* Posts by FordPrefect

133 posts • joined 10 Feb 2010


UK COVID-19 contact-tracing app data may be kept for 'research' after crisis ends, MPs told


No chance

Not a snowballs chance in hell I'm installing this government sanctioned spyware. I dont trust central government databases just look at the misuse of the police PNC. Look at the misuse of personal data from projects connected to vote leave and Cummings and I believe him and his cohorts have some fingers in this pie as well. You can only trust the security of your data if you trust the people that have access to it. I dont therefore I wont be going anywhere near this.

The Adobe Flash Farewell Tour 2020: LibreOffice to axe export support for .SWF in version 7


Lets just hope that Flash isnt a legacy technology that gets a COVID lifeline, flash needs to die on time and on budget! I mean something has to happen on time and on budget in the IT industry sometime?

Apple drops a bomb on long-life HTTPS certificates: Safari to snub new security certs valid for more than 13 months


Re: It's optional

Which is fine if you don't want customers who have ipads and iphones to access your content. Even people with macs would have to download an alternate browser or be continually pestered about insecure web pages. Not a great look for your company. Granted its good practice to regularly replace your certs but its a bit more of a pain if you are intercepting TLS on a load balancer/firewall/IPS or similar as they don't all support automatic certificate re-enrolment. Even if they do, you don't necessarily want to hand over your CA credentials to another organisation that is running your network/security devices if you aren't running them in house.

Fujitsu warns HMRC Projects team that 30% of them could be out of a job come April


Re: So Fujitsu has no other work?

They probably do have other work but if it's not UK government it can probably be done offshore. Why pay someone in the UK when you can pay someone in Asia or even Eastern Europe a tenth of what it costs to employ someone in the UK? Not my personal rationale as my experience is it often costs more in customer satisfaction, or more direct losses when you hastily have to pay onshore rates because the offshore teams just don't perform to the same standard, but well it looks good on the figures for this financial year so we'll just worry about the numbers for next year, well in 3 months time...

Cloud, internet biz will take a Yellowhammer to the head in 'worst case' no-deal Brexit


Don't worry...

That sound old bloke Nige down the pub was drinking a pint of London's finest, smoking a faaag telling us all how it was all project fear mark 2. Mark his words everything will be fine and suddenly UK trade will go through the roof. Dont worry about little things like data protection regulations, boats to move stuff around etc, this old bloke obviously knew what he was talking about as he used to sell shit on the commodities market and has just spent the last 20 years talking about stuff he has no actual experience of!

IBM to GTS: We want you to 'rotate' clients every two years


Job rotation is a standard security practice. The idea being someone new in the job can pick up on irregularities and it makes it harder for people collude for nefarious purposes in privileged positions. Granted I don't think many outside of banks and financial services do this.

Stop us if you've heard this one: Adobe Flash gets emergency patch for zero-day exploit


Seriously can't someone take flash out back and shoot it in the head and save us from flash misery!

Windows 10 to force you to use Edge, even if it isn't default browser


Re: Fucking idiots

The difference is ios only has a small overall market share. The reason microsoft get a kicking is because they have a monopoly on the desktop OS market. If you have a dominant or monopoly position on one product you cannot use that to attempt to get a monopoly in another market.

Intel didn't tell CERTS, govs, about Meltdown and Spectre because they couldn't help fix it


Well call me a cynic but you tell the US government about exploits, the NSA will be writing exploit kits based on it. Someone finds that exploit kit and figures out what its targeting and suddenly you are in the middle of a massive sh*t storm.

PPI-pusher makes 75 MEEELLION nuisance calls, lands £350k fine


That's less than half a penny per call. That's a real deterant, they should be able to first fine the company any turn over created from those calls, and then a decent punative rate per call. How about £1 per call ? So that would be £75 million plus any money taken as a result of those calls?

UK.gov admits porn age checks could harm small ISPs and encourage risky online behaviour


You seriously think service providers use firewalls and deep packet inspection technologies such as IDS/IDP on a connection that is charged out at 20-30 a month for connections that are probably starting to average over 20MB? Most of its DNS based filtering these days.


Kids always find a way. And what would you prefer they experience something from a mainstream porn site or some sick shit from the dark web ?

Windows Store nixed Google Chrome 'app' hours after it went live


Hah put chrome on the windows store and nobody will ever have a reason to use edge!

Russia could chop vital undersea web cables, warns Brit military chief


I'd love to know the plan for realistically protecting literally thousands of miles of cables from stealthy submarine attack!

IBM reminds staff not to break customers in pre-Xmas fix-this-now rush


Will senior management accept that there is a finite amount of resource so if the amount of change exhausts the amount of resource then no more work can be done? No it will be business as usual pushing for more and more work to be done quickly so it can be billed. Those same senior management will then blame the overworked stressed workers that make a mistake due to having to much work and too little time.

BT hikes prices for third time in 18 months


Re: OpenRetch

Openreach which is a seperate entity which charges all communication providers a price agreed with ofcom...

Credit insurance tightens for geek shack Maplin Electronics


Hah given maplin prices they only have to sell 3 items a week to break even.

