* Posts by h4rm0ny

4610 posts • joined 26 Jul 2008

74 countries hit by NSA-powered WannaCrypt ransomware backdoor: Emergency fixes emitted by Microsoft for WinXP+

h4rm0ny
Silver badge

Re: Risk Management

That's not a correction. A patch for this was issued in March. If you are two months behind on your patches that would be a problem for GNU/Linux systems as well. Or do you leave your systems unpatched for that long as well? If so, you're not fit for a job as a sysadmin.

The greater problem here is agencies such as the NSA instructing companies to leave vulnerabilities available such as in the case of the Intel AMT bug which according to Semi-Accurate was almost certainly left in by request. What we're really seeing here is a highly visible example of why we shouldn't be allowing the government to mandate backdoors into systems such as Theresa May and Amber "we must know the necessary hashtags to combat terrorism" Rudd want us to create.

Seriously - an unpatched OS is a security risk. Using an OS written sixteen years ago and STILL refusing to upgrade it - that's on Jeremy Hunt and his ilk. Don't try to deflect the blame elsewhere.

57
3

UK hospital meltdown after ransomware worm uses NSA vuln to raid IT

h4rm0ny
Silver badge

Re: Phew!

All tax payer money gets handed over to criminals.

A small portion of it they give back to us.

7
1
h4rm0ny
Silver badge
Paris Hilton

Re: NHS staff

Having worked in the NHS and seen how hard people at the bottom often work, I'm more inclined to say it's PEIDO. (Problem Exists In Director's Office).

12
1
h4rm0ny
Silver badge

Quick, someone blame Russia/DPRK/Iran/China/ISIS/Tory cuts/Donald Trump/Jeremy Corbyn

One of these is not like the others...

10
2
h4rm0ny
Silver badge

Re: Surprises?

I believe (having worked in the NHS) that it was safer when all the data was stored at individual GP practices. Firstly, this prevented a massive treasure trove of data being collected which will inevitably be stolen (if it has not already). Rather than numerous small troves which had to be individually gone after and thus weren't pursued by intelligence agencies or criminals. Secondly, it inherently partitioned the data according to need. Someone couldn't find the sexual history of their partner or look up the address of someone they were stalking just because they worked at ANY GP practice. When we pointed this out, they told us only people who had agreed to strict privacy controls were given access. By this they meant the bit of paper that every GP secretary and anyone else signs without reading. We pushed and were told that all accesses were logged but we investigated and at the time they weren't (not that this takes the place of restricting access). I.e. they lied to some of the people actually responsible for this stuff! Maybe those controls are implemented now but the principle that far, far more people have access to this data than need it remains in place.

So no, I don't think it has made it safer even in principle. A thousand boxes, each individually locked and each containing a pittance. Or Smaug's heap of gold entrusted to whichever company's director is mates with the Health Secretary of the day. I know which I think is safest in principle.

28
0

Booze stats confirm boring Britain is drying

h4rm0ny
Silver badge
Trollface

Re: Less alcohol consumption or more fibbing

Yes. But in a democracy, they aren't the same lies.

0
0
h4rm0ny
Silver badge

No, you could get LSD in the Nineties. Now nobody seems to carry it.

LSD is one of the safest illegal drugs there is.

1
0
h4rm0ny
Silver badge
Paris Hilton

I've never understood biscotti. They're rock hard and very thick which leads me to assume that they're designed for dunking in your coffee. This would make sense and would probably taste quite nice. But I've never seen someone dunking them in a coffee shop. Do people dunk them?

1
0
h4rm0ny
Silver badge

Re: 1960s health advice?

I don't know if it's so much science being better or worse in the 1960's than today, so much as it is different degrees of harm being tolerated. In the 1960's if you said that a bottle of wine doubled the risk of health problems from 0.1% to 0.2%, they'd probably shrug and say people make their choices, it's pretty much a tiny change to someone's personal risk. Today they'll look at what the 0.1% does to society as a whole and cry armageddon, running headlines about millions of £'s lost each year due to drinking and "thousands at risk of liver damage". There's just no acceptance of any risk at all these days. In the Sixties, people considered risk a normal part of life.

