* Posts by Tom Paine

1694 posts • joined 19 Aug 2008

Ecuador says 'yes' to Assange 'freedom' deal, but Julian says 'nyet'

Tom Paine
Silver badge

If he had the brains he was born with...

...he'd come out now, get nicked, get extradited, be tried for being a Russian agent, jailed and immediately pardoned by his pal in the White House. The longer he leaves it, the less likely it is that the presidential pardon will still be available.

2
5

You're legit and you know you are... Thanks to chanting racist footie fans, linking to dodgy stuff isn't necessarily illegal (well, in Europe)

Tom Paine
Silver badge

Re: Good English law

It's OK, it's not true. Otherwise there'd be no political or investigative reporting in the UK.

0
0
Tom Paine
Silver badge

"You're going home with a golden handshake, ginormous final contribution to your already bulging pension pot and a couple of cosy non-exec posts we'll sort out for you"

0
0
Tom Paine
Silver badge

Nothing to say about the story

If the Board of your employer was a football team, what would be your favourite chant?

Mine would be: "Everybody hacks us, we don't care!"

A few other possibilities spring to mind...

0
0

'Say hello to my little vacuum cleaner!' US drug squad puts spycams in cleaner's kit

Tom Paine
Silver badge

Craftsman? Stanley? Pfffffft

It's all about the Festool!

https://www.axminster.co.uk/festool-ctm-26-e-ac-cleantec-dust-extractor-m-class-ax991204

Aka "nah mate, that's not an M class dust extractor... THIS is an M class dust extractor"

Unless you're building a proper general airspace dust extractor, of course, but those can't pass as vacuum cleaners like the Festool can (just).

https://youtu.be/UJQXUbRG-oA

I need a new Axminster catalogue, the pages of this one are all stuck together...

10
0

Total Inability To Support User Phones: O2 fries, burning data for 32 million Brits

Tom Paine
Silver badge

Re: Not just O2

In the US, at least, mobile operators and VOIP services were supposed to tell customers not to rely on the service for emergency services, as the networks don't have sufficient Ma-Bell approved reliability and resilience - as of a few years ago anyway. In other words, have a landline backup if you care about 24/7/365 availability guarantees for 999 service. Trouble is that no-one thinks about that nowadays, and the mobile network's probably almost always there. (Would be interested in the number of emergency calls missed due to network outages, presumably someone somewhere tracks that number.) Bet it's an infinitesimal fraction of the total number of 999 calls.

8
0

Roscosmos: An assembly error doomed our Soyuz, but we promise it won't happen again

Tom Paine
Silver badge

Re: Say what you want...

Looking around the world today, it appears to be wall-to-wall Mike Charlie Foxtrottery as far as the eye can see.

0
0
Tom Paine
Silver badge

Re: I can't get the sensor to fit

Oooh, my cue to post the L5 ground loop audio from Eileen Collins's launch. Stay with it for the low LOX level premature SSME cut-off half a sec before the scheduled MECO, which IIRC was due to a big hole in a nozzle cooling circuit. (The auto cut-off is there because apparently cryogenic gas turbopumps tend to explode if suddenly fed vacuum when running.)

"Yikes!"

"Concur."

Oy, this makes the hair on the back of my neck stand up every time I watch it!

https://youtu.be/O9WjCyWq-iA

Context https://waynehale.wordpress.com/2014/10/26/sts-93-we-dont-need-any-more-of-those/

And there's a WP article of course.

0
0
Tom Paine
Silver badge

Woah

That's a pretty awesome view of the Korolev Cross, never saw booster footage from a Soyuz launch before.

That said, they were evidently extremely lucky things didn't end badly.

0
0

Sorry, we haven't ACLU what happened in sealed 'Facebook decryption' case, but let's find out

Tom Paine
Silver badge

Haven't ACLU?

Samantha has to nip off early now, as she's meeting Bob, a retired spook, as part of her research for a new book on cryptography and public policy. He likes to take her through the backdoors, and then with the help of Samantha's friend Alice they will explore a Man-in-the-Middle compromise.

(With apologies to Messrs Lyttleton and Nasmith.)