Didn't install a safety-critical driverless car patch? Bye, insurance!


I'd guess in practice you'd need some sort of marking system to decide how critical a patch was and something thats easy for a customer to understand ie 1-10 with anything above 5 being installed within a suitable window. ie give people a week or a month grace before it invalidates there insurance.

Co-op Bank's users moan over online wobbles


I used to be a COOP bank customer back in around 2010. The online was useless as it was always a day behind.

What shocked Verizon more: The Yahoo! mega-hack or that it runs AIM (for not much longer)?


All three people left using AIM must be devastated!

US Senators want Kaspersky shut out of military contracts


Given the low level system access that AV and other security tools need to do their job on an endpoint I'd be surprised if the US military used software from outside the US.

America 'will ban carry-on laptops on flights from UK, Europe to US'


Its going to get to the point soon where you must really want to goto the US to visit. Its already close to ritual humiliation with the security precautions and thats not even considering the fact the airlines treat you like crap. I'd be tempted to do the transatlantic trip to Canada or Mexico first then a smaller hop to get where you wanted. IE goto Toronto and goto New York from there, or if going to California, Texas or Florida transit through Mexico.

IBM: Customer visit costing £75 in travel? Kill it with extreme prejudice


All very short sighted. Regular face to face contact with customer stakeholders significantly improves customer satisfaction in my experience in the industry. Saving a few thousand per contract could lead to contract termination later down the line. You'd be surprised how even the worst f*ck ups are smoothed over by a 1-hour face to face.

UK Home Office warns tech staff not to tweet negative Donald Trump posts


Re: Yes, good idea

The problem is most people have social media accounts that are or have previously been linked and with a bit of googling even if you severed the link between LinkedIn and twitter there is a good chance google will link your accounts together again.

Ransomware scum offer free decryption if you infect two mates


Re: If only someone....

Well they are useful unless the clever ransomware writers sneakily encrypt your daily backups for a period of time before and then encrypt the main machine, meaning when you try and revert to your backups for the past week you find they are all encrypted too.

Citizens Advice slams 'unfair' broadband compensation scheme


Re: If Only OfCom Did What They Were Paid For...

Then we go back to the days of a few set speeds like when we could choose 512k, 1MB or 2MB, granted I'd hope for the most part we could better those speeds these days, but I'm pretty sure people who are sold lets say 15MB but see the line sync at 17 or 20 MB will be unhappy. Regardless of the speed delivered the cost to provide ADSL broadband is pretty much the same if you get 256k or 20MB, similarly with VDSL cost is the same regardless of actual speed delivered. So the only way for that to work would be to charge everyone the same as now but then increase price regardless of actual cost to deliver.

Would you like to pay 4x the cost to go from 20MB VDSL to 80MB VDSL regardless of the fact the cost for the ISP to deliver is the same and would you like to be stuck on set values and lose out on the line sync speed?

Free Windows 10 upgrade: Time is running out – should you do it?


I've had it on my PC and laptop since it first came out and am very pleased with it. Was dubious and installing it on my niece's netbook but after doing it wish I had done it when it first came out. Its like its a different machine compared to it running windows 8.1. Definetly if you have windows 8 or 8.1 upgrade. For windows 7 support will eventually stop and you'll have to pay for an upgrade is that what you really want?

Adobe scrambles to untangle itself from QuickTime after Apple throws it over a cliff


Didn't they used to use quicktime for TV shows purchased on itunes? Does this mean windows users are forced to either accept the security hole or not watch programs they've bought on windows?

Linux command line mistake 'nukes web boss'S biz'


Just reminds everyone why you don't ever test scripts for the first time on a live environment and also why proper off system backups are so vital! Don't ever just rely on RAID disc resiliency it wouldn't have helped here.

Dead Steve Jobs is still a crook – and Apple must cough up $450m for over-pricing ebooks


Re: hubris

Thats quite simple here in the UK and I'm guessing elsewhere in the EU. Only paper books are VAT exempt. VAT is payable on ebooks.

How will Ofcom reduce our reliance on BT if it won't break them up?


It doesn't matter who owns Openreach as long as its run on commercial lines they have to worry about competition rules, have to be careful about cross subsidies, have to make some sort of profit and the cash to put fibre into every home would have to come from somewhere. Now we're slowly edging there with FTTC and now G.Fast. However to do the last 10% will cost more than the other 90%. It will never commercially even come close to breaking even, you goto the market looking to borrow billions more than you make each year and say we want to borrow this money and spend it on something that we wont even be able to cover the cost of it and you'll get laughed out of the door.

The unpalatable options are :-

1) Slowly keep creeping fibre closer to homes(Works for 70% of the population mainly in towns and cities)

2) Massive government subsidies for rural areas.

3) Ofcom to agree increases in openreach charges so that money can be reinvested in rural areas. Two problems its anti competative as it decreases the incentives for other people to compete in those areas and customers would be up in arms if say £5 to £10 a month was added onto combined bills.

4) Tell rural people they will have to pay for roll out of fibre to there communities. I cant see many people in rural communities accepting being told they have to each pay £10,000 to deliver fibre to there homes.