1
0

Don't stop me! Why Microsoft's inevitable browser irrelevance isn't

h4rm0ny
Silver badge

Re: It won't be seeing my computer

>>"Only if you tell it to remember your password. You can delete saved passwords under advanced options."

I don't think that's correct. Or else you misunderstand me and think I'm talking about it signing you in automatically to web sites. What it does is every time you start it up connect to a Microsoft account for you, tracking any search history and browsing history, et al. The only way around this is to switch to Private Browsing every single time you open it. There's no setting to disable the Microsoft logging, so far as I'm aware. It's nothing to do with saved passwords.

0
0
h4rm0ny
Silver badge

Re: I use Chrome

Um, I'm just as old as you if we're going by using Mosaic and I have to say things have changed. These days Chrome is responsible for more standards violation and strong-arming of how the Internet works and IE11 / Edge is the one that plays nice. You know why? Because it isn't determined by which company is a Good Guy and which is the Bad Guy, it's determined by which one has the power. And these days Google do.

16
0
h4rm0ny
Silver badge

Re: It won't be seeing my computer

I'll add my voice to the crowd. I actually like Edge fine - but it signs you into Microsoft automatically. You can put it into private mode every single time you start it up but you can't set it to not try and track you every time you fire it up.

11
3

Don't install our buggy Windows 10 Creators Update, begs Microsoft

h4rm0ny
Silver badge

Re: Another day

>>"They may not be doing all users at once but once your machine is selected there seems to be no way of preventing the upgrade.

Which I'd actually be okay with if it were just an update to performance, security fixes, etc. But they should have no power to force functionality changes onto a product that I have already bought.

2
0

Uber engineer's widow: Stress and racism killed my husband ... Uber: Let's make flying cars!

h4rm0ny
Silver badge

Re: I'm not surprised

I've done one start-up in my career, the rest has been established companies. I fortunately didn't have the problems you listed - indeed, our founder and director worked shockingly hard and was extremely driven - which is one of the reasons it was so hard to give less than my all myself. It's one thing to hold back when you're being asked by a hypocrite for extra effort. A different thing when you know your boss is working just as hard and is taking huge personal risks. But I doubt that applies in Uber's case!

I think you nailed it when you talked about people who take pride in their work and just can't "fail" at something. I'm like that. When the expectations are out of control, that sort of professional pride can destroy you. We don't deal well with being set up to fail. Ironically it was after the start-up stage when other people came in who were essentially reaping the harvest planted by others that the problems you talk about (Old Boy's club, inexperience and ego) started to manifest. I eventually resigned my position because I felt I was unable to do a good job at my work. I think as many engineers have probably quit over that as have quit over money.

I'll say one minor counter-point, which is that the figure of 8.8% isn't evidence of racism. Do people just tout such things because it sounds like a small figure? The proportion of Black people in the USA between twenty and thirty (prime hiring age) is around 7-8%. Now I can well believe it's possible that there is racist culture in Uber given the evident sexism at the company (-isms are often found together), but the 8.8% figure isn't evidence. And that's just comparing it to the population as a whole without allowing for the fact that Black people are disproportionately poorer in the USA and less likely to be applying.

5
0

Cuffing Assange a 'priority' for the USA says attorney-general

h4rm0ny
Silver badge

Re: Ah, yes, I nearly forgot about him

>>Touché, although they never pretended to be anything else, or act for the good of humanity.

Yes they do. SInce when do Daily Mail or Fox News preceded their outpourings with "but keep in mind we're biased." Ditto for pretty much any news outlet that isn't purely focused on a financial audience (who care more about information than being told what is right or wrong).

