* Posts by Allan George Dyer

1684 posts • joined 12 Jun 2009

UK ministers to push anti-encryption laws after election

Allan George Dyer
Silver badge

Re: thoughts on future regulation of encryption

@Pat 11:

1i - That's not a counter-argument, that's just saying we'd be *really* screwed!

1ii - How about proving the technology works before making it a cornerstone of the anti-terror strategy?

2i & ii - Terrorists with jobs in finance and healthcare continue using strong encryption (you're not going to force Barclays to get a new license every time they move a server, are you?), corrupt license issuer staff sell dodgy licenses, or sneak extra IP addresses onto genuine licenses.

There's probably possible countermeasures for those ideas too, but the added complexity will make it even more cumbersome, and introduce bugs.

3 - steganography to hide the strong encryption. Say, embed your strongly encrypted material in a live stream of your home security camera (extra irony points for pointing the camera at your back door), and wrap that in the government-approved backdoored encryption. Even if the security services figure out what is going on and capture an endpoint, they won't have the keys to decrypt the strong encryption for other endpoints.

3
0
Allan George Dyer
Silver badge
Facepalm

Re: thoughts on future regulation of encryption

'Why would this not "work"?'

Just off the top of my head...

1. Backdoors

i) The security services will leak the backdoors (couldn't keep EternalBlue secret, could they?) exposing everyone's data

ii) The AI will produce high numbers of false positives that occupy the investigator's time

2. Approved services

i) lucrative market in stolen strong encryption licenses created

ii) thefts of vital IT equipment from hospitals increase as that will be the easiest source of strong encryption

3. Deep packet inspection

i) steganography

21
0

Schiaparelli probe crash caused by excessive spin, report concludes

Allan George Dyer
Silver badge
Joke

Several recommendations...

"updating onboard software"

Most people would think it's a bit late for that, but, if you want to try, you'll need a shovel, glue, and a trip to Mars.

5
0

What's got a vast attack surface and runs on Linux? Windows Defender, of course

Allan George Dyer
Silver badge
Coat

Re: But isn't the environment itself just as important?

"Say detonate a flashbang once in a while nearby to condition people to react in desired ways."

Pavlovian disaster drills?

Do you give a reward after the flashbang if they react in a desired manner? Will there be problems with excessive saliva at the scenes of real emergencies?

0
0

Scheming copyright scam lawyer John Steele disbarred in Illinois

Allan George Dyer
Silver badge
Joke

Re: Question from the UK

"Also, a disbarred shyster can not appear before any feral court."

I would have thought that a wild court that had escaped from domestication would be the perfect place for him.

12
0

Man sues date for cinema texting fiasco, demands $17.31

Allan George Dyer
Silver badge

It's an investment!

$17.31 is a small price to pay for a happy future.

15
0

Proposed PATCH Act forces US snoops to quit hoarding code exploits

Allan George Dyer
Silver badge
Black Helicopters

Interesting you should mention that... would you classify mandating a Government backdoor in encryption software as an "exploitable bug"? I would.

Now, does anyone have a list of politicians who were in favour of backdoors, and who are now pushing for this bill? Bandwagon politics. Invertebrates!

5
0

Do we need Windows patch legislation?

Allan George Dyer
Silver badge

Re: Car Analogy Fail

@JamesPond - I don't know when MS started developing XP, but let's say it was when they released its predecessor, W2K was released in 1999, when the malware threat was well-established and growing fast. There was an encryption attack, the AIDS Diskette, much earlier, in 1989; though that was badly-planned it showed the possibility. The possibility of an asymmetric encryption extortion attack was the subject of nightmare scenario speculation among anti-virus researchers during the 1990's, as I recall. But that, and the possibility of a nation state attack, is not really relevant, the patch fixed a flaw in the SMB implementation, and MS knew their customers would be plugging into public networks so the security of their network protocols was critical.

0
0
Allan George Dyer
Silver badge

Proposal: Copyright Ceases when Support Ceases

Require developers to provide fixes for security and original functionality (but not upgrades) at reasonable cost, say 10% of the original purchase price per annum. They can choose to discontinue this support, but the software becomes public domain.

