* Posts by Nick Stallman

137 posts • joined 31 Oct 2007


What a meth: Woman held for 3 months after cops mistake candy floss for hard drugs

Nick Stallman

Re: Taste test?

Nonsense. Of course professional law enforcement taste strange white powders they find.


OK Google, what is African ISP Main One, and how did it manage to route your traffic into China through Russia?

Nick Stallman

And Telstra in Australia decided to route a good chunk of the domestic Internet to Melbourne and two very confused routers that sat there bouncing packets back and forward until their ttl ran out.

Halfed our servers traffic for an hour and Telstra doesn't handle any transit or peering for us at all!

Cathay Pacific hack: Personal data of up to 9.4 million airline passengers laid bare

Nick Stallman

Re: Why is all this data being retained?

Because terrorists!

GitHub.com freezes up as techies race to fix dead data storage gear

Nick Stallman

Re: The Microsoft Curse?

Nah its probably not Microsoft fault.

It was an issue with their mysql cluster. So I say it was Oracle putting a knife in Microsoft back when they weren't expecting it. :p

Atlassian: Look at our ginormous Jira revenues!

Nick Stallman

Re: Why the hell

Check out Phabricator. It's the closest thing yet I've seen.

Huawei's Watch GT snubs Google for homegrown OS

Nick Stallman

Re: 2-week battery life

Another happy Pebble user here too. Pebble Time, little scuffed and the battery isn't quite a week anymore but it's fantastic.

This is the first watch that makes me think about replacing it. Nothing short of a week battery will satisfy me - sleep tracking is occasionally useful no matter how much the Apple watch users say its not.

Fire chief says Verizon throttled department's data in the middle of massive Cali wildfires

Nick Stallman

Re: What do you expect?

To be fair, they did get an unlimited plan.

Kinda says in the name of the plan what the data limit should be. Unlimited.

Bitcoin backer sues AT&T for $240m over stolen cryptocurrency

Nick Stallman

All that assumes that the underpaid staff at the stores with essentially root access follow that elaborate secure procedure.

How staff in stores can override a procedure like that I'll never know. It should be automated for them and if the user can't verify themselves then it should be escalated to a special department with tighter controls.

Insecure web still too prevalent: Boffins unveil HSTS wall of shame

Nick Stallman

Re: Fearmongering, Uncertainty and Doubt

The argument about government CAs isn't a good one.

You can always verify who issued a particular certificate, so if you went to Google.com and you noticed their SSL certificate was issued by a Chinese CA it would be blatantly obvious.

For most potential targets various monitoring would pick it up so manually verifying it each certificates CA isn't needed - it'll be noticed by others.

Visa fingers 'very rare' data centre switch glitch for payment meltdown

Nick Stallman

Partial failures like that typically mean the connection can no longer reliably carry traffic, but it still thinks the link is online so it never enacts the fail over procedure.

So no prior failure is required, just the monitoring being told that something is up when it's actually down.

These extremely rare failures actually happen all the time. Earlier this year servers I manage were also knocked offline by a partial failure which prevented automatic fail over.

nbn™ CEO didn't mean to offend gamers, just brand them unwelcome bandwidth-hogs

Nick Stallman

Re: toing the party line

FTTP can (and does) still have congestion at many different points.

Firstly it's using GPON with a fibre running at 2.488gbps shared between up to 32 houses. If those 32 had 100mbit plans and decided to use them at the same time then you have a (small) problem.

Then you have POI congestion where the ISP doesn't buy enough bandwidth. This happens all the time and affects FTTP and FTTN equally.

And then you have ISP congestion from the cheap ISP's with garbage internal networks.

Fixed wireless has a fairly fixed max total speed per tower however and its shared with a lot more people so it's most susceptible after satellite.

Linus Torvalds decides world isn’t ready for Linux 5.0

Nick Stallman

Re: Two scroll wheels?

Holy cow I had completely forgotten about those. I actually had one in the late 90s with the second scroll wheel allowing you to scroll left and right.

I had totally forgotten about it until now!

TSB meltdown latest: Facepalming reaches critical mass as Brits get strangers' bank letters

Nick Stallman

Error the ACCC has no jurisdiction over financial services.

Or do you mean ASIC who handles that entire industry?

US Congress quietly slips cloud-spying powers into page 2,201 of spending mega-bill

Nick Stallman

Re: I can't see what the problem is..

No for the obvious fact that the US doesn't have jurisdiction where the data is.

It's like some evidence being over state lines, state police can't give someone permission to go across the border to go get it - they have to ask properly.

23,000 HTTPS certs will be axed in next 24 hours after private keys leak

Nick Stallman

Of course you automate it. You'd have to be crazy not to!

Every certificate I deal with (thousands) is fully automated these days except for specialty types like wildcard and I have them partially automated.

Anyone manually mucking around with certificates in this day and age either doesn't have many, has some very pedantic requirements or doesn't know any better.

