* Posts by Infernoz

575 posts • joined 20 Sep 2006

Page:

Q. What's today's top language? A. Python... no, wait, Java... no, C

Infernoz
Bronze badge

Re: Learn all of them, but NOT Java

Or for most Java accessors, use project Lombok for much shorter code; it also covers lots of other common boilerplate code, including constructors, and common logging declarations.

Explicit accessors are sometimes compulsory, for validation and security-copying (to prevent mutable object exploits), and trace logging.

A lot of Python frankly looks like write-only code, because it never required type declarations method/function declaration, and I also suspect a lot of security/performance issues given how many easy, but dangerous assumptions it makes! I also view the Python API docs web pages as quite primitive and fugly compared to other language API docs like JavaDocs.

3
1

Bluetooth makes a mesh of itself with new spec

Infernoz
Bronze badge

Should be really useful for a Local of Things mesh

e.g. Sensors and control.

So you could have very cheap, cordless, coin-cell-powered, environment sensors in every room, and be able to monitor them from central device and have distributed displays. Also power control and power use sensing could become a lot cheaper than ridiculously expensive and IP range consuming WiFi versions!

I hope that the spec. addresses security too, because even sensors could become a security risk.

1
0

UK regulator set to ban ads depicting bumbling manchildren

Infernoz
Bronze badge
Meh

Re: This is a good thing

I agree that that a lot of cleaning product labelling is annoying and deceptive, but because iffy/bad stuff has made it's way into _most_ products, both plain and fancy, so you should get educated and check the contents before you buy them e.g. they can contain carcinogens, endocrine disruptors (fouls up hormones, including T), irritants, poisons (Aluminium, Toluene, Fluoride), etc.! Some brands of products can be a lot better quality with little or no harmful stuff e.g. Ecover and Bull Dog.

1
0

Nearly three-quarters of convicted TV Licence non-payers are women

Infernoz
Bronze badge
Holmes

This was one of the last programmes I watched from BBC, but the growing subtle and blatant political correctness, including historical absurdities, and SJW themes made me feel sick from the gross insult to my identity and intelligence! Absurdities including the ridiculous girl power (misandry), White-Knighting, WTF inappropriate race, and other corrupt themes!

2
2
Infernoz
Bronze badge
WTF?

Re: See me...

WTF, people as still being conned to incriminate themselves, but then emotional thinking can hurt a women's judgement/resolve! No one should be ending up at these fake courts.

Any informed, alert and assertive person can stop these fishing expeditions dead outside the house, by simply refusing to recognise their supposed authority and turning them away like any unwanted door-step salesman or charity shyster.

6
0

Hey, remember that monkey selfie copyright drama a few years ago? Get this – It's just hit the US appeals courts

Infernoz
Bronze badge
Devil

Re: Corporations - meh

Not just a mere off day, more like insanely evil, because it effectively elevates these legally-required-to-be-psychopathic zombies above humans! Corporations should have significantly less power than living human beings!

5
5
Infernoz
Bronze badge
Devil

Re: Devil's Advocate

PETA are simply insane, human-hating, SJW Marxists, no more needs to be said...

12
7
Infernoz
Bronze badge
Flame

Re: Just sayin'

It was a historical corrupt abuse of the fixed-lifespan, state-created-entity, called a Corporation, to ever allow it to be abused as a zombie business entity!

It was a monstrous legal abomination and corruption of US emancipation statute 'law', to ever class the fictional zombie business entity, called a corporation, as a person.

A real person is only ever a living human being; I don't give a frack what the legal liars say in the demonic Blacks Dictionary etc.!

20
3

G20 calls for 'lawful and non-arbitrary access to available information' to fight terror

Infernoz
Bronze badge
Flame

Lawful my ass..

Lawful only correctly applies to Common Law, not imposter laws like legal statutes, despite state legal BS!

E2E encryption totally fracks up in-line interception because that is the dialectic for it's existence and use, and statist technocrates exposed abuse caused it's use to explode, but frustrated statists keep spouting useless, sophist, rhetoric! Tough, cryptography is deliberately build from solid mathematical rules to be secure, and no amount of illiterate wishful thinking, tantrums, BS, and authoritarian demands will change this!

