* Posts by sysconfig

273 posts • joined 5 Jan 2010

Page:

After London attack, UK gov lays into Facebook, Google for not killing extremist terror pages

sysconfig

Unless the US social media companies are actually supporters of terrorism?

You don't have to go far back in time to find plenty of cases where the US, UK and others have made a sizeable amount of money by selling war machinery into countries which are now "evil" and supporting/hosting terrorists. In some cases you don't have to go back in time at all. The Saudi's are UK's biggest importer of weapons currently, for example, and as long as they keep fighting Yemen, they'll need more gear.

So if our governments (via arms manufacturers' lobbying and tax collection) have no interest in having an entirely peaceful world, why would companies in such countries care much about it?

2
0
sysconfig

Two things they want

1. They want to be seen to be doing something, anything.

2. They want more control over what we can and cannot see. Even if it's done with best intentions (I doubt that), there's no way anybody can effecitvely control which website should or shouldn't be visible. No pattern is perfect: Country of origin? (Hey there Donald!) Keywords? (let's ban everything about cars or knives?)

The UK Gov's wish (and that's all it is) answers to the demands of rags like the Daily Fail and their readers. But it's a futile attempt at best, and it's a very slippery slope.

Also, unless UK Gov somehow manage a world-wide ban of certain sites on Google (and all other search engines), people with enough criminal energy will easily be able to work around it. So it achieves nothing. Meanwhile, all the false positives will affect Law Abiding Citizen. Another win for the "terrorists" (in quotes, because we use that word way too lightly and sometimes inappropriately).

6
0

COP BLOCKED: Uber app thwarted arrests of its drivers by fooling police with 'ghost cars'

sysconfig

Bad press vs no press...

They say bad press is better than none at all. Uber really embraced this concept.

2
0

'First ever' SHA-1 hash collision calculated. All it took were five clever brains... and 6,610 years of processor time

sysconfig

Re: Stop using PDFs ?

That's a very good point you're making there, JimmyPage.

Since false certificates were part of this discussion, I'd like to see that too. A cert is nothing but a ASCII text document of a very specific format. That should be a lot harder to pull off than using binary blob formats like PDF, which would allow you to hide a lot of stuff quite easily to tweak the hash to your liking.

Having said that, I'm not defending SHA-1. It was already known that its days are numbered.

Also, let's not use the term "calculate" when we refer to this stunt Google pulled off. Anything that uses 6500 years of compute time sounds a lot more like trial & error to me... or trial, verify, dismiss, repeat. Not quite a straight forward calculation. So SHA-1 is not really broken; it's just too weak as compute power becomes cheaper.

EDIT TO ADD, even if wandering off on a tangent: There are better ways to break SSL encryption, regardless of the hash used. How many of the Certificate Authorities that your OS&browser know, do YOU know? How many of them do you personally TRUST? SSL is fundamentally broken by design; unfortunately with no feasible alternative as yet.

3
0

Google agrees to break pirates' domination over music searches

sysconfig

Whether something is illegal or not...

...is for courts to decide, not for governments, search engines, or the music industry.

Censorship is in full swing in our so-called free western world.

11
1

Smash up your kid's Bluetooth-connected Cayla 'surveillance' doll, Germany urges parents

sysconfig

Expectations

If big companies who earn money with coms and networking (in the broadest sense) struggle to keep their stuff secure (TalkTalk, I'm looking at you, but not only at you), how on earth can anybody think that some random company from far far away can and will keep their cheaply produced IoT stuff secure? Even if it was secure at time of purchase, who is going to update their daughter's doll? I mean seriously.

They did the right thing in Germany; the ban won't help much, but it raises awareness of the risks. It's a start, and goes quite in the opposite direction of what's happening here in the UK (as pointed out by someone else before).

This whole Internet of Trash is going to blow up in all our faces, if it hasn't already (depending on what gadget you have bought or intend to buy, or what is forced on you).

2
0

NGO to crowdfund legal challenge against Investigatory Powers Act

sysconfig

So they don't take AmEx, then?

Yes they do, and the input field splits the groups of digits correctly as you type. I can confirm, you may go ahead and pledge with your Amex, too.

4
0

Prez Obama expels 35 Russian spies over election meddling

sysconfig

Gesture to appease Joe Public

Expelling known spies is and has always been just a gesture to show Joe Public, "Look, we're doing something about it." Just political bullshitting, to be honest.