34
0

Congrats to Debbie Crosbie: New CEO at IT meltdown bank TSB has unenviable task ahead

Tom Paine
Silver badge

Re: In it for the money

If the people who were in charge of these things were given a basic salary and given a bonus if - and only if - they avoided or sorted out cock ups, you'd probably find nobody willing to do it!

Quite.

They're all in it for the money and essentially if it all goes tits up their attitude is - meh, I'll be on an island in the sun whilst someone else repeats the process.

Same as 99.8% of El Reg's readership, then, I'd have thought. If you're not doing it for the money, why don't you go in and work on your days off?

0
0

Official: IBM to gobble Red Hat for $34bn – yes, the enterprise Linux biz

Tom Paine
Silver badge

Eleven days later, this was on the BBC News front page.

https://www.bbc.co.uk/news/uk-wales-46127592

0
0
Tom Paine
Silver badge

Re: At least is isnt oracle or M$

How quickly they forget. (Or perhaps they were still at primary school? (Now I know what all the old men meant, when i was younger, when they kept exclaiming "I feel so OLD!")

https://www.bloomberg.com/news/articles/2001-12-09/big-blues-big-bet-on-free-software

2
0
Tom Paine
Silver badge
Unhappy

Re: At least is isnt oracle or M$

It's all bad, all the way down. /o\

1
0
Tom Paine
Silver badge

Two words

Golden handcuffs.

1
0

Google logins make JavaScript mandatory, Huawei China spy shock, Mac malware, Iran gets new Stuxnet, and more

Tom Paine
Silver badge

Re: Gmail alternatives

>>> it is a free service

>>>

>> Then you are the product.

>>

>I t is clear that none of the 9+ down voters even tried checking out 1337.no as it is free

I seem, so a wealthy philanthropist funds the servers, the software, the network transit, the admins to look after it --- and all because he loves us, and wants us to send a lot of email.

Yeah. right.

0
0
Tom Paine
Silver badge

Correct.

0
0
Tom Paine
Silver badge

At the risk of stating the bleedin' obvious, apart from the obvious stuff like the ethnic cleansing of hte UIghers - there are concentration camps right now, on this planet, and your phone (and mine)was made in the same country - the thing is that Australia's our ally and China is a hostile foreign superpower.

Is it really that big a stretch to find spying by the one to be a bad thing, and the other to be a good thing?

1
0

From 'WebEx' to 'WebExec' to 'WTF, my PC!' Cisco rapped in chat app security flap

Tom Paine
Silver badge

Pedant klaxon

An exploit could allow the attacker to run arbitrary commands with SYSTEM user privileges.”

Malware running locally on a machine, or a malicious logged-in user, could abuse this hole to gain system administrator rights

Malware running as SYSTEM already has higher privs than Administrator.

0
0

PC version of Linux 4.19 lands with PC version of Linus Torvalds: Kernel handed back to creator

Tom Paine
Silver badge

Really? You pushed back some code, politely pointing out that it didn't meet the company's documented code standards and conventions, and you dragged to HR and accused for oppressing people?

Are you quite, quite certain that's what happened?

0
0
Tom Paine
Silver badge

Re: God protect us from machinations of small-minded morality dictators.

Oh god, does this really need explaining in 2018?

If you haven't got some rules written down. you can't fire someone or block them from access without the risk of putting yourself inline for a law suit - depending on which country they and you are in. How many FLOSS projects rub their hands with glee at the thought of months with lawyers?

Welcome to the 1990s, enjoy your stay.

0
0

Morrisons supermarket: We're taking payroll leak liability fight to UK Supreme Court

Tom Paine
Silver badge

"Trusted partners"

After external auditor KPMG asked for copies of various data including the entire company payroll,..

I'm an infosec grunt in the trenches. See these scars? KPMG annual audit. These ones -- management consultancy at another Big Four firm who likewise wanted basically unrestricted access to everything. And so on and so forth.

4
0

Linux kernel's Torvalds: 'I am truly sorry' for my 'unprofessional' rants, I need a break to get help

Tom Paine
Silver badge

Re: That's right Linux community... bend over...

Sorry to break this to you, but Myers-Briggs is widely recognised (at last!) as baloney.