As the ex-GCHQ boss said, they can now only seek to try to compromise the end point devices.

If they attempt to force an end point compromise by businesses offering E2E services, this will get leaked and those businesses will go out of business, and people will then only trust vetted OSS E2E!

6
0

Photobucket says photo-f**k-it, starts off-site image shakedown

Infernoz
Bronze badge
Holmes

...until it isn't because stuff changes which you weren't told about before and/or didn't expect!

That includes free/cheap being a temporary illusion, like a drug dealer temporary giving freebies to create a pool of future addicted customers, cheap printers (but expensive ink), or socialist Ponzi schemes like a state national health service or a state pension scheme!!!

17
64

Australian govt promises to push Five Eyes nations to break encryption

Infernoz
Bronze badge

Re: Five eyes...

Also there is nothing to stop anyone from using weaker encryption as camouflage for inner strong encrypted data, or using a different strong encrypted network protocol to frustrate spies.

I suspect that a lot of fun could be had with HTTPS websockets carrying layered encrypted date.

9
0

In the Epyc center: More Zen server CPU specs, prices sneak out of AMD

Infernoz
Bronze badge

Looks very interesting for FreeNAS ... if an affordable version is ever provided

I already had to move to a larger Intel server mobo to support 32GB Parity RAM; my next FreeNAS box build, in about 2 to 3 years time, will probably require 64GB Parity RAM. It'd be nice if I didn't have to scrap any more mobos for having inadequate RAM expansion.

1
0

Elon Musk reveals Mars colony rocket capable of bringing pizza joints to the red planet

Infernoz
Bronze badge

Re: Venus is too nasty, Mercury too hot and the moons of Jupiter or Saturn too distant.

We'd have to be quite insane to FUBAR Earth, because Earth is obviously the only planet in our solar system suitable for complex life! Making Technology critical for all survival is not a smart idea, because it can break, then everyone is dead!

Even a messed up Earth is probably far better than all the other planets in our solar system for habitation, because of its temperature ranges, natural resources, and atmosphere, and the Van Allen Belt and Ozone layer blocking deadly space radiation.

Even colossal disasters like 7 large space objects colliding with Earth oceans about 7 1/2 thousand years ago, so causing 5Km high tidal waves, weren't enough to kill off all life on Earth, because humans of many cultures passed down history of it, not just the Noah story.

3
2
Infernoz
Bronze badge
Meh

Re: How about

The later assumes that there are enough raw materials and energy supply where the fuel factory lands and there is a suitable area nearby for human habitation. If the later is not possible, then a viable colony there is probably doomed fantasy!

If mining and fuel production cost too much energy, the system will die for lack of net energy, just like oil/gas exploration/extraction/refining could end on earth when it becomes too energy costly!

0
0
Infernoz
Bronze badge

Re: How about

Yes, send a load of tanker rockets craft to a staging point above earth, with enough fuel to accelerate to and decelerate at Mars, with en-route propulsion from Ion jet engines and sling-shot manoeuvres, so that the tankers assemblies could be parked ahead of time in a stable orbit above Mars. These launches could be done a long time before the expected human trip, so slower travel would be OK. Later trips could then refuel in orbit with enough fuel to land and later take-off, and later refuel in orbit for a journey back to earth.

Of course a huge problem for a manned trip is the hard & deadly space radiation, which even thick & heavy materials are unlikely to attenuate enough en-route or at Mars (assuming no protection magnetic shield like the Earth's Van Allen belt and thick atmosphere). I expect that a portable and weight/energy affordable, electromagnetic radiation-shield will need to be invented, possibly using superconductor electromagnets and/or a plasma field. Another significant problem is enough energy production on Mars to power all the life-support, manufacturing, and construction facilities; the longest lasting space probes have typically used very expensive, restricted, long-half-life radioisotopes e.g. Pultonium.

0
0

Banking websites are 'littered with trackers' ogling your credit risk

Infernoz
Bronze badge
Facepalm

Re: Are there any legitimate uses for client side scripts on a banking website?