Much harder to expell spies the US doesn't know are spies. Even more difficult to expell those who have an American passport. And those are the one to worry about.

On a side note, I don't buy this RU interference nonsense. It's a desperate attempt to depict Trump as an illicit successor in the White House. (Disclaimer: I think he is a shite candidate. But so was Clinton. Choosing the lesser of two evils was particularly hard this time around.)

9
1

Samsung, the Angel of Death: Exploding Note 7 phones will be bricked

sysconfig

Re: Is this even legal in the EU?

I'm sure they can override mere property laws under public safety or anti-terrorism grounds

What has the world come to...

4
0

Brexit means Brexit: What the heck does that mean...

sysconfig

Re: And there's also the Snooper's Charter

We're going to lose a lot of data business, I think, just by creating yet-another-jurisdiction to deal with

Exactly. New, currently undefined, red tape and uncertainty about what and when and how are poisson.

Also, the giant holes in the left and right foot? They are called Snoopers' Charter Crater and Digitcal Economy Abyss. Neither of them is going to help attract business, to say the least.

5
0

HMS Queen Lizzie to carry American jets and sail in support of US foreign policy

sysconfig

Classic...

That deployment will take place with half the air wing provided by US Marine Corps F-35Bs because Britain hasn't ordered enough of the jets for delivery in time to fully equip the air wing

So let's build those bloody carriers, even though we don't have enough planes to utilise them?

1
0

Want to spy on the boss? Try this phone-mast-in-an-HP printer

sysconfig

Re: I'm wondering

Who replies to text messages from numbers they don't recognise or people who won't identify themselves?

The same people who click on links in spam and phishing emails, and hand over credentials to third parties. We wouldn't see any of those "attacks", if there weren't enough stupid "customers".

38
0

What will happen when I'm too old to push? (buttons, that is)

sysconfig

Re: RE; LEDs

Or get an Echo and do everything by voice.

A cloud-enabled recording device in the bedroom? To each their own...

15
0

UK 'emergency' bulk data slurp permissible in pursuit of 'serious crime'

sysconfig

Re: Exactly what defines 'serious crime'?

Judging by the looks I get from my neighbours, having your bin out more than two hours before or after it's supposed to be picked up is pretty serious already. (out = end of your driveway, not even on the pavement)

4
0

Pressure mounts against Rule 41 – the FBI's power to hack Tor, VPN users on sight

sysconfig

@Six: Re: Definitely different!

Thanks for that rather insightful post. I didn't know any of that. Very interesting.

3
0

Energy companies aren't going to slurp your personal data. Honest

sysconfig

EDF keep trying

to force one of those smart meters on me. And boy are they persistent. But so am I.

It might be the case that energy companies are supposed to roll that shit out by 2020. That doesn't mean that I'm obliged to help them with that. There's neither a law that requires house owners to have those snoop smart meters, nor is there any law that allows energy companies to deny supply based on what meters are installed. So service will commence as usual, for the time being.

I don't care how old EDF think my meter is. It counts kwh just fine. They will not convince me otherwise, unless my leccy bill is suddenly much lower than it used to be (meter stopped working).

3
0

Lester Haines: RIP

sysconfig
Unhappy

Very sad news

55 is way too young to log out!

Rest in peace. Condolences to the family and friends.

20
0

Crims set up fake companies to hoard and sell IPv4 addresses

sysconfig

Dormant networks, unvalidated contacts

Surely ARIN itself could do the crims' job much easier, repossess orphaned and dormant address ranges and therefore delay the inevitable depletion of available IPv4 space a little bit further?

It's of course not a solution to the problem (slow IPv6 uptake), but would buy some time and remove a market for criminal extortion schemes.

8
0

Voter registration site collapse proves genius of GDS, says minister

sysconfig

You couldn't make this sh** up

They knew within two hours after the fact what went wrong. Hear, hear! Everybody who does not need a beating with a cluebat first, would have known *before* the fact how many visitors can be expected and what capacity might be needed (plus buffer and/or ability to scale).

And here's another piece of common sense: Things *always* get busier as a deadline comes closer. Some basic analytics and monitoring would have shown an alarming trend (for the un-initiated) and they could have spent those two hours to sort things out before seeing the service fail.

It was a spectacularly epic fail, not a success by any means. Politicians!

4
0

Uber helicopter taxis

sysconfig

For $19 I'd have a ride

I like flying in helicopters, so $19 would be a no brainer for me, if I lived in Sao Paolo.