Open source nameserver used by millions needs patching

Nick Stallman

Err yeah I think this article is confusing the perils of dns and bgp. The possible outcomes really are more to do with bgp which powerdns has nothing to do with.

NetBSD, OpenBSD improve kernel security, randomly

Nick Stallman

I think the point is typically everyone's computer would put it in the exact same location making attacks against multiple computers trivial.

A buffer overrun or similar attack with ASLR means each computer is different from each other, so when attacking you have to first find your target addresses which makes it a lot harder.

It's not about having code jumping around constantly on a single PC.

Google routing blunder sent Japan's Internet dark on Friday

Nick Stallman

But it doesn't have to go there. There are multiple routes via multiple providers.

Prior to Google's announcement, a Japanese ISP already had one or more routes to each destination. The new 'shorter' Google route got added in addition to the already existing ones.

With some sort of monitoring you could detect that routes via the new announcement are failing, then revert back to the longer pre-existing routes.

Sweden leaked every car owners' details last year, then tried to hush it up

Nick Stallman

Re: "I blanda'd up"

Free credit monitoring? For the people in the witness protection program?

I'm sure they'll love that. They'd probably prefer free life insurance with a obscene payout.

WannaCrypt blamed for speed camera reboot frenzy in Australia

Nick Stallman


"WannaCrypt blamed for speed camera re-boot frenzy, despite lack of ransom debands"

No debands eh? :P

Google turns on free public NTP servers that SMEAR TIME

Nick Stallman

Re: Smearing

So did everyone else, then everything crashed when the same second happened again and some really weird things clashed.

Linux letting go: 32-bit builds on the way out

Nick Stallman

Re: think about tablets

4gig tablets will very much gain benefit from 64bits - 32bits can not ever use all of 4gigs of memory.

Try it. Approx 0.5gig will magically vanish when you load a 32bit OS on a computer with 4gigs of ram.

Remember the bits are used for address space, RAM isn't the only thing in the address space.

Your graphics card's ram is automatically subtracted from the 4gig of RAM, plus various IO things take their share as well.

32bit address space doesn't equal 4gig of RAM.

Telstra costed fibre to the premises before it was Telstra

Nick Stallman

Great but...

Great but FTTP != HFC. Hybrid fibre-coaxial uses copper as the upstream in a shared medium.

It sits between FTTN and FTTP.

SCREW YOU, FEDS! Dozen or more US libraries line up to run Tor exit nodes

Nick Stallman

Re: The numbers game.

As of a few months ago, 0 libraries were looking at Tor exit nodes.

Now there are 16. That's a whopping infinite % increase! (16 / 0 = NaN = Infinity)

Numbers work both ways.

Bloke clicks GitHub 'commit' button in Visual Studio, gets slapped with $6,500 AWS bill

Nick Stallman

Re: This is the kind of thing that keeps me up at night

Did you miss the bit where they did contact him? Extremely quickly?

And did you miss the IAM section which lets you specify very fine grained controls over your access keys?

So....everything is fine then? You can sleep now.

Confusion reigns as Bundestag malware clean-up staggers on

Nick Stallman

Re: Unlikely

They've done it with md5 SSL certificates.

The trick is you make your back door then add a bunch of random data in a field that isn't parsed like a comment field. Brute force the random data with some tricky mathematics such that back-door + random data matches the original md5.

Tesla's battery put in the shade by current and cheaper kit

Nick Stallman

Re: Back of an envelope calculations

And if you go for some nice deep cycle car or truck batteries instead of the much smaller UPS batteries you absolutely phenomenal capacity.

A lead acid battery rated at 300 amps (not continuous) equates to 3.6kW for a single battery. And at lower power levels you'd get incredible duration.

I've got a small car battery dedicated to a 1.5kW inverter for emergencies. A friend had a black out a couple of weeks ago and it kept their TV and Playstation going for about a day before they got power back. The voltage afterwards was still 12.5v which is roughly 50%.

iPhone case uses phone's OWN SIGNAL to charge it (forever, presumably)

Nick Stallman

Re: Doesn't surprise me

Unless the wireless mic is using frequencies it isn't supposed to be, then too bad.

Soundbites: News in brief from the Wi-Fi audiophile files

Nick Stallman

Google "Nyquist" sometime. Essentially the jist is you can *flawlessly* reproduce any frequency, by sampling at double the rate.

So if you want a flawless 22khz signal (which you cannot hear), you sample at 44khz. Hence why most music is sampled at 44.khz.

It has absolutely zip to do with the smoothness of the output waveform. You will get a flawless sine with 2 points per cycle.

Azure Australia is ALIVE, but not for the likes of you, just yet

Nick Stallman

They've been waiting for this for years

Now for the first time ever they can go down, down under. :)

On test: Samsung 845DC EVO 3-bit Toggle MLC and 845DC PRO 3D V-NAND SSDs

Nick Stallman

Re: Am I missing something here

It could act like RAID 0 where some blocks for a request come from one disk, and other blocks from another, but its more useful if it can handle two unrelated read requests at once. The first scenario for spinning rust disks would actually be quite bad.