Current security standards say that the web servers handling entered data must always strictly fully validate all data from a client, including using a page populated unique token, stored in a session, and checked for in the input data. The idea that you can have stateless or no sessions, or do non-strict validation, is security retarded.

Client side Javascript checking of values is fine for faster rejection of iffy values, but the server must always strictly check for bad input data and reject it, this is because a spoofing/hijack exploit may bypass the page Javascript checks and attempt to pass harmful data!

The problem is that too many sites use too complex and obfuscated Javascript framework based code, so break in unknowable/annoying ways, so can run very slowly on even high spec. PCs and be vulnerable to, or even cause, security exploits!

1
0
Infernoz
Bronze badge

Re: Yeah but...

I have "Self-Destructing Cookies"; all the non-whitelisted cookies get destroyed when the last tab for the domain is closed :-P

1
0
Infernoz
Bronze badge
Flame

Re: I think we need to know...

Some sites, which should damned well know better, get their Javascript blocked completely because they do too self-host too much crap! I don't care if these sites need advertising for funding, when they have a whole side div of double column adverts for their and other people's crap its too much, so NoScript, uMatrix and Privacy Badger!

The number of third party crap links (ads,tracker,demographics,analytics) was already toxic over a year ago on many commercial and 'free' sites, and is still getting worse(!), so I /have to use/ whitelist driven tools like NoScript and uMatrix to try and retain some privacy and speed; tough web authors who don't like this, it's your r-type, retarded, promiscuous fault!

I even need Print Edit now for saving pages as text PDFs, even for blog/reference sites, because 50% or more of the page area is not even the actual content, WTF!!!

0
0

Don't all rush out at once, but there are a million devices ripe to be the next big botnet

Infernoz
Bronze badge
Pirate

What happens when robotic devices get hijacked via these botnets?!

Fiction has been warning about robotic device hijacking for several decades now, including in Anime films like Ghost in the Shell (1995) and Paprika (2006), and StuxNet happened too!

What happens if this hijacking is driven by a hard to stop bot-net, possibly jumping between different makes/types of insecure devices/software, and targeting potentially deadly robotic devices like an asserted imminent flood of connected assisted/self-drive cars? Panic!

I can see crisis regulation happening if manufacturers don't lock-down/support devices properly soon, including possible forced scrapping of non-fixable/unsupported connected devices/software, and not even allowing connectivity in some classes/types of device.

r-type decadence like promiscuity and lax security later cause significant costs, as we now see with human demographic decay, cultural decay, and alien refuse invasion in developed countries; similar principles apply to connected computing devices, especially those designed by r-types!

0
0

WannaCrypt: Pwnage is a fact of life but cleanup could and should be way easier

Infernoz
Bronze badge

NTFS is a dinosaur FS; Microsoft should port OpenZFS or license ZFS from Oracle already!

NTFS is not transactional, so is not thread-safe, stalls (especially for 1000's for files in a folder), can give stale file/folder results, so cause application malfunction, so the sooner it and all other non-transactional, logging FS's get replaced the better.

All hardware and pseudo hardware RAID should just die too, because only transactional software RAID can provide true end-to-end data integrity.

1
0
Infernoz
Bronze badge
Meh

Pointless, use something designed for _full_ end-to-end data integrity, with _multiple_ deltas like git has i.e. ZFS with its multiple cheap snapshots; backups should be considered the absolute last resort, because they will be far more out-of-date!

FreeNAS and TrueOS provide the OS to build a _separate_ secure OpenZFS NAS and Server to maintain data and mitigate data corruption by a client; if you don't want to use an SMB share, you could still do frequent rsync delta backups to it instead.

2
0
Infernoz
Bronze badge
Facepalm

The problem with your 'secure' remote copy idea (and daily backups) is they maybe compromised if a comprise happened before the last copy/backup...

My better idea is, put user profile and other data on ZFS/Open-ZFS NAS, excluding the OS, with frequent, NAS-scheduled, rolling dataset snapshots (say at hourly or less intervals), with regular scanning for suspicious file type and file type specific changes (e.g. header changes or dubious contents changes). When corrupted files are detected, the nearest earlier timestamp ZFS snapshot could be used as a source for a clean file, in a small fraction of the time, especially if automated.