If your criteria for being a journalist or a news organization is being unbiased, you're going to have to discount the vast majority. So either change your criteria or accept that it doesn't single out Julian Assange how you'd like.

Really, what should matter is if what Wikileaks publishes is true, which it is the case is it not?

7
0
h4rm0ny
Silver badge

Re: Why would he go after Assange?

Well the USA has traditionally had a rather novel approach to debt. Namely, if you can invade / overthrow / imprison the person you owe money to, you don't have to pay them. (Libya springs to mind).

10
0

Y'know CSS was to kill off HTML table layout? Well, second time's a charm: Meet CSS Grid

h4rm0ny
Silver badge

Re: If you have questions about grid

>>You didn't go online much in the 90s did you?

I did actually (note my hopelessly archaic l33t username ;) ). But you've misread my comment as saying that the 90's tech was better. It's actually a snarky commentary on the person I was replying to suggesting that they'd be happier back then because they're a grumpy anachronism. Not because things were better then!

We're in agreement. And yes, thank the gods that I now only very rarely see comments about "a girl on the Internet" and even then only from hopelessly out of date Geek-culture types.

1
0
h4rm0ny
Silver badge

Re: If you have questions about grid

Stay there. You'll be more comfortable.

0
0
h4rm0ny
Silver badge

Not to blunt your righteous rant, AC, but you are aware that this CSS grid is not currently a standard? It's a candidate release. I mean, you're talking a lot about standards so I'm sure do. Don't you?

2
0

Script kiddies pwn 1000s of Windows boxes using leaked NSA hack tools

h4rm0ny
Silver badge

Windows XP was released a decade and a half ago. It's replacement was released a decade ago. Extended Support ended three years ago.

At this point, you should really consider your vendors inadequate for the job.

16
8
h4rm0ny
Silver badge

Yes, basically. We know the malware was created by the Equation Group and they are certainly a state-backed group. As you mention it, the Equation Group has created firmware malware. The malware in the article just isn't one of those.

4
0

Boffins crowdsource hunt for 'Planet 9'

h4rm0ny
Silver badge
Alien

Re: Considering that Pluto was demoted.

Maybe if they find another planet they should re-use Pluto then all parties will be happy. Plus it will create even more confusion which seemed to be the purpose of trying to redefine Pluto anyway.

Seriously, "planet" is an arbitrary term. No rocket scientist ever based their slingshot calculations on something being "a planet" rather than, say, 1.3x10^22kg or whatever. The term is a cultural artifact with no useful scientific meaning. It is to astrophysics what the term "race" is to genetics. I.e. a visible thing for non-scientists to get hung up on that is next to useless for any meaningful discussion.

And as it is a cultural artefact, just let it be a planet given that it always has.

Now, would anyone like to hear me rant about applying SI metric definitions to MB that are more useful in powers of 2?

1
0

Intel reveals Optane SSDs: 375GB to start, at surprising speed

h4rm0ny
Silver badge

Re: Is it really that fast?

Not only is that an excellent article (as per usual for SemiAccurate), but that last paragraph but one was spared nothing in calling out by name certain journalists that they believe are influenced unduly by Intel. Certain journalists whose bylines appear in El Reg., no less! :)

1
0

Trump's cybersecurity strategy kinda makes sense, so why delay?

h4rm0ny
Silver badge

Re: Reason why Trump didn't sign cybersecurity executive order

>>"Good try. Unfortunately for your comment, it didn't happen. One post does not a hijack make."

I count four. And yours makes it five.

And now mine has made it six. It's off-topic whether it's true or false (and it's false). Could the reason you're fine with someone ham-fistedly forcing their cause into the thread be because it's a cause you're favourable to?

1
0
h4rm0ny
Silver badge

Re: He didn't sign it

The CIA are probably poisoning his tea as we speak!

2
0

Cyber-spying, leaking to meddle in foreign politics is the New Normal

h4rm0ny
Silver badge

Re: @Peter2

>>The difference is...?