0
0

Roughly 30 years after its birth at UK's Acorn Computers, RISC OS 5 is going open source

Tom Paine
Silver badge

Re: Yep

You mean "your Prussian friend"?

2
0

Core-blimey! Riddle of Earth's mysterious center finally 'solved' by smarty seismologists

Tom Paine
Silver badge

Re: So it's...

Fudge is partially crystaline... Perhaps it behaves as glass is often claimed? Hmmm, not sure a fudge drop experiment would be a good way to find out, though

1
0

What could be more embarrassing for a Russian spy: Their info splashed online – or that they drive a Lada?

Tom Paine
Silver badge

Nope - you are mistaken - in principle, a citizen of Russia (or any other non-EU citizen) is covered by GDPR as long as they're residing in an EU member state.

19
0
Tom Paine
Silver badge

Re: If the spy is living in the EU...

I thought there were the usual national security exemptions in GDPR?

13
0

Salesforce dogged by protests, leaked emails, and guerrilla blimps on first day of Dreamforce

Tom Paine
Silver badge

Freudian PR

we can deliver great customer experiences for businesses around the world.

A great customer experience FOR A BUSINESS is to rinse them of every penny they've got, and find them banging on your door hoping to sell you some of their family members in exchange for more of your products.

0
0

A story of M, a failed retailer: We'll give you a clue – it rhymes with Charlie Chaplin

Tom Paine
Silver badge

Re: Surprising

Retailers will generally aim for a gross margin of 40%

LOLWAT? A supermarket that made 5% gross would be coining it in, let alone 40%

0
0
Tom Paine
Silver badge
IT Angle

The Beancounter

This article appears to be about accountancy. What's it doing here?

0
0

Perfect timing for a two-bank TITSUP: Totally Inexcusable They've Stuffed Up Payday

Tom Paine
Silver badge

Re: Banking privacy

That's all true except for the word "because". I doubt any of those tweeters are aware there's any sort of potential security issue with telling the world who they bank with under their real names.

0
0
Tom Paine
Silver badge

Re: The future is coming!

The whole point of using a hard currency is that it's not subject to hyperinflation. An box of eggs may cost £10 in six months time but in principle they'd still be worth $1.49 .

0
0
Tom Paine
Silver badge

Re: "If you don't leave, TSB will continue to not give a fuck."

Er. And the CEO having to quit, and let's be honest, anyone involved with this at a senior level has it on their CV for the rest of their careers (if they still have one). And I think you'll find the FCA and PRA will be levying fines in due course.

2
0
Tom Paine
Silver badge
WTF?

It's the end of September 2018...

...and now you're considering switching away from TSB? Because the mobile app's playing up for a couple of hours?

Users... can't live with 'em, pass the dry roasted.

1
0

WLinux brings a custom Windows Subsystem for Linux experience to the Microsoft Store

Tom Paine
Silver badge
Facepalm

Re: Why?

Rightr, because Linux web browsers don't support cookies. Or Javascript.

1
0
Tom Paine
Silver badge

Re: Indeed you are expected to pay

[...] in the hope they become collectibles...

My dear old thing -- if you're collecting them, then...

1
0
Tom Paine
Silver badge

Re: Indeed you are expected to pay

I tried sublime text 3 with vcxsrv and it "just worked" although I had to add "export DISPLAY=:5" to my ~/.profile

Ahhh *nix, don't ever change XD

(I speak via 4.15.0-34 )

2
0
Tom Paine
Silver badge

Re: The Other Way Round

Yes, experimentation with MS stuff is good, and I encourage all my competitors to try it,

( Coined by someone on NANOG years ago, not my line. Apologies/ acks to whoever.)

2
0
Tom Paine
Silver badge
Pint

Popcorning pedantic Free / Open Source nerds

Barnes expects users to pay for downloading his work from the Microsoft Store, which will prove controversial in the Linux world.

Nothing wrong with that, as long as the source is there. Red Hat are doing OK with charging money.

It's still Friday night, and what better excuse is there for a beer?