* ZFS dataset (filesystem) snapshots are pinned deltas, so mostly won't take up much space, and you can have loads, but too many can reduce NAS performance.

I already keep my Thunderbird profile on an SMB accessed FreeNAS OpenZFS dataset, because I was fed up with retarded NTFS stalls and occasional mailbox corruption on an M2 drive with Windows 10 on an fast i7 box; it has significantly better data protection because the dataset is in a ZRAID2 volume.

1
0
Infernoz
Bronze badge
Holmes

Mostly prefer an OS as only a platform with abstracted access to proprietary resources.

Most software should rejecting direct use of proprietary OS frameworks, instead via bridging/isolation layers, like OS portable OSS API implementations, to make applications OS portable i.e. not dot-Net (incomplete library portability). You can then upgrade OS, or even migrate to a different OS, with minimal work. Microsoft will hate this, but it's their fault for repeated stupid 'business friendly' hacks to try and lock people in, Active-X being the absolute worst, and their Java abuse could have become far worse if they hadn't been sued by Sun!

There should also be wariness about using application software which has limited OS portability, or significant migration costs, like Microsoft Office, including any software dependent on these applications e.g. VBA and Excel specific scripting.

Java and other genuinely OS portable, intermediary-code-compiled/fast-interpreted languages, and OS portable frameworks/libraries (e.g. GUI, Graphics, Filesystems, Networking, Crypto etc.), are what most applications should be using to break this lock-in to transient proprietary APIs. Some people may not like proper portable languages like Java, because they are stuck in a stagnant C and C++ dogmatic 'simplicity' delusion, or are dangerous amateurs reliant on retarded VB or VBA; but they do offer far better portability between OS's and OS versions.

Java (and other JVM languages like Kotlin) also has some portability to Android, which further extends it's appeal.

2
2

Bankrupt school ITT pleads 'don't let Microsoft wipe our cloud data!'

Infernoz
Bronze badge

Re: Once you send your data to the cloud

This is yet another example why keeping business data on the cloud and not owning business software is nuts.

16
2

7 NSA hack tool wielding follow-up worm oozes onto scene: Hello, no need for any phish!

Infernoz
Bronze badge
WTF?

Re: What's worse?

Not at all surprised, more deserved suffering for XP-tards, no sympathy or pity due!

I'd say that Microsoft is the lesser of the two evils and it's often easier to mitigate or fix their issues, basically these XP-tards should have upgraded to the far more secure Windows 7, years ago. Offensive compromise and modification can be far worse hassle to resolve that a failed update.

What should be in place for all OS's is network port filtering blocks to stop risky ports like SMB being accessible on insecure networks like the Internet or public WiFi, using NAT in a router to block all unmapped ports, and if possible IP-range white-listing of ports by a firewall in XP to further limit exposure e.g. using Ghostwall.

0
4

Bye bye MP3: You sucked the life out of music. But vinyl is just as warped

Infernoz
Bronze badge
Holmes

Re: MP3

Storage is cheap now, and most Android devices play lossless FLAC, not just audibly compromised MP3, so I prefer FLAC to MP3.

A agree with A. Dabbs, Vinyl was shit and was a lot more bulky than significantly better sounding, but now zombie CDROM. Unfortunately a lot of CD audio was ruined by abuse of loudness processing, and use of inferior analogue recording/mixing sources, which maybe why some nostalgics still prefer it.

All my old CDs were been ripped to FLAC several years ago because were inconvenient, not scratch proof, and a bulky zombie format, even back then! I only keep a thin USB 3.0 DVD drive around for immediately ripping any new/discovered stuff to FLAC, ISO or BIN/CUE on a NAS.

It's about f'ing time installers and media was supplied on read-only microSDs.

5
4

Banking association calls for end of 'screen-scraping'

Infernoz
Bronze badge
Facepalm

Re: Isn't there an API already?

Obviously not or inconsistently, and EBICS looks like it is only for payments.