That Hillary was Secretary of State and a close political ally of the government under which much of the ramping up of US presence on Russia's borders and increasing tension with Russia took place. And also that she is historically very hawkish. She was one of the chief proponents of the destruction of Libya and killing of Gaddafi. She has a considerable pedigree of being someone who pushes US hegemony abroad. Trump does not.

0
0
h4rm0ny
Silver badge

Re: I have wondered for a while

The NSA and FBI probably wouldn't use Intelligence such a manner. The CIA would and almost certainly have. The NSA for all that they are the bete noir of privacy, do actually honour their goals internally I believe which is to serve their country (however that may or may not align with civil rights). The FBI are all about the law enforcement. (The DEA should be given notice immediately to disband and their entire jurisdiction and case load and budget be handed over to the FBI to be re-prioritised). But the CIA are a political agency in their own right. They have run drugs operations for profit in order to fund themselves on things that congress didn't. They absolutely have political agendas and I have no doubts personally that they abuse their powers in ways that not only the public but Senators would be horrified to learn about. Of course there are thankfully policies on what they can do on US territory but I don't know how much that actually restricts them in practices.

2
0
h4rm0ny
Silver badge

Re: "MIght appear to be unprecedented?"

When you have to start not merely taking sentences out of context, but snip out fragments of sentences for your point, you should question whether you're arguing in good faith. You quoted my words "Wikileaks have never lied about this" and responded with "How could you know?" My actual words: "to my knowledge, Wikileaks have never lied about this." Whereas we have established examples of the CIA lying even to Congressional hearings about their use of torture. Any objective assessment will conclude that the CIA should be afforded less benefit of the doubt than Wikileaks.

As to your link, have you even read it? It headlines about a major lie by Wikileaks. But the "story" seems to be that someone on the Wikileaks twitter account repeated a news story that Clinton's campaign manager had deleted their tweets and then deleted the comment when he did tweet. Wow. Such significance. They don't even link to anything involved. The "story" is rubbish.

3
0
h4rm0ny
Silver badge

Further to my last comment, I have to seriously question this article writer's impartiality. For example, they talk about the alleged Russian interference in the election of Yanukovich (I see Wikipedia states it as fact, but uses the Supreme Court of the Ukraine - appointed by the people who overthrew him - as their citation). They neglect to mention that the USA was actively funding opposition in the Ukraine and helped forment the Orange Revolution which overthrew the government. You also can't help but notice how for its example of nation-state hacking against Germany, the article goes with alleged hackers possibly from Russia of very dubious success, rather than the much more widely known and established fact that the USA was monitoring Angela Merkel's communications. In her own words: "that's not what friends do."

This article does not do what I consider the required level of journalism to present an accurate picture.

Also: "It's possible that culprits can manipulate digital evidence to make it appear as is someone other than themselves perpetrated an attack."

Well, duh! Here's a pro-tip that actual security experts have been saying for a while: use paper ballots, not voting computers.

5
0
h4rm0ny
Silver badge

Re: Hmm... Deja Vu...

A little unfair to compare the elected leader of Russia with a man who seized power and murdered millions in nationwide purges, isn't it? Do people in the West really see Putin as that much of a caricature that they roll him in with the likes of Stalin?

3
0
h4rm0ny
Silver badge

"MIght appear to be unprecedented?"

Well, only if you've never followed the entire history of the CIA and their repeated interference in foreign governments - not infrequently democratically elected ones as well. THEN you might see quite a lot of precedent.

Also, doesn't this assume rather a lot in the first place in taking as a given that this did occur as the CIA (sans proof) say it did? I mean Wikileaks claim it was given them by an insider in the DNC (the one that was shot several times in the back in a "robbery" near their home, by any chance?) and to my knowledge, Wikileaks have never lied about this. Whereas the CIA lied to their own government about torturing people and ran an entire profit-making drugs business to fund operations that Congress hadn't? So isn't it more likely that it was a leak and not "Russian hacking the election". Which is a funny way of putting informing the electorate about what their candidate actually did and said, anyway.

