* Posts by Ramazan

812 posts • joined 1 Aug 2008

Page:

What code is running on Apple's Secure Enclave security chip? Now we have a decryption key...

Ramazan
Bronze badge
Paris Hilton

What code is running on Intel's Management Engine chip?

3
0

Surfacegate: Microsoft execs 'misled Nadella', claims report

Ramazan
Bronze badge
Paris Hilton

Re: Worse, with Apple, you at least get a decent UNIX system

kind of. It doesn't have systemd at the very least. Other than that there were better, lighter and thinner notebooks from Sony.

- "Apple has been shipping Powerbooks/MacBook[Pro]s for nearly two decades that have been thinner than any competing laptop, thinner for the first decade that was"

- "You know nothing, Jon Snow"

:)

0
0

Debian patches plenty in new version 9.1

Ramazan
Bronze badge

Re: I'm fairly certain there is one patch ...

The same patch Gentoo applied to xpdf, only this time versus systemd.

https://security.gentoo.org/glsa/201402-17

2
0

Crazy bug of the week: Gnome Files' .MSI parser runs evil VBScripts

Ramazan
Bronze badge

Re: try to gain root

on a properly configured grsec system gaining root won't give you much.

0
0
Ramazan
Bronze badge

Re: Please tell me it doesn't have a dependency on WINE

on Devuan Linux there are basically 3 sorts of dependencies: Depends, Recommends and Suggests. Most probably gnome thumbnailer "Suggests" wine so wine won't even be installed by default.

1
0
Ramazan
Bronze badge

Re: sudo apt-get purge gnome-exe-thumbnailer

if the package is a constant source of CVEs, the problem should be fixed on distro level, like this one for example

- https://security.gentoo.org/glsa/201402-17:

"Resolution: Gentoo has discontinued support for Xpdf. We recommend that users unmerge Xpdf"

3
0

Why can't you install Windows 10 Creators Update on your old Atom netbook? Because Intel stopped loving you

Ramazan
Bronze badge

Re: When charging, it charges the display battery before the keyboard one.

Multiple batteries are supported and most probably "charge BAT1 before BAT2" logic is implemented outside of OS, i.e. in firmware. Just boot a LiveCD image of any Linux distro you like from a USB thumbdrive and check what works and what doesn't.

0
0
Ramazan
Bronze badge

Re: Similar to that, I have an Acer AspireOne

Does it blanks screen and freezes when on battery while working OK on PSU?

0
0

Dear racist Airbnb host, we've enrolled you in an Asian American studies course

Ramazan
Bronze badge

Re: What she can't do is act on it to discriminate against someone.

Really? She can legally buy a gun and [illegally] kill every Asian she can aim on. Probably it will end exactly this way someday.

2
7

All your bass are belong to us: Soundcloud fans raid site for music amid fears of total collapse

Ramazan
Bronze badge
Facepalm

will put us on our path to profitability

I'll be with you darling soon,

I'll be with you when the pigs start flying

0
0
Ramazan
Bronze badge

We continue to be confident

the spokesperson told El Reg... "We continue to be confident that if we just flog this dead horse harder it will put us on our path to profitability and ensure SoundClowns' long-term viability."

1
0
Ramazan
Bronze badge
Coat

BTW, guys, you didn't do a followup to this article:

https://www.theregister.co.uk/2008/11/06/ginger_nuts/

This had been covered on wikipedia: "Noko claimed that the money was a gift after she and Baker became lovers. Baker replied, "I've a scar that only a woman who had a thing with me would know. It's there and she doesn't know it's there".[18] Noko pled not guilty, but was convicted of fraud and in October 2010 was sentenced to three years of "correctional supervision," a type of community service. Baker responded to the sentence as "a travesty".[19]"

P.S.

Compare this: Cream - Sunshine of Your Love - Live Early Prototype - https://www.youtube.com/watch?v=elmtuLnmthQ

to this:

Cream - Sunshine of your love - Royal Albert Hall 2005 - https://www.youtube.com/watch?v=vyftaay-pFA

Looks like the Cream played it twice faster back in the days...

0
0

Speaking in Tech: What is a Windows 10 licence worth these days?

Ramazan
Bronze badge
Paris Hilton

Does original X-Com / UFO work on Windows 10?

0
0

Apple building data centre in China to comply with tough cybersecurity laws

Ramazan
Bronze badge

the same in Russia (WRT Apple and citizens' data)

0
1

Ubuntu Linux now on Windows Store (for Insiders)

Ramazan
Bronze badge

Re: while it's in this frozen state, it's effectively marked as 'dirty'.

You know, if you mount frozen ext2/3/4, you'd screw it. That's why you MUST NOT mount / from initrd scripts when doing resume-from-hibernate.