For login security and isolation reasons, only the user and a bank should have access to the unencrypted login details, which is why screen-scaping is stupidly insecure, because third party apps may abuse, leak, or poorly encrypt login credentials.

All routine logins should be done using a bank supplied private-encrypted, date expiry, login container, with one per app, maybe per device too, with the app name and device stored in it, so that selective locking is possible, rather than the fragility of a single login. A container could even be associated with a restricted set of permitted actions e.g. only being able to request status information like the account balance or the statement lines.

All banks should provide a _standard_, secure, web-service API over secure HTTPS, using an encrypted container for login, and their website should include customer functionality to create, download, and manage these tokens, and see an audit log of their use.

1
0

Dell BIOS update borks PCs

Infernoz
Bronze badge

Re: 1st rule of IT support is

Unfortunately security and stability issues, and other bugs do occur, and the BIOS can need updates to better support functionality of embedded or plug-in hardware, but upgrades must be done by competent people, and preferably checked on one device first, if a multiple devices may need it.

I've never had a firmware update issue which bricked a device, but have rarely needed to roll-back some upgrades which contained unhelpful changes.

I can't say I've been impressed by any Dell kit I've used; it seemed expensive and dull.

1
0
Infernoz
Bronze badge
Meh

Re: Why change the entire motherboard?

Sockets cost extra for parts and production, and can reduce reliability; flash/ROM parts can often be in-circuit programmed, probably on a similar rig to that used to electrically test the PCB.

It's probably more cost effective for Dell to just scrap the motherboards, because all PC components are commodity parts, often with thin margins, which are replaced regularly, to attract more customers via redesigns and new Intel etc. chip-sets.

1
0

What could go wrong? Delta to use facial recog to automate bag drop-off

Infernoz
Bronze badge
Facepalm

False Positives could be nasty, and false negatives annoying!

To stop this it needs to be multi-factor identification for better validation and redundancy for fuzzy matching.

2
0

Do we need Windows patch legislation?

Infernoz
Bronze badge

Re: All products have a support life

I'd say a maximum of 12 years support for OS's, with subscription-only security-only support after 10 years, because 10 years is the longest even slower upgrading business should try to maintain machines, because computer technology design does age, and the physical hardware can age too and become increasingly more costly to maintain, if you can still get compatible parts!

Maybe require an audit of the age of computer hardware and software in a business, with warnings issued for too old equipment which is not planned and scheduled for replacement.

2
3

Shadow Brokers resurface, offer to sell fresh 'wine of month' club exploits

Infernoz
Bronze badge
Go

SWIFT exploits, what a surprise!

not really, given the SWIFT bank client requires obsolete Vista.

I wonder how long before crypto-currency payment services and/or the Chinese payments system take most of SWIFT's business, and the dollar plunges, because client banks have had enough.

0
0

Why Microsoft's Windows game plan makes us WannaCry

Infernoz
Bronze badge
Meh

Re: Why is XP still being used?

Should you really still be using a probably insecure protocol dating back to 1983, which later had to piggybacked on TCP? I doubt that it even supports adequate strength encryption tunnel and auth., something which should be considered critical on all networks now, because auth. crackers, network sniffers and worms are not going away!

Full screen Command Prompt, Why? Just maximise a command window or use one of the numerous command line alternatives, one of which may support this already or could be adapted to do so...

1
2
Infernoz
Bronze badge
Facepalm

Re: "Adding to the bottom line"

As I stated in a previous article comment, Microsoft realised how poor XP was (as is not unusual for programmers less experienced work) for security, stability and functionality, so recruited experienced security staff and rebuilt substantial parts of the OS for Vista, then Windows 7. This security recruitment drive was well known back then (e.g. acquiring SysInternals), as has been the evolving threat to security defences (e.g. the need to upgrade SMB protocol, and the need to retire SSL and TLS1.0 to 1.1), so people _still_ using XP or making excuses for them are negligent and idiots!

If businesses still needed to run XP software (as a stop-gap until application upgrade), Microsoft provided downloadable XP emulation support in proper versions of Windows 7. VMWare and VirtualBox were also possible workarounds (for strictly limited scope use), as were RDP/Citrix if the local machine had limited RAM/Storage, so had to run a lighter secure new OS e.g. an embedded version of Windows 7 or a Linux.