After the promotional offers expire, the price will be many many times higher though, because helicopters and commercial pilots are not cheap to operate.

1
0

Symantec swoops on Blue Coat in $4.65bn deal

sysconfig

@Scunner - Re: Certificate Authority buys enterprise grade SSL decryption biz? What could go wrong?

How about this then? http://www.theregister.co.uk/2016/05/27/blue_coat_ca_certs/

Their gear is already being used in non-consentual ways. Just not by our own governments yet (to our knowledge).

Also, there's a new ElReg article highlighting the same issue, quoting concern in the security community about the acquisition: http://www.theregister.co.uk/2016/06/14/symantec_blue_coat_analysis/

The thing is that for enterprise-level security, backed by clear consent (via employment contract, code of conduct etc), there's no need to have a proper cert on the Blue Coat appliances. The Blue Coat cert will just be added to trusted lists on all clients and you're good to go.

Having an already widely trusted cert just enables much easier misuse of decryption, without any added security benefit for the normal enterprise customer.

Wasn't too long ago that Symantec was threatened to be "untrusted" by Google as well, because of other blunders:

http://www.theregister.co.uk/2016/03/23/google_now_publishing_a_list_of_cas_it_doesnt_trust/

http://www.theregister.co.uk/2015/10/29/google_symantec_dodgy_certs/

Five years ago I would have agreed with your analogy to cars. However, nowadays every citizen is presumed guilty and subjected to extreme surveillance, further extended by IPB & Co, which is a hard to grasp concept already. To add insult to injury we see privacy not only infringed by government agencies, but also by lots of big enterprises; and Symantec/Blue Coat would make it so much easier for everybody, that I find it difficult to give them the benefit of a doubt and assume all the best intentions. Complacency and ignorance is what got us into this state of surveillance, and we're only at the beginning of it. Forgive me if I cannot just look at Symantec/Blue Coat and assume best intentions. For the protection of a local network with Blue Coat, a proper CA signed cert isn't needed; for transparent decryption in other places on the other hand, it is.

My original argument was that Symantec can no longer be trusted as a CA because their cert on Blue Coat appliances used by others will enable transparent decryption.

I stand by that. Trust, for me, is not only defined as to whether I think an entity is doing the right thing and has good intentions, but also if whatever they provide can be misused by others. An analogy to that would be a trusted network vs a DMZ. You control servers in the DMZ, and should be able to trust them, but they can potentially cause harm due to the fact that others may compromise (gain access, misuse) them, hence you keep them away from the crown jewels.

1
0
sysconfig

Certificate Authority buys enterprise grade SSL decryption biz? What could go wrong?

See title. Symantec needs to have its status as Certificate Authority revoked and removed from all browsers and SSL clients RIGHT NOW. Otherwise all clients will trust the certs that Blue Coat uses, and will not question or even flag the MITM nasties that Blue Coat has built a business on.

(Fine if used in a company and policies and employment contracts are clear about private use; But really bad if we see this kit popping up at ISPs and hosting companies, in line with bills like IPB)

10
0

Over Ireland? Bothered by Brexit? Find that new home for your cloud

sysconfig

With the IPB coming, EU membership is less important to consider

Rather than waiting until 24th June, I'd wait until a final decision on the Investigatory Powers Bill is made, if I was a non-European company looking for a place to host. It looks very much incompatible with EU data protection laws, puts logging and data hoarding burdens on service providers and hosting companies that are not yet clearly defined, and may well render the EU membership question moot in comparison.

A non-European company's best bets for hosting are Ireland (if English-speaking country and low corporation tax rates preferred), Netherlands (AMS-IX) or Germany (DE-CIX) if best possible connectivity within Europe is needed. As an added benefit they get a location inside the EU.

All these options are a lot cheaper for hosting than anything near LINX as well.

If Britain decides to leave the EU *and* introduce the IPB, it will no longer be attractive for anybody to host things here, including domestic companies.

8
0

Government regulation will clip coders' wings, says Bruce Schneier

sysconfig

Re: The man's an incorrigible optimist

I think you will find it was BT not the BBC. Slightly different I think you might find.

BT of course. Thanks for the correction.

0
0
sysconfig

Re: The man's an incorrigible optimist

Evidently he's not got much experience of the British government

I think he's well aware of it, not least because he used to be employed by the BBC. (And the British gov is not the only stupid one in the world.)