1
2
Ramazan
Bronze badge
Holmes

Looks like only systemd-tainted distros get Microsoft approval

6
3

Trump backs off idea for joint US/Russian 'impenetrable Cyber Security unit'

Ramazan
Bronze badge

Re: USSR was, in many ways, a lot less dangerous than Putin's nationalist Russia.

nationalist? Meh... Dangerous? Neither. ATM at least. But may become deadly dangerous soon enough, as they are scared shitless by NATO buildup and anti-ballistic missile deployments. Most probably they'll increase thermonuke warhead numbers to tens of thousands including medium range varieties specifically for Poland and other "friendly" neighbours.

0
0
Ramazan
Bronze badge

Re: WTF is 'Obaka' supposed to mean anyway?

baka means "stupid" in japanese. O'baka is a honorific form, maybe smth along the His Stupid Majesty lines.

1
0
Ramazan
Bronze badge

Re: @CrazyOldCatMan Hitler and Stalin had a nice pact

Hitler and Stalin fought a proxy war in Spain in 1936-1939 and USSR lost that war, clearly the pact (Molotoff-Ribbentrop) doesn't mean they were friends or allies.

1
0

Multics resurrected: Proto-Unix now runs on Raspberry Pi or x86

Ramazan
Bronze badge

Re: OS designers were still unaware of the security implications,

"and threw away segments because of the performance issues"

https://en.wikibooks.org/wiki/Grsecurity/Appendix/Grsecurity_and_PaX_Configuration_Options:

PAX_SEGMEXEC

This implementation is based on the segmentation feature of the CPU and has a very small performance impact, however applications will be limited to a 1.5 GB address space instead of the normal 3 GB.

1
0

May the excessive force be with you: Chap cuffed after Star Trek v Star Wars row turns bloody

Ramazan
Bronze badge

As a TV series, Babylon 5 beats all non-anime space operas hands down. Nothing is really close. If we add animated series to the question, Futurama may look better than B5 for some, and Knights of Sidonia is clearly the best space opera / sci-fi series of all times.

1
0

While USA is distracted by its President's antics, China is busy breaking another fusion record

Ramazan
Bronze badge
Coffee/keyboard

Re: just like you get from the French, the Americans, the Russians, Microsoft, etc.?

"As member nations, they all have equal access to the shared pool of 3 finger salutes developed by the project".

0
0

Perl devs solve ancient Riddle: 'What's a vuln we caught from Oracle?'

Ramazan
Bronze badge

Re: I remember *other people's* perl with the puzzled expression

s/perl/code/

3
0

Create a user called '0day', get bonus root privs – thanks, Systemd!

Ramazan
Bronze badge
Pint

what to do with buggy packages

https://security.gentoo.org/glsa/201402-17

3
0

PCs will get pricier and you're gonna like it, say Gartner market shamans

Ramazan
Bronze badge
Windows

PC will get pricier if you value your privacy

https://libreboot.org/suppliers.html

https://minifree.org/product/libreboot-d16/ -- €5,350.00–€7,500.00 depending on configuration

1
1
Ramazan
Bronze badge

Re: 1080p....

When I run Xorg with VESA driver and Xorg with intel driver on the same PC, they use different display DPI settings (and therefore different default font sizes). So I had to edit xorg.conf and set screen size manually. Maybe it's possible to do the same in Microsoft Windows, if you don't like how Microsoft figures out display scaling on 13" 1080p screen...

2
0

Watch: Armed Ukrainian cyber-cops raid MeDoc in NotPetya probe

Ramazan
Bronze badge
Alert

http://www.bbc.com/future/story/20170704-the-day-a-mysterious-cyber-attack-crippled-ukraine -- please note the "government mandated software" phrase there. This "government mandated software" is MEDoc. So the title of this theregister article should be read as "Ukraine authorities raid government mandated s/w maker in NotPetya investigation".

1
0
Ramazan
Bronze badge
Facepalm

Re: accounting company of such a size that doesn't care

Tax office in the Ukraine stopped accepting "paper" tax declarations around 2012 and only takes them in digital format with crypto signature. The law was instated by them, but software was none of their concern, so several underqualified companies appeared on the scene with their proprietary paid accounting/tax "suites" or subscriptions. There are some s/w with limited functionality which are free, but they are closed source too. No opensource tax software exist in the Ukraine that's able to send tax declarations in the format as required by law, and this is a root of the problem.

Tax office does have a web site, but they don't accept tax declarations via web. You have to install closed source s/w to be able to send your tax declaration. And each time you need to do it (every year or every quarter-year), you must update your tax s/w first because some forms have been changed or whatever.

Basically proprietary s/w with mandatory quarterly update cycles was forced onto users by the Ukrainian govt, and the govt found nothing better than to lay blame on proprietary s/w devs when shit hit the fan.