But yep RAID 1 does nothing for writes.

Japanese boffins invent 4.4 TREEELLION frames per second camera

Nick Stallman

Re: low resolution???

My phone (Sony Z2) does 120fps at 1080p just fine. :P

Its a complete gimmick, but it does actually work well and the quality is very very good.

Hosting outfit goes PERMANENTLY TITSUP after 'lifetime' plans kill biz

Nick Stallman

Re: Lifetime plans

If you actually wanted a real lifetime plan though, you'd need to stump up a lifetime of hosting costs upfront though.

I'll stick to monthly thanks.

Microsoft Surface slabs borked by heat-induced DIM SCREEN OF DEATH

Nick Stallman

I'd love to know how overheating is a software fault.

False widow spiders in guinea pig slaughter horror

Nick Stallman

Re: Cute li'l guinea pigs.

I've got 11 'free range' guinea pigs outdoors not even in a cage (just a 30cm tall fence around a large area).

This is in Australia as well where if you get bitten by a spider and it is just as bad as a wasp sting, you are lucky.

The pigs love it. They couldn't be happier.

Animal Liberation drone surveillance plan draws fire

Nick Stallman
Thumb Up

Re: This Drone

Mechanical failure would be interesting however. They'd have to trespass if the drone went down or the farmer has a shiny new toy.

EA Origin vuln puts players at risk

Nick Stallman

Re: Um

Erm you don't quite understand this issue at all do you?

Roxon clarifies data retention proposals with ASIO support

Nick Stallman
Black Helicopters

Re: When the metadata is data?

And how deep can metadata be?

IP A connected to IP B on port 1234 at 12pm is Layer 3.

Thats pretty light and is a lot like telephones. A stupidly large amount of data though.

Email from User A was sent to User B at 12pm is somewhat deeper.

That actually means intercepting everything including the data and pulling the bits of interesting 'metadata' out.

User A is chatting to User B over IRC.

That goes really deep and isn't just a matter of listening to the headers. You need to listen to the entire connection for the entire duration that it exists and every fragment of data has to be analysed closely.

Its a lovely fluffy word to say but on a technical level it can mean any amount of deep packet inspection.

NT Telehealth's high-definition medicarts are really CoTS

Nick Stallman


All these tele-health services which require large amounts of bandwidth, provided by the NBN, will really revolutionise health in remote communities.

Yeah right. Remote communities aren't getting any fiber!

Its not commercially viable. Satellite will work, but not very well.

Microsoft unleashes Windows attack tool

Nick Stallman

CRITICAL SECURITY ISSUE: Windows located on computer

Title says it all. Thats like a 1 line bash script.

AAPT confirms attack, through Melbourne IT

Nick Stallman


Considering we are talking about an Australian based leak, you are WAY off.

Google denies Redmond report of a spamming Android botnet

Nick Stallman

SPF is relatively new. Didn't exist 10 years ago.

The fact that every email has the same message id means its most likely someone who packet sniffed a android mobile sending a email from the app, and is duplicating the transmission with spam for the body.

Easy way to send email via Yahoo.

Message ids are unique for every email that is sent legitimately hence why its fairly obvious.

War On Standby: Do the figures actually stack up?

Nick Stallman

That 5c coin that fell down the side of the couch? Yeah I ain't going to get it.

Boffins program peripheral visions for ultra TV immersion

Nick Stallman

Re: Isn't this just a spin on...

Just use the projector for your paintings and furnishings.

Mona lisa? Yeah I'll have that on my wall this week.

US military gives NASA two better-than-Hubble telescopes

Nick Stallman

Re: Lets do it in stereo

Too far away for stereo. At xxx,xxx light years away, a slightly different orbit will just get you the same image.

Nick Stallman

Re: There are no cameras

They can declassify the mirrors. They are just mirrors.

They probably still want to keep the camera specs secret.

Self-driving Volvos cover 200km of busy Spanish motorway

Nick Stallman

Re: Worried

"Do some reading about cosmic rays (don't laugh) and their effect on computer memory. There's been instances of planes plummeting due to the effects of cosmic rays on "fly by wire" systems"

Yet they are *still* safer than getting in to your car. Funny that.

Apple can't agree with Australian regulator on iPad 4G

Nick Stallman
Thumb Up

Re: Can someone explain this to me?

iPad with Wifi + 3G would be entirely acceptable by the ACCC I would imagine. The 3G part of it works correctly.

The ACCC should definately drive this point home because its not that there aren't any 4G networks it will work with at the moment, there will *never* be any 4G networks it works with in Australia.

E-tax may return to Mac OS

Nick Stallman

All things considered...

Considering e-tax looks like a dog's breakfast, anything FireMonkey can do is a improvement.

Unknown fault darkens Australia’s Internet

Nick Stallman

Not a international cable

Its not a international cable - it definitely was internal. Connectivity from some of our servers in Sydney to Telstra was lost and our DC attributed it to Telstra's end.


Biting the hand that feeds IT © 1998–2019