This allows the developer to make a commercial choice, and may reduce the amount of electronic junk sent to landfill because it's 'too old' to support.

1
0
Allan George Dyer
Silver badge

Re: All products have a support life

@jpo234 - "You wouldn't claim that a car maker is at fault if a car explodes when somebody maliciously shoots it with a gun."

I would if the car was an Armoured Personnel Carrier. MS has marketed each new version of Windows (from as far back as NT) as 'the most secure Windows ever', during a period that has included all sorts of malware and vulnerabilities, so MS knew they were designing for a hostile environment. They released the code with this vulnerability, ideally, they should have fixed it before release. So, by releasing an XP patch, they are merely fulfilling their obligations 16 years late.

1
0

UK hospital meltdown after ransomware worm uses NSA vuln to raid IT

Allan George Dyer
Silver badge

Re: It doesn't have to be connected to t'internet

@Tridac - "Teach users to delete any emails that they don't recognise"

So do you open the email with the subject, "Please change my appointment"? Anyone whose job is to interact with the public can be targeted by a suitable email. Sure, dumping any email client with scripting support is good (if you disable it, do you trust that the next update doesn't turn it back on silently, for whatever reason), but how do you force the public to only send plain text?

5
0
Allan George Dyer
Silver badge

Re: Ransomware

What a limited view of warfare you have. Why not lock up assets, demand a ransom, get paid and destroy the assets anyway?

0
0

WannaCrypt ransomware snatches NSA exploit, fscks over Telefónica, other orgs in Spain

Allan George Dyer
Silver badge

Re: Cost (not just of cleanup)?

@AC - Downvoted, not because I don't agree that the NHS would be better with Linux, but because you haven't considered that lots of the old kit is connected to specialist equipment, and who knows whether the custom app will run on Wine? And what about all those staff who believe they know how to use Windows, and can't learn Linux? But mostly because you wrote, "Honest to F&%# it's not that difficult."

11
1

Space upstart plans public cloud in low Earth orbit

Allan George Dyer
Silver badge
Coat

"The Cloud Crashed"

Will have a whole new meaning.

5
0

Drugs, vodka, Volvo: The Scandinavian answer to Britain's future new border

Allan George Dyer
Silver badge
Boffin

ANPR? Easily defeated

Obligatory James Bond clip:

https://www.youtube.com/watch?v=wUG1GexVz2k

0
0

Fancy a relaxed boozy holiday? Keep well away from Great Britain

Allan George Dyer
Silver badge
Coat

Re: How about taxing other "sins"?

Wait! Sloth is banned in public? Forget the coat, I'll need the running shoes.

5
0

US Air Force networks F-15 and F-22 fighters – in flight!

Allan George Dyer
Silver badge
Joke

Countdown...

to the first combat mission that fails because a pilot falls for a phishing message.

7
0

Is Britain really worse at 4G than Peru?

Allan George Dyer
Silver badge
Coat

Re: Mr Obvious

I'd hate to be the first person to stray out of range after the Base management had decided to use LTE for emergency communications!

0
0

We are 'heroes,' says police chief whose force frisked a photographer

Allan George Dyer
Silver badge

Re: Pepper spray is a delicious example!

"He routinely carries his knives back and forth from home to work. He walks. His skin is brown. What would his life expectancy be in Sussex?"

Longer than in California? For a start, beat officers in Sussex aren't usually armed. However, if he carries the knives with blades exposed, I'd expect an adverse reaction in most places. If he's carrying them packed in a bag and doesn't try to grab and unpack them when challenged (i.e., acts normally), then I'd expect very little effect on his life expectancy anywhere.

28
1

'I feel violated': Engineer who pointed out traffic signals flaw fined for 'unlicensed engineering'

Allan George Dyer
Silver badge

Re: Landgrab again

"Unlike, say, doctor which meant someone had passed a specific degree at a university."

You mean a DThM? Or a PhD? Or DMA? Or DDSc? Not very specific, really.

2
0

A switch with just 49 ns latency? What strange magic is this?

Allan George Dyer
Silver badge
Boffin

Re: The future...