But you don't go on stage at a major security conference and call out the government for what they are. It closes all doors for any sort of communication in the future. So you keep your reasoning along the lines of "haven't lost all hope just yet". Who knows, being the renowned security guy he is, he might be hoping to get an advisor role with a government?

5
1

Twitter: Don't know where hackers got those logins but it wasn't from us

sysconfig
Trollface

"Out of 15 users we asked, all 15 verified their passwords"

That explains how passwords were collected in the first place then.

5
0

EU referendum frenzy bazookas online voter registration. It's another #GovtDigiShambles

sysconfig

This is due to unprecedented demand.

You don't say. Of course there's no precedent for a Brexit referendum, because there's never been one.

That said, how hard can it be to make an educated guess about the capacity needed? (EDIT: and/or design it properly so that it scales?)

Can anybody please name any GDS project that hasn't failed spectacularly (or is about to)?

4
2

FBI tries again to get warrantless access to your browser history

sysconfig
Joke

Great to hear that the Brits are pioneers and the Muricans follow suit this time around. Sounds a hell of a lot like Investigatory Powers Bill over here.

1
0

MPs pass new UK spy law

sysconfig

Register going BBC style reporting?

How can news about such important legislation only appear in those tiny news nibbles, which rotate all the way through in no time? IPB will take away over night the little privacy we had left, and turn all of us into subjects of surveillance, presumed guilty, while giving access to the information to a broad range of institutions and people with insufficient oversight and sign off procedures. Several committees and experts alike had doubts, which makes it even more outrageous and important, since you've got to wonder how it can receive such an overwhelming majority in the House of Commons.

This should be kept in the headlines indefinitely, not be disappearing with other FYI-style bites.

1
0

Brexit: UK gov would probably lay out tax plans in post-'leave' vote emergency budget

sysconfig

Re: Optional indeed...

Exactly what I thought, too. A lot of if, would, might, could, likely, unlikely etc etc

In essence the article supports what the "fear mongers" (remain camp) are saying: We do NOT know what's going to happen when Britain leaves, or when. A lot of things will have to be re-negotiated, which takes time and causes uncertainty - and that's always bad news for business.

On the pro side, if Britain left the EU, the next 1-2 goverments here will have a very hard time blaming any shit on the EU or migrants.

4
2

Systemd kills Deb processes

sysconfig

@Alan Brown - Re: Creating problems that didn't need solving

Incidentally, it's NOT a huge monolithic process and can be understood _if_ you take the time to do so. [...]

The blind hate is unjustified. You might not want to use it on your single-user box and that's fine but in a large, complex, multiuser environment it's a different story. That said, it's far closer to an ideal startup sequencer than BSD or SysV were and _that_ is why it's not going to go away until something better comes along.

Firstly, it's not blind hate, but my personal experience and opinion, which I am entitled to.

Secondly, more importantly, do not make any assumptions about the environments I am in charge of or my willingness or ability to learn systemd. You can keep your Lennart-like attitude to yourself.

2
2
sysconfig

Creating problems that didn't need solving

That's, in a nutshell, systemd.

If distros think it's useful to speed up boot times and respond to device changes (wifi, GUI interaction etc) on desktops and laptops, that's one thing. But it has no f***ing business on servers. The average server's POST time is probably around 2 minutes due to controllers etc. I don't give a flying f*** if Linux takes 10 or 30 seconds to boot after that. It only happens once every blue moon anyway (kernel & glibc updates), and while it reboots, another server is taking over the job.

Systemd is the idea of a self-centred hobby kernel developer (now unfortunately sponsered/employed by RH), who shows complete disregard for real world problems.

It messes with things it shouldn't (leave them processes alone!), adds layers and layers of unnecessary complication to simple tasks (who asked for binary logs, please? if you store logs *only* on the server, and not remotely, you have bigger issues than log integrity), and the list continues.

Just keep those screw-ups coming. Makes it easier for me to propose FreeBSD to clients.

Rant over - until systemd messes up yet another thing, which won't be long.

15
2

Don't panic, says Blue Coat, we're not using CA cert to snoop on you

sysconfig

Google decided to consider Symantec no longer trusted in December (as reported here) - that time it was Symantec "testing" something.

The current CA landscape is a farce. Somebody, somewhere decides which corporations everybody is supposed to trust. And those corporations can then go ahead and delegate that trust to other parties, like BlueCoat (and anybody else interested in stealthy MITM nasties), or they issue malicious certificates without even knowing about it (Comodo a few years ago, IIRC).

Unfortunately there's no alternative, yet.