All very expensive physical hardware which housed an XP instance, which negligent/disappeared suppliers failed to provide affordable upgrades for, should have been air-gapped or protected by a security gateway server between it and the LAN, possibly a specialist firewall appliance.

All Windows Server 2003 instances should have been replace years ago, but I still saw instances belonging to a major business last year (!); even if this was difficult, there has been ample time to resolve issues!

2
2

Sophos waters down 'NHS is totally protected' by us boast

Infernoz
Bronze badge

Re: stripping out exe's from emails

Not just exe's, but any attachment, because embedded scripts and buffer escape exploits are the main malware entry points now!

Simple, have Microsoft or a trusted security software provider extend Android and iOS application level permissions framework to desktop OS, but with sensible restricted defaults for the filesystem/registry too, like the Application install/settings folders, registry folders and default documents folder, and show an admin. screen permissions dialog., after system snapshot, if it attempts to access anything else, including in non white-listed file shares. We should not always trust applications to police their own access, because they can be compromised!

There could be application group white-lists/blacklist to save duplication e.g. for Desktop and some other common folders, this could include application installation and settings folders which should usually only be accessible by the owner application.

Any unknown Application which tries to do any file system action but create new files in it's folder, not sub-folders, or access anything else should cause an admin. screen permissions dialog., after system snapshot, for one-off OK, or white-list or black-list additions.

This could make life very difficult for lots of other kinds of malware, including camera/microphone/keyboard spyware, browser hijacks and other unwanted software installs too! :)

0
0
Infernoz
Bronze badge
Flame

Re: Ransomware is ...

inevitable until the OS supports user application level permissions and comprehensive delta sand boxing of all external content (SMB, Browser, Email) not white listed, without the document/software being aware it is in a sandbox and monitored lures provided to assist malware detection.

It is about bloody time that each applications had sensible default, limited filesystem access permissions, to limit the damage they or scripts they run can cause, because a lot of applications don't need to and shouldn't have access to a whole users profile, or even some external resources, without at least an admin. mode dialog. to OK or whitelist this! We shouldn't have to rely on separate security software to maybe do this, it should be OS security functionality!

Using a modern transactional, regular delta snapshot filesystem like ZFS would better help recover from unnoticed nasties like this, easier than dated, logging filesystems like NTFS and the bolt-on file versioning in some newer versions of Windows!

4
1

Giant spawn hammer on Antarctica map. Thanks, Google Waze

Infernoz
Bronze badge
Facepalm

The kind of unprofessional, cheesy, childish crap which made me eye ceiling early in my career, but the insanely deluded, Left-wing naming further suggests r-type (Rabbit) infestation which needs culling fast!

1
1

DeX Station: Samsung's Windows-killer is ready for prime time

Infernoz
Bronze badge
Meh

Re: Why would you need a dock?

Equipment specific docks are klunky, too expensive and only really useful for higher-bandwidth uses like multiple displays and multiple full speed USB3.0 sockets, and maybe security; some docks (Lenovo laptop) don't even lock reliably!

I have a Dell USB3.0 dock at home with a lot more ports, which can even drive a 4K monitor, for a lot cheaper than this or a Lenovo specific laptop one!

Tablets and mobiles should have supported USB3.0 years ago, including for OTG, for proper fast data transfer (USB2.0 is pathetically slow), then they could also use commodity USB3.0 OTG docks with video, and possibly even use a PC USB3.0 dock, via a USB3.0 OTG adapter with charger Y input.

1
1

Ransomware scum have already unleashed kill-switch-free WannaCry‬pt‪ variant

Infernoz
Bronze badge
Facepalm

Re: Experts all giving advice how how to stay secure

Off-the-shelf NAS are a rip-off for decent capacity, are under-powered (ARM or crappy Atom), and I'd guess a lot of NAS run proprietary Linux dist.s, so have poorer patching.