HFT shows that the financial system is broken and working against the needs of Society. If the financial system was an audio amplifier, then HFT would be ultrasonic ringing, and the designer would insert a low-pass filter to improve the amplifier's performance. Instead, the HFT traders throw money at increasing the problem, because it makes them more money.

5
0

Drunk user blow-dried laptop after dog lifted its leg over the keyboard

Allan George Dyer
Silver badge

Re: Good on Jim

"Urine's sterile, BTW" - right up to the point when it leaves the urethra. After spending the night in a nice, warm laptop keyboard, I should think that all the organisms in the accumulated dust would have multiplied very happily.

I agree about checking out the disc drive, though. At least see if the compartment is dry.

20
0

Boss swore by 'For Dummies' book about an OS his org didn't run

Allan George Dyer
Silver badge
Paris Hilton

Re: How to ensure a bad departmental boss becomes an even lousier CEO . . .

"non-municipal adult content"

There's municipal adult content? Wow, where do you live?

0
0
Allan George Dyer
Silver badge

Re: But the real issue is

I found giving JW a little gift was very satisfying...

A copy of Richard Dawkin's Royal Society Christmas Lectures, and I haven't seen them since.

0
0

Homes raided in North West over data thefts from car body repair shops

Allan George Dyer
Silver badge

Re: You boys and girls actually answer your phone?

Yes.

Because Caller ID is not accurate. The last "Private" call I got was an international call from a company I needed to talk to.

No, is there a point when caller ID is inaccurate?

0
0

FCC kills plan to allow phone calls on planes – good idea or terrible?

Allan George Dyer
Silver badge
Holmes

Easy solution...

Just ask them to step outside to make the call:

https://www.youtube.com/watch?v=HmQnEyiGdGQ

3
0
Allan George Dyer
Silver badge
Coat

Re: Cellphones are only allowed on private jets

"Press the call button, and communicate your needs in mime if you want something" - FTFY

5
0

Uber responds to Waymo: We don't even use that tech you say we stole

Allan George Dyer
Silver badge
Joke

Re: For those of us who

"Article 10 lays out a citizen's rights before the courts, specifically, the right to obtain a decision from the court that is firmly based in law, the right to have a lawyer in court, and even the right to have free legal representation in cases where this is necessary.", according to Wikipedia, so fairly similar to Article 35 of the Basic Law of the Hong Kong SAR. OK?

2
0

WWW daddy Sir Tim Berners-Lee stands up for end-to-end crypto

Allan George Dyer
Silver badge

Can we get more accurate headlines?

Such as,

"Amber Rudd tells tech firms to make bank fraud easier"

7
0
Allan George Dyer
Silver badge
Windows

Re: Fundamentally, the key technologies the terrorists use for secure comms...

@DNTP - Upvoted for satire. It was satire, wasn't it?

1
0

Alabama man gets electrocuted after sleeping with iPhone

Allan George Dyer
Silver badge

Re: so much wrong here...

"Malta, Ireland, Cyprus and Gibraltar use UK plugs."

So does Hong Kong

2
0

Snakes and bats cause more blackouts than criminal haxors

Allan George Dyer
Silver badge
Pirate

Re: Flying foxes

@DougS - Did you want a list?

Spiders

most of the world's most poisonous snakes

BIG spiders

Saltwater crocodiles

Tiny spiders that kill you quickly

1.6 m hopping rats that smash through your windshield and kill you will their claws

Did I mention the spiders?

Box jellyfish

Stonefish

And if the fauna doesn't get you, the weather will have a damn good try.

1
0

BOFH: The Boss, the floppy and the work 'experience'

Allan George Dyer
Silver badge

Re: Being on a placement myself...

"Alternatively, Rocket Propelled Grenade."

Or Role Playing Game.

It is also at the top of the list of things you should not say are in your luggage while at an airport.

4
0

Yee-hacked! Fired Texan sysadmin goes rogue, trashes boot business

Allan George Dyer
Silver badge

Re: Properly designed security

@404 - I look forwards to your production of Swan Lake in Cowboy Boots!