9
1

The Windows Phone story: From hope to dusty abandonware

sysconfig

@JimmyPage - Re: Even though most people evidently prefer Android and IOS

I *use* Android, because it's either Android or iOS. But I don't "prefer" it.

By prefer I actually meant choose for whatever reason, simply based on market share. Should have been a bit clearer there.

That was a very general and neutral statement. However, on a more personal note, just for the record, I have a Lumia 650 myself, which I think offers fantastic value for money and is a very neat phone altogether. Apps aren't a problem for me, because those which I need, are available and work well. I do not fancy going back to either Apple or Android, either.

4
0
sysconfig

Shame

Even though most people evidently prefer Android and IOS, it is always bad news for consumers when fewer competitors remain.

25
5

Lost containers tell no tales. Time to worry

sysconfig

"containers are a way to create hermetically sealed application services"

Well, that's the theory and the marketing approach to reality. (We suspect by now that the DevOps column at El Reg is heavily sponsored, anyway.)

A brief look at the CVE database reveals a number of glaring security issues, including root escalation and totally screwed up permissions. Certainly more of them than should be the case given its short lifetime.

So, for as long as I can concince my clients, systems will be hermetically sealed to keep Docker out, thank you. If it really matures past the hype, I may take another close look at it. Until then, if I need this extra layer for quick deployment and flexibility (plus added security that Docker not currently provides), I'll continue using *mature* FreeBSD jails, cheers.

0
0

Sweden decides Julian Assange™ 'remains detained in absentia'

sysconfig

Detention?

Why is it that people seem to be referring to Assange's current situation as detention? He's not detained. He is avoiding detention by choice. His current situation is that he chose to live in a Knightsbridge flat, a prime location, with guards and concierge service, and even allowed to have a pet. He is free to go - at the risk of actually being detained to finally answer to some allegations.

The US don't want him. He has made himself quite irrelevant already (apart from some mediocre entertainment value). If they wanted him, they would have done so long before he managed to break his bail conditions. He's not a British Citizen, so the UK wouldn't have hesitated to hand him over, if asked nicely.

16
1

Labour scores review of Snoopers' Charter's bulk powers from UK.gov

sysconfig

Good news, I guess

Though you have to wonder why Labour collectively abstained in the last vote regarding this bill in parliament. Also, if this independent review does - like several committees and experts before - challenge the bill and comes to equally damning conclusions, will government actually listen, or just try to push it through anyway?

In any case, the longer it can be delayed to put those powers into law, the better.

17
0

Twitter expands beyond 140 characters

sysconfig

They should allow more text

The move is a logical one as the service has gradually evolved as a way to send pictures and videos to people, and has expanded beyond a primarily one-to-one sending service.

It has also evolved to a service where people increasingly resort to rendering longer texts into images and just post them, because 140 characters is often just a little bit too short to get a point across.

4
0

Google to kill passwords on Android, replace 'em with 'trust scores'

sysconfig

Trust score of zero

That's what Google has on my personal trust score rating. I'm quite happy for them to share the same sentiment about me. Call me old fashioned, but convenience is not more important than security/privacy. I'll choose complex passwords or (better) multi-factor authentication over biometric and telemetry slurp any time, thank you.

17
0

French authorities raid Google's Paris HQ over tax allegations

sysconfig

Two extremes

Not sure if a full on raid is appropriate as I haven't got a clue about taxes paid or not paid in France, or their laws for that matter. But it's interesting to see how far authorities go there, while over here you can just have back room deals which allow a global player to pay far less in taxes than most some SMEs have to cough up.

7
1

Salesforce slaps UK Enterprise customers with 40% price hike

sysconfig
Trollface

@steamout - Re: WTF?

Omnichannel 360-degree views? Do that mean you have access to all of the data?

No it means they get to see my backside too.

0
0

Half of EU members sidle up to EC: About the data-sharing rules. C'mon. Chill out

sysconfig

Re: More barriers please

business models must be compatible with data protection (i.e. privacy), not the other way around

This, dear sir, is spot on, and sums up in one sentence so many things that are wrong with business and politics these days. Have an upvote.

4
0

Oculus backtracks on open software promise

sysconfig

Not surprised

When Oculus started out years ago there was literally no competition in the consumer space. It was a big thing. But they took way too long to get it to market properly. In the meantime their developer versions gained some traction in certain games and communities (simulators being one).