5
1

Coming to the big screen: Sci-fi epic Dune – no wait, wait, wait, this one might be good

h4rm0ny
Silver badge

Re: Lynch's Dune was good, lots of people agree

I think if Lawrence of Arabia had been made to day, there would be an extremely vocal grouping of people who decried it as "having a White protagaonist who saves the day for the brown people" and demand that it be changed so Lawrence wasn't the hero.

8
0
h4rm0ny
Silver badge

Re: I am obviously alone in this.

I'll say this for the Lynch version. If it had been a bog-standard Space-epic of its era, few would be talking about it here now. The spectacle of the floating baron ripping plugs out of people's hearts (why?) or enormous baroque fish-tanks being wheeled into an emperor's audience chamber, eyebrows like someone threw two jungle caterpillars at someone face at high speed... It may or may not be good, but it certainly makes one Hell of an impression.

13
0
h4rm0ny
Silver badge

Re: Can't be a single movie

But in this case, it's almost inescapable that the USA are the parallel to the Bad Guys. Paul Atreides joins a bunch of semi-nomadic desert people whose homeland is being mercilessly exploited for its natural resources by an empire and trade guild using better technology, air support, etc. and appointing the plum job of regional governor to their own upper class politicians. (Baron Harkonen, Duke Atreides...) It's essentially Lawrence of Arabia in Space.

Fremen or Yemen, the parallels are pretty starkly drawn. If they do this, they should absolutely carry it through to how Paul leads a semi-religious war against the rest of the galaxy leading to billions of deaths. People don't seem to do Tragedy in the classical sense anymore. It would be good to have the full arc. And I don't mean just making him a Hard Man Making Hard Choices anti-hero. I mean actually follow the path of the noble and caring leader through to the slaughtering despot he becomes.

23
1

Dear Microsoft – a sysadmin's wishlist

h4rm0ny
Silver badge

It must be great to have your own news outlet

So you can rant about all the things you're upset about.

1
11

Dido queen of carnage steps down from TalkTalk

h4rm0ny
Silver badge

Re: Great headline

Dido of Carthage killed herself, not her kingdom, though.

3
0
h4rm0ny
Silver badge
Unhappy

Re: Dido's First Job Interview

>>".... because I need the money and no one likes me at home."

Well, I'm pretty sure that part is a lie, at least.

0
0

TV anchor says live on-air 'Alexa, order me a dollhouse' – guess what happens next

h4rm0ny
Silver badge

Re: Blakes 7 and Microsoft

Was it ever explicitly stated that Avon and Callie were involved together? There were hints and there was line of Villa's with "Did I miss something" and I think Callie or Jenna replied "yes, you missed something. which I thought was about Avon and Callie. I was too young to watch it when it came out, I think, but maybe they re-ran it. It might have been my first introduction to Sci-Fi.

0
0
h4rm0ny
Silver badge

Great. So in addition to the USA imposing its spelling and grammar on the rest of the world, it's now imposing its prhasing and meanings, too.

1
0

CES 2017 roundup: The good, the bad, and the frankly bonkers

h4rm0ny
Silver badge

Re: I quite agree

Put it in the toe of your shoes. A small vibration there as you approach your turning would be noticeable and intuitive.

0
0
h4rm0ny
Silver badge
Paris Hilton

And now she can legitimately tell you to get lost? ;)

4
0

Assange confirmed alive, tells Fox: Prez Obama 'acting like a lawyer'

h4rm0ny
Silver badge

Re: >So what crime did Assange commit that would require a pardon?

>>"You can't have it both ways. The only way his behaviour adds up is if you assume something *did* happen and he damn well knows it."

Or if you believe that people in the US government are out to get him. That also works. Are you really arguing the unliklihood of that?