5
0

Kaspersky repeats offer: America can see my source code

Ramazan
Bronze badge

Re: and German rocket scientists

Nazi scientists to be precise. The same's true for USSR, they also employed all the talented nazis they could get their hands on. World hadn't stop spinning, and all the exterminated jews made an extra spin in their graves for that.

0
0

Linux 4.12 kernel lands: 'Go forth and use it' quoth Linus Torvalds

Ramazan
Bronze badge
Pint

Re: It is utterly ridiculous that drivers ship with a kernel. Even Windows...

I've got a great idea. Don't ship any drivers with Windows. That way nobody will be able to install it on anything and the poor cripple will die the sooner the better.

9
4

Virus (cough, cough, Petya) goes postal at FedEx, shares halted

Ramazan
Bronze badge

Re: More likely is a substantion bonus and as much vodka as the authors could drink

as much vodka as the authors could drink in GULAG. If the authors are known, it's still possible for USA or Ukraine to get them jailed or extradited and jailed or caught abroad and jailed.

0
0

Kaspersky Lab US staff grilled by Feds in nighttime swoop

Ramazan
Bronze badge
Facepalm

Re: Trump will not even be able to say "Hi boss" when he meets Putin

it's time to either drain your medicine cupboard or at least change the dosage. What an idiot.

1
0

Don't panic, but Linux's Systemd can be pwned via an evil DNS query

Ramazan
Bronze badge
Facepalm

Re: VM and container users where they need to shutdown and reboot rapidly

Are they running a reboot farm?

2
0
Ramazan
Bronze badge

Re: HOWEVER, this is just a bug

The same could be said in defence of xpdf in Gentoo, but they removed it from their repo.

3
0
Ramazan
Bronze badge
Coat

Re: Debian LTS

Last week I switched another one of my computers from Debian to Hardened Gentoo.

2
0
Ramazan
Bronze badge

Re: Getting rid of systemd won't stop buffer overruns.

Getting rid of systemd will certailny stop buffer overruns caused by systemd. That's a welcome improvement to overall system security.

5
0
Ramazan
Bronze badge
Facepalm

Re: the real problem here is coding in a language that allows overruns to happen

The real problem is allowing people who thinks that a language should solve all their overrun problems to code in the language that allows overruns to happen.

4
0
Ramazan
Bronze badge

Re: I refuse to set up non-systemd server

Let me fix it for ya, John:

"I use xpdf on all the computers I manage, out of choice. I refuse to set up non-xpdf setups any more, it is just so vastly more pleasant to work with than the alternatives."

(https://security.gentoo.org/glsa/201402-17)

4
1
Ramazan
Bronze badge

Re: I think the appropriate response would be a gallic shrug

Let me provide an analogy. You know, xpdf frequently had code execution vulnerabilities found in it and ultimately was removed from Gentoo in 2014 when another one resurfaced and became the last straw:

https://security.gentoo.org/glsa/201402-17

"Description: Multiple vulnerabilities have been discovered in Xpdf. Please review the CVE identifiers referenced below for details.

Resolution: Gentoo has discontinued support for Xpdf. We recommend that users unmerge Xpdf: # emerge --unmerge "app-text/xpdf"

After that, there's no more xpdf in Gentoo. They use mupfd instead. I hope systemd meets the same fate, the sooner the better. Flushing toilet water icon, please.

6
0

Control-C! umount! Ctrl-Alt-Delete! Tintri forcibly ejects from today's IPO

Ramazan
Bronze badge

alt-sysrq-u, alt-sysrq-o

1
0

US Senators want Kaspersky shut out of military contracts

Ramazan
Bronze badge

Re: If their computers run fast enough to let them

Tha last time I saw Kaspersky Antivirus in action was more than 10 years ago, and it rendered computer slow, exactly like you described. Think it's the same nowadays, so I see no sense in exchanging one AV for another or vice versa.

1
8

Everything you need to know about the Petya, er, NotPetya nasty trashing PCs worldwide

Ramazan
Bronze badge

Re: It's a bit harder if the partition table is screwed

Partition table is usually restored by looking for 55 AA at end of sectors. In good old days you would only look at cylinder boundaries and cylinder boundaries + 63 sectors, that was damn fast. Now that fdisk et al operate in non-DOS-compatible mode by default, the process takes much longer.

1
0

Huge ransomware outbreak spreads in Ukraine and beyond

Ramazan
Bronze badge

Re: Ukraine ?

Well, if the virus is really named Petya, then it might be named so after Pyotr Poroshenko, the current president of Ukraine (Petya is diminutive form of Pyotr FYI). So, Putin or not, this one was probably targeted at Ukraine.

1
0

Intel's Skylake and Kaby Lake CPUs have nasty hyper-threading bug

Ramazan
Bronze badge
Terminator

Re: when a bug/missing feature prevents the system from booting

"I've seen things you people wouldn't believe".

0
0

Page:

Forums

Biting the hand that feeds IT © 1998–2017