21
0

Robo-AI jobs doomsday may, er... not actually happen, say boffins

Allan George Dyer
Silver badge
Terminator

Perhaps Andrew Orlowski has been killed by a drone, and the article was written by an AI to keep us calm while the takeover progresses?

1
0

How to leak data from an air-gapped PC – using, er, a humble scanner

Allan George Dyer
Silver badge
Mushroom

Re: My plan...

Curses! Foiled Again!

3
0
Allan George Dyer
Silver badge
Paris Hilton

My plan...

involves malware with OCR, a webcam and a drone with a cardboard sign with the instructions printed on it.

"Why's there a sign saying 'rm -r /' hovering outside?"

11
0
Allan George Dyer
Silver badge
Boffin

But Bond does exactly that...

in Diamonds are Forever, to gain entry to the Whyte laboratory.

3
0

Douglas Coupland: The average IQ is now 103 and the present is melting into the future

Allan George Dyer
Silver badge
Joke

We've proved Coupland right!

Have you noticed that everyone posting their own IQ here says it's higher than 100? So this proves the average is higher now!

1
0
Allan George Dyer
Silver badge
Paris Hilton

Cultural Bias, too

So, if you administer a UK IQ test to Japanese people, and a Japanese IQ test to UK people, they will both score low... even more so if you don't translate the papers.

0
0

People may have been wrongly sent back to prison over faulty tags

Allan George Dyer
Silver badge
Coat

Re: The "Serious Fraud Office"?

The original Fraud Office was set up to counter clown-related fraud, it was renamed the Jocular Fraud Office when the Serious Fraud Office was created.

The coat with the flower in the buttonhole, and the large shoes, please.

3
0

Dishwasher has directory traversal bug

Allan George Dyer
Silver badge
Coat

Wow! You spin dry your plates at 14,000 rpm?

icon - something to clean in your dishwasher?

1
1

Good news, everyone! Two pints a day keep heart problems at bay

Allan George Dyer
Silver badge
Trollface

Re: Reproducibility crisis in science.

@Symon - "According to a survey published in the journal Nature last summer, more than 70% of researchers have tried and failed to reproduce another scientist's experiments."

So have they repeated the survey with the same results?

It's turtles, all the way down.

2
0

Three cops to data breach

Allan George Dyer
Silver badge
Trollface

Re: From the headline

"three law-enforcement officers" - So now phone companies have their own police force? Or did you mean a Triumvirate of Police Officers?

0
0

Now UK bans carry-on lappies, phones, slabs on flights from six nations amid bomb fears

Allan George Dyer
Silver badge
Coat

You could still take...

a raspberry pi, a roll-up USB keyboard and any USB fingers you need for storage. Some seats already have a USB power socket, if only the screen had an HDMI socket, you'd be all set. No battery = no big block of energy storage.

Actually, when security sees your bundle of bare electronics and wires, and you explain, "I'm going to assemble my device in the air", the rules go out the window and you're getting the Special service.

5
0

World's worst botnet fiends switch from ransomware to stock scam spam

Allan George Dyer
Silver badge
Facepalm

Re: Malspam runs on zombie network

Yes, that visionary known for his previous prophetic utterings, "no-one will need more than 640K" and "HTTP protocols that define HTML Web browsing are extremely simple". With predictions like that, he'd never make it in business... oh wait!

2
0

Google Maps' Street View can now lead you into a bubbling lava lake

Allan George Dyer
Silver badge
Paris Hilton

Another reason to never use a Gogle self-driving car...

2
0
Allan George Dyer
Silver badge

Re: Not Etna?

On the BBC News. http://www.bbc.com/news/world-europe-39293086

0
0

More Brits' IDs stolen than ever before

Allan George Dyer
Silver badge
Facepalm

@Charles 9 - "If they identity thief replaces all your history with his own AND convinces the rest of the world"

This type of crime used to be solely for the ruling classes - Kings and their offspring. Now, the power of the Internet brings everyone these... uh... benefits!

0
0
Allan George Dyer
Silver badge
Coat

"not-for-profit fraud"

Charitable criminals?

0
0

Forums

Biting the hand that feeds IT © 1998–2017