3
1
h4rm0ny
Silver badge

Re: ...unlike his credibility

Fascinating. So what information has been passed to Wikileaks that they have decided not to publish for reasons of bias. Presumably you have such a clear view of what Wikileaks have been given in order to say that they're being selective. I mean if you didn't, your post would be without support.

11
2
h4rm0ny
Silver badge

Re: I'm game

Unless of course his source was someone in the DNC in which case it would be pretty obvious they wouldn't need to be "fed by Russia" as they'd already have access.

Coincidentally Seth Rich had such access.

10
1
h4rm0ny
Silver badge

Re: A pardon?

Correct, but you're missing something. There is precedent for a US president issuing a pardon for crimes where charges have not actually been brought. (yes, really). Essentially turning it into a promise not to prosecute. Assange has said that his fear is not the charges in Sweden but that he will be extradited to the US which will immediately issue charges. And that's not an unreasonable position given the circumstances. We had trouble enough holding onto Gary McKinnon and all he did was guess a couple of passwords and fail to find UFO evidence. So some sort of guarantee from the US president that they wont try to extradite him would be pretty valuable.

It will be interesting when Trump takes charge and the CIA presumably have to do what he tells them and actually reveal the proof they claim to have (if any). Well, at least I think the CIA are supposed to do what the president tells them to do... Actually, maybe somebody should tell the CIA that.

14
0

My fortnight eating Blighty's own human fart-powder

h4rm0ny
Silver badge

I believe it can be good and balanced...

But my question is what is the nutritional gap between this and say, a bowl of porridge and an apple?

3
0

Bitcoin breaks US$1,000

h4rm0ny
Silver badge

Re: Sudden crash coming again?

Correct. The amusing (and valuable) thing about BitCoin is that it is a literally fiat currency that behaves in all meaningful ways like a non-fiat currency.

1
1
h4rm0ny
Silver badge
Joke

Re: Sudden crash coming again?

>>"Seeing as there is still no material grounds for the valuation, and that with no underlying asset the exposure is 100%, are we just waiting for another big crash? The whole of the value is based on faith in people you probably can't trust (after all they're actively seeking an unregulated money transfer/launder), so maybe another trading platform theft will do it. Must say as a store of value it seems risky, and as an exchange platform it seems volatile."

My first instinct is to ask you whether you're talking about BitCoin or the dollar.

But then I remembered that the dollar actually is backed by something - USA's willingness to invade if you decide not to use it!

7
1

Prez Obama expels 35 Russian spies over election meddling

h4rm0ny
Silver badge

Re: Evidence it was the Russians what dunnit

>>That's not as much of an either-or decision as you seek to portray, the third option is neither.

Neither doesn't really work. CIA say it wasn't a leak. Wikileaks say it was. And you sounding very clever say that neither is right? What would "neither" mean? Or are you suggesting that both are so lacking in credibility that there is no evidence either way. If so, please give some examples of where Wikileaks has lied or passed out false information. I'll be waiting.

>> If they had been digging as deep in GOP leaks as Democrats they would have had more credibility

You presume that there are available equivalent leaks for the Republicans as well. Given leaks of this scale are rare, you'd need to provide some reason why you think this is so. Wikileaks are a place for people to leak information to. They don't magic up a bunch of emails at will. There were very notable circumstances for the DNC leak - internal corruption, a popular candidate (who might have beaten Trump) being sabotaged by staff who were supposed to be neutral... On the Republican side, you already knew most of the Republican big wigs wanted to oust Trump. I mean they even discussed disregarding the result of the primaries openly. Where is your evidence that Wikileaks was passed leaked Republican emails and deliberately sat on them? Because that's what you're claiming with the above.

1
0
h4rm0ny
Silver badge
Trollface

Re: Evidence it was the Russians what dunnit

Maybe the USA should get rid of the electoral college if they dislike it so much. They could have a proportional representation system... Like Russia does. ;)

8
1

Forums

Biting the hand that feeds IT © 1998–2018