9b Form assessed by : James Eley-Gaunt" would pretty much flag this as suspicious in most intelligent people's minds. Eggheads my arse.
I think I'm probably standing on his little toe, but even from there I can see for miles.
Quite. And the poor sod who is going to have to pick up the pieces is probably the one who wanted to keep things in house all along. Bit like Farage securing the out vote and then buggering right off to let everyone else sort out the impending catastrophe.
Don't get me wrong, I don't thing cloud is actually the real risk here. Revolutionary rather than evolutionary change at scale is as we all know an excellent recipe for potential disaster. If I was on the board of Specsavers I wouldn't let anyone draw up the plan if they weren't going to be around when it's executed. Madness!
@Voland. I'm with you. Pilots are the single biggest cause of aviation disasters, accounting for half of all plane crashes. The fleshpots are the weakest link. They get hung over, tired, are easily confused and get disorientated in very bad weather (think Air France where the pilots flew the plane into the Atlantic without even knowing they were doing it).
The Scully events of this world are vanishingly rare. To set that event up as the minimum standard for autopilot abilities would be like setting it as the minimum standard for all human pilots, which would clearly be ridiculous. It was a heroic and brave event, but a very rare one.
Ah but do you have the right skill set? Communicating risk to the board is an essential part of the job.
If the phrases "gotta have the right hashtags" and "security depends on removing the scourge of end-to-end encryption" do not sound right to you, and if "pen testing" for you does not involve vigorously scribbling with your BIC biro then you're never going to earn £87K I'm afraid.
Anyone who claims they can deliver five nines availability, even for discrete components let alone a complex web of hardware and software, is talking out of their arse. Five nines means you can have a maximum 0.864 second outage in any given 24 hour period. Of course you can start saying that the up time calculation should be done over a week, month or year but where do you stop - a decade? Up time stats only have real meaning over short periods.
So, hands up, who for any amount of money is going to guarantee less than 0.864 seconds of downtime over DC, comms, hardware, and 200 interdependent applications. And how do you even define what counts as "up"?
It's basically all finger in the air stuff.
I've set up a satellite dish for fixed domestic satellite Internet. It's a bit of a pig, to say the least, to get the alignment spot on and the signal can easily be disrupted by stupid things like leaves growing on a nearby tree.
My question then is how does a mobile terminal such as an individual sat-phone or an aircraft moving at several hundred miles per hour acquire and maintain a high bandwidth connection to either a geostationary or LEO satellite?
Sometimes it's fingerlickin' good. Other times it's just ass wipin' bad.
The shit bit is things like this, spam, people still sending out messages with 500 recipients in the Cc field and then the people who still Reply All to that same message.
The great bit is it's the last bastion of the Internet as it should have been. SMTP for all its faults is a protocol to which all email services comply. I can get my email service from anyone, or run my own email server, or write and run my own mail server and still communicate with everyone else who is on email, irrespective of where they get their email service from. The tragedy of FB, Whatsapp, Snapchat etc... etc... is that they are walled gardens. There is only one Whatsapp service in the world, and it's proprietary. This goes against all the early promise of the Internet, back to the dark dark days of Compuserve and AOL.
Anyone who says that playground humour has become more prevalent since the 60s should talk to my colleague Buster Gonads who can testicle to the fact that no such trend is observable. In fact any such claims are unfeasibly large porkies. Just today I walked into a restaurant and asked the waitress for an opinion on toilet humour, and she gave me one. What more proof do you need?
*Roughly* £633,000? That sounds quite specific to me.
Some kind of fookin' tape drive that must have bought! Or was it £500 for the tape drive and tapes plus £632,500 on backup rotation design consultancy and tape changing training.
You could look at an event such as that of the last few days as the Internet's version of a wildfire. In the short run some damage is done but in the long run the fire's job is to clear out dead wood and enable the regrowth of a stronger, healthier ecosystem. Short term pain for long term gain.
"We are looking to bring it back online as soon as possible"
There's a gaggle of techies sitting around with that slightly vertiginous / nauseous feeling in the pit of their stomachs, sweaty palms, and fingers trembling too much to type accurately at the command prompt ... all of them quietly mumbling "fuck fuck fuck oh fucking fuuuuuck" under their breaths. AKA the patch borked everything and the rollback isn't working.
Is it small? Or is it far away?
Shit meet fan. Do your thing.
Biting the hand that feeds IT © 1998–2017