1
0

Health insurer Bupa fined £175k after staffer tried to sell customer data on dark web souk

Tom Paine
Silver badge
Joke

Re: ROTFLMAO

"No, Mr Version 1.0 -- I expect you to die!"

5
0
Tom Paine
Silver badge

Total game changer!

Well, GDPR has certainly put the cat among the infosec pigeons now! This gigantic, eye-watering fine will devastate the £12 Bn[1] annual turnover firm and cause a revolution in security throughout the country.

As a humble grunt toiling in the security trenches I for one can't wait for another 70 mins to pass so I can open a nice bottle of cask-conditioned real risk controls and get mitigating.

[1] H118 half-year report https://www.bupa.com/corporate/our-performance/financial-results

6
2

Microsoft: We busted Russian Fancy Bear disinfo websites

Tom Paine
Silver badge

Re: How things have changed

Surely I'm not the only one old enough to remember Reagan's speechmakers coining the phrase "empire of evil' to refer to, yes, the Soviet Union?

0
0

Intel rips up microcode security fix license that banned benchmarking

Tom Paine
Silver badge

Who would win...

Who'd win in a fight between Theo de Raadt and Linus Torvalds?

0
1

Why waste away in a cubicle when you could be a goddamn infosec neuromancer on £50k*?

Tom Paine
Silver badge

Why?

Or just become a skilled trades - good builders make far, far more than £50k round here, a reasonably competent and experienced chippie, sparks, tiler, plumber, plasterer etc will be closer to £100k than £50k.

22
0

Google Chrome 69 gives worldwide web a stay of execution in URL box

Tom Paine
Silver badge

stop inventing stuff!

My pile of unread reading is threatening to topple and cause devastation in a 40 mile swathe from here ot Basingstoke.

The PublicKeyCredential type allows individuals to log in using mechanisms that support an asymmetric key pair, which is potentially more secure than a password. Two devices that do so are the Android fingerprint reader and the macOS TouchID sensor, which means websites implementing the Web Authentication API will be able to read the PublicKeyCredential passed from either of these biometrics sensors to log the user in.

How much more fresh hell do we really need??

1
1

Hackers faked Cosmos backend to hoodwink bank out of $13.5m

Tom Paine
Silver badge

Re: Hack against third-party interface

Or poor network segregation, weak controls of admin accounts and working practices, unhardedened systems on the same desktop network as Reception being used for administration of production systems, poort staff awareness,.. tons and tons of stuff that could have lead to the attackers getting access to the switch.

As you say, I doubt it was itself directly "on the internet".

0
0
Tom Paine
Silver badge

Re: It is all about penetration testing

real world attackers (and gov agencies) use - bribing, woman, booze.

Such attacks are extremely expensive to carry out, and risky (as there's a human being who can, if detected. be tracked, surveilled, captured, interrogated etc.) There's a lot of highly specialised tradecraft involved. And so on. Very, very few organisations have that class of attacker in their threat models, for the obvious reason that either they're not a threat, or because realistic defences against such attacks would be too much trouble and money to be worth it. For instance, you start with DV-level vetting of all your staff, firing everyone who fails it. Your firm wouldn't have any problem losing 50% of it's headcount, right?

If they want you that much, they'll send ninja scuba divers up through the sewers at 4am to plant pinhead audio bugs that can relay the sound of typing to someone who can reconstruct the keystrokes, or whatever.

0
0

Official: Google Chrome 69 kills off the World Wide Web (in URLs)

Tom Paine
Silver badge

Chromium

...the upstream open source project's browser is pretty good before Google gets to it. I use it on Linux. Must check Firefox out again though, I was always a Ffx user but it choked horribly on LinkedIn for some reason whilst I was job hunting, and I'm too lazy to have switched back.

1
0
Tom Paine
Silver badge

Nope

Very bad idea.

1
0

Revealed: British Airways was in talks with IBM on outsourcing security just before hack

Tom Paine
Silver badge

Re: BT was going to outsource security says leaked memo.

Or they're communicating with non-IT, non-security people. Hate the break this to you, but the "cyber" boat sailed some years back.

When I first read El Reg people were still complaining about the use of "hack" / "hacker" to mean malicious activity.

3
1

Biting the hand that feeds IT © 1998–2018