A FreeNAS box is much better value for decent capacities; it uses commodity, parity RAM, x86 64bit hardware, and uses packaged recent versions of designed-to-be-secure FreeBSD, with easy to apply OS and component updates, and regular ZFS snapshots allow selective or complete roll-back protection against unwanted NAS file modification by Samba clients e.g. an infected Windows box, or user mistake.

0
0
Infernoz
Bronze badge
FAIL

Re: Inevitable

* Microsoft realised that the security in XP was grossly inadequate, so recruited crackers and other experienced security staff for a new OS, re-built for security, thus the poor 1st attempt in Vista, and the usable 2nd attempt in Windows 7.

* The version of SMB (Windows Networking) supported by XP has pathetic security, especially with increasing computer processing power, and I was shocked to see the pathetic default Samba client levels in Mint and no GUI to fix this easily!!!

* Microsoft provided ample advance warning of EOL for XP/2003, and only offered escalating cost post-EOL support as a _temporary_ stop-gap, because XP is not worth supporting for security reasons, so organisations have no excuses to still be using it, especially on the Internet!

* Yes, the NSA is criminal for making these immoral and unlawful cyber weapons, but crackers were already attacking the inadequately secured XP.

* The public leak of these cyber weapons at least makes most of the threats publicly known so that they can be combated en-mass now, including by Microsoft, rather than the much harder work to identify/combat hidden black hat criminal uses.

* Organisation and other users of XP, and suppliers of equipment requiring XP which have not already implemented/provided an upgrade to at least Window 7 are frankly negligent and should be humiliated/sued; they don't deserve any sympathy.

The Swift (inter-bank payments service) must also be heavily-pressured/humiliated/sued to get its act together, because it reportedly still requires the only slightly less dated Vista version of Windows to run their client software in banks, which is probably one reason why several Swift client banks have been virtually bank robbed! Swift should really be using a secure *BSD OS for this, let-alone any version of Windows!

4
1

Oracle crushed in defeat as Java world votes 'No' to modular overhaul

Infernoz
Bronze badge
Holmes

Re: This is what happens when you have management by committee !!!!

Competition only when they can win is typical, disloyal r-type (Rabbit) behaviour; r-types hate merit-based and fair (K-type, Wolf) competition where they can loss!

1
14
Infernoz
Bronze badge
Facepalm

This is what happens when needed refactoring is attempted damned years late!

If Oracle had deprecated all the half-baked Sun kludges in Java several years ago, then removed them or had a hard coded security policy to deny access to non-JRE code, this could have been done with far less fuss now! Because this was not done, some products are a pain to upgrade, because developers could still use the kludges, so short sighted management were able to put off upgrades...!

I think Oracle _finally_ accepted that JME was crippled junk (Google saw this for Android), so needed some way modularise and shrink the JRE for more restricted environments.

3
0

Dyson celebrates 'shock' EU Court win over flawed energy tests

Infernoz
Bronze badge
Holmes

Re: Dyson 'water blade' hand dryers

Hygiene is why decent communal wash/toilet facilities now have one-use fabric (then maybe washed) or paper towels, have discontinued providing flawed, continuous, fabric-roll, towel machines, and removed all air driers.

Paper towels maybe annoying and seem wasteful, but are far safer that all hot air dryers, especially for retards who don't wash their hands properly!

Also we can't rely on synthetic sanitiser chemicals because they can be harmful to humans, and their use in soap, toothpaste and kitchen equipment is stupidly counter productive, because it can also causes selection of resistant microorganisms, so direct physical cleaning methods using warm water, detergents/soap (if used), then clean towels are safer and more reliable!

5
0
Infernoz
Bronze badge
Facepalm

Re: Is this the same Dyson who has no time for the EU ?

This kind of business corruption of standards/regulation is centuries old and continues in modern, stagnant, crony corporations deliberately influencing/proposing regulations to unfairly reduce competition, and is well known for the EU, so another reason to exit it, to regain control.

Outside the EU, the WTO may be able to help the UK to block these effective tariffs before defensive measures like import tariffs/blocks are required to force negotiation! The EU can't win because Britain has a negative trade balance with the more wasteful Eurozone countries (including Germany), so any import tariffs/blocks, by the UK will hurt the Eurozone countries far worse then the UK.