So Oculus has done the proof of concept and viability, now other manufacturers come along to get a piece of the pie. That wasn't entirely unpredictable, to say the least. As a result, Oculus are now trying to offer much less (initially marketed for all major platforms, now Windows only; price much higher; less open etc etc) while trying to protect their IP.

The competition are actual hardware manufacturers like HTC, Sony, Samsung. Oculus are in for a serious fight, which they are probably not going to win (unless The Zuck is going to pour a lot of money into it and accept a slim margin in return for a bigger piece of the market cake). Aligning their price with the Vive (if you count in the fact that Oculus' controller isn't ready, but Vive's is) is not a good idea.

Not partnering with Steam (unlike Vive) is another missed opportunity.

Will be interesting to see how this market pans out in the next few years.

10
1

Hmmm, where should I dump those unencrypted password files? I know - OneDrive

sysconfig

The Skyhigh guys again

"The amount of sensitive data being stored on OneDrive in general is increasing, Skyhigh reports. Around one in six (17.1 per cent) of stored files contain sensitive data, which consists of confidential data (9.4 per cent), personal (4.1 per cent), health (1.9 per cent) and payment (1.7 per cent) information."

How could you possibly know that? It's a random guess at best. I stopped reading there, but I'm assuming there's a sales pitch in the following paragraphs.

7
1

Windows 10 build 14342: No more friendly Wi-Fi sharing

sysconfig

@djack Re: symlink support for Linux subsystem

djack, I don't think your assessment is correct, or I am misreading it. You say: However, they [junctions] are the equivalent of hard links, not symlinks. And then you go on to say: Hard links can only ever link files within the same filesystem but symlinks can cross fs boundaries.

While that's true for Linux hard links, I am absolutely certain that NTFS Junctions work across file systems and physical drives, so they don't quite resemble Linux hard links. In fact, to give one example, my user home directory is Junction'ed from another physical drive into the normal C:\Users hierarchy to save space on the system drive, and that works just fine without touching anything else (registry etc) to make it happen.

5
0

Brexit campaign group fined £50k for sending half a million spam texts

sysconfig

Re: Why is "Call me Dave" Cameron telling me what to think?

Isn't that why Cameron allowed each MP to choose which side they wanted to be on rather than having them toe the party line?

Oh how very generous of him. It's bad enough that the common back bench (and in many cases front bench) MP even cares what the MPs sitting in front and next to them think and vote for. They should vote for whatever is in the interest of their constituents, not some self-serving agenda dictated by the party leadership.

(This goes for all MPs, not just Tories, and is definitely not limited to pro/contra Brexit, either, just to be clear.)

2
0

GCHQ plugs DevOps

sysconfig

Surprisingly interesting and well written paper, actually. They nail it on the subject of big organisations' struggle to (not just) adopt to change.

1
0

Monster Cloud and an angry customer wanting a refund: A Love Story

sysconfig

Strange outfit...

Couldn't find any clue as to who actually runs this Monster Cloud business. But it appears that the domain is registered to a sole trader (though not with real name, which might be in breach with Nominet's rules, but I can't be bothered to confirm that right now).

The terms of service don't name who they apply to, which is bad practice or may even render them invalid. And surely these terms will not hold water either:

You agree that, except where otherwise specified in these terms, fees paid to us are not refundable on any basis.

We reserve the right to alter pricing, including ceasing to offer elements of our Services. We will inform you by email if the charge for a service is to be altered. You can then decide if you want to continue to use such service. Your continued use of the service after the proposed fee modification has been notified will be considered acceptance of the proposed fee modification.

Well, I'm not a lawyer, but my feeling is that they leave a lot to be desired. I wouldn't be surprised if this Monster Cloud outfit is just a single person (nothing wrong with that per se) and that neither marketing nor legal department actually exist. This would also explain why he got so emotionally involved, as if this was a personal issue. If he was an engineer of the business, he'd have said something along these lines: "sorry, we're the tech guys here, but I've forwarded it straight to accounts, thank you".

Since the "engineer" was the first to mention legal, I would pick him up on that if I were the customer here. Letter of action; afterwards straight to small claims court or higher (depending on the amount of money we're talking about). I'd be surprised if he didn't refund after the letter though.

16
0

'No password' database error exposes info on 93 million Mexican voters

sysconfig

Re: no government will do it, but....

Unfortunately that's never going to happen, because many (all?) governments are guilty of slurping up data and using it in ways that citizens never agreed to or even know of.

10
0

Page:

Forums

Biting the hand that feeds IT © 1998–2017