As we have seen with the sanctions on Russia, reduction of foreign imports can force a developed country to become more efficient and productive, so less EU imports could be a blessing in disguise for the UK!

1
1

Avast blocks the entire internet – again

Infernoz
Bronze badge
Flame

I thought Avast maybe better than WTF false+ Avira, because reviews, but WTF issues too!

So uninstalled already.

Even Windows anti-virus was compromised because WTF exploitable. You'd think anti-virus providers could use cloud fuzz testing to detect this crap and exploits!

1
1

LastPass connectivity snafu locks out Brits from password manager

Infernoz
Bronze badge
WTF?

Re: What I don't understand

For credentials used on portable/multiple devices, cloud should only be used for distribution of securely pre-encrypted logins, with a local, still-encrypted cache and available temporary space for downloading, encrypted, timestamped/versioned updates, so that on-line login database access issues do not prevent use of older logins unless invalidated by expiry data.

Sharing logins is WTF stupid, because it does not allow proper, separate, user level audit-logging and lock-out, so multiplies vulnerability, and multiples inconvenience if a shared login must be replaced. If shared credentials can't be avoided for use of something, it must be protected by a separate login access layer hiding those credentials from users!

1
0

Well this is awkward. As Microsoft was bragging about Office at Build, Office 365 went down

Infernoz
Bronze badge
Childcatcher

Amused cackle

This is why effectively centralised, subscription (rentier), internet resources are stupid-fragile slavery, and people should not to use them for critical stuff where downtime can't be worked around using local resources; much like centralised (fragile) SVN is inferior to local and distributed (anti-fragile) git!

The icon because the children may later have to deal with more of this rentier fragility and slavery, and may have less local fall-back resources, because of this subscription-business-model trend by corporations.

7
1

Today's bonkers bug report: Microsoft Edge can't print numbers

Infernoz
Bronze badge
Holmes

Re: "it might be a good idea to use another application"

Like in Firefox, with the PDF tick widget added to Print Prevew by the "Print Edit" plugin; this creates mixed text and image PDFs, unlike the retarded, rendered-image-only PDFs of all PDF virtual printer drivers, which prevent later editing, text extraction, link use, and rendering re-flow!

Print Edit is wonderful for deleting the surrounding banners, adverts and social media strips, and other bloat from pages before printing, although some idiot web designers included F'd Up divs which prevent re-flow across several print pages, so truncate printing!

2
0

How to remote hijack computers using Intel's insecure chips: Just use an empty login string

Infernoz
Bronze badge
Facepalm

Probably best to not have IP6 enabled on an server Intel box or have it in DMZ!

Yet another reason why NAT is still important and exposing stuff via IP6 maybe not so smart!

I hope that Intel and motherboard manufacturers promptly report all affected components and if/when a fix for all the management vulnerabilities will become available, for caution then relief.

5
2

It's been two and a half years of decline – tablets aren't coming back

Infernoz
Bronze badge
Devil

Re: Sales and Marketing reality distortion field

The deceptive Janus of Capitalism and Communism was created in the 18th century by very greedy, evil, rentier parasites to cause spiritual corruption like consumerism (excessive/vapid purchasing), to pillage yet more 'wealth'. Debt fiat (violence) currency 'money', further corrupted by compounding interest (exponential usury), fractional reserve banking (legalised embezzling and fraud), and even worse leverage fraud is their evil dead capital. The authorisation by governments to corrupt the originally limited time and purpose of public corporations to privately owned, unlimited zombie psychopathic entities further helped these devils; these same entities later re-purposed Edward Bernays "Propaganda" work (deceitful manipulation based of Freud's evil sabotage) as public relations, marketing, advertising etc.

Real capital is in living things like cattle, seeds and humans, not in dead money or the evil dead, fiat currency fraud in the capitalism deception.

Only real capital can pay (fair) interest on loans, via reproductive multiplication and work, zombie currency can't, so will always cause effective slavery, many debt defaults, and poverty.

4
4

Page:

Forums

Biting the hand that feeds IT © 1998–2017