Criminal records checks 'unlawful' and 'arbitrary' rules High Court


Re: Spokesperson for the Home Office 'disappointed'

Actually no the department of justice headed by Michael Gove is responsible for the courts and judiciary not the home office.

Sysadmin's £100,000 revenge after sudden sacking


Re: It was probably documented. RTFM?

Documented in the early 2000s? Most things even in big companies were on the back of a fag packet and maybe a quick and dirty visio back in those days.


Reality is you're responsibility ends at the end of your employment. The IT director is an idiot and should have handled this properly by ensuring that other people within the organisation were aware of the system and could support it going forward before sacking anyone. If that wasnt possible then he should have had the guy work his notice to ensure a proper handover.

Also given the costs involved it points to lax internal controls that would allow someone to order something that was that costly without senior management sign off.

Oracle brews perpetual, all-you-can-eat database licence


Re: Antitrust?

Microsoft got batted because they were the dominant player in one market and were trying to use that muscle to move into another market. Now if the new license is loss making, and oracle have a dominant position in the database market (Over a certain market share) then they could be in trouble however there are plenty of other players in the commercial database market including microsoft and IBM.

Firm with 80 per cent of UK mobile numbers fails to monetise them, sold to O2


I presume consent has been given...

...for this transfer of personal information from one legal entity to another?

Your new car will dob you in to the cops if you crash, decrees EU


I like the idea if your car goes off the road on a dodgy bit of road at least it wont take days for you to be discovered. However I'd temper that with the fact that the dodgier bits of roads around here in Exmoor are nearly all in spots where mobile signals are mere fantasy!

Microsoft tries to defend Irish servers from US g-men invasion, again


Of course microsoft is crying blue murder they and other American cloud providers know that the rest of the world will dump American cloud services if this goes ahead. It also would most likely put microsoft in breach of EU law and most likely in breach of its contractual obligations. What EU company could live upto its legal never mind moral data protection obligations if this judgement is allowed to proceed. How long before people start pulling office 365 hosted sharepoint and email provision?

Cisco patches three-year-old remote code-execution hole


Who would still have there web and email security appliances managed via telnet? Even if telnet is enabled by default the first thing you do once you have an ip address on the thing is to create an SSH key, enable SSH, disable telnet and then change the password.

Want a customer's call records Mr Plod? No probs


Reality is various government departments have pretty much unfettered access to your calling and internet records. Three/EE/Vodaphone have opted the method with the least overhead. So O2 have a department that checks for full stops in the right places. Given that the departments concerned can have everything the automated system allows them to have what difference does it make? Have O2 given any indication of the numbers of requests they've knocked back? And even more importantly what happens next? I suspect its just a case of the relevant department correcting a few minor errors.

The problem isnt the companies is the overly broad law with no proper oversight.

Hey, non-US websites – FBI don't have to show you any stinkin' warrant


Re: Merkel has the right idea, make the non-UK EU internet like a corporate intranet

Great idea until you realise that the US already has the back doors to all of the solutions that the EU could deploy. And if it doesn't it will just install fibre taps like its already done before. That is unless the EU wants to fund a ground up re engineering of computers and networks starting at the hardware and firmware level and working up?

EE coughs to BROKEN data usage metrics BLUNDER that short-changes customers


I did wonder last month how I jumped from upto 1GB used given that I live in an area with GPRS/Edge and at home I'm always on Wifi!

Huawei: We'll sell a dual-boot Android, Windows 8 smartphone because, well, isn't it obvious?


I like this idea I'm hopeful eventually you buy your hardware like a PC and use whichever OS suits you best. Got bored of android, try firefox OS, dont like that go back to the latest google vanilla android, then a month later fancy checking out windows phone makes sense for MS too as more people will be willing to try windows phone if they arent stuck with it for 2 years!

Mozilla CTO Eich: If your browser isn't open source (ahem, ahem, IE, Chrome, Safari), DON'T TRUST IT


What nobody else has mentioned as well is what use is a secure browser if its running on an OS with backdoors, running on hardware with potential back doors is transmitting unencrypted information or is relying on trusted certificates from companies that would probably provide any certificate requested by the government which incidentally has a whole number of side channel attacks. Just mearly saying "OMG open source will fix it" which seems to be a common reaction in these parts just luls people with a false sense of security. If the NSA/GCHQ wanted to implant back doors do you think they couldn't create people with a history to do that? Don't you think they could hide the back doors in such a way that it looks like a bug rather than simply adding something that looks like a backdoor? Do you think the NSA cant find ways to intercept passwords and code being passed to and from a CVS system, or can't find a way to have the CVS code repositories including but not limited to sending someone into the physical location of the server?


People go on and on about open source as though it automatically makes everything more secure. Given the size of most open source projects it would most likely be fairly simple for the NSA to slip in a back door and thats not even considering slipping something into libraries. Additionally unless you've actually downloaded and compiled the source you cant be sure that the source code online is whats been used to compile the executable you're using.

Army spaffed millions up the wall on flawed Capita online recruiting system - report


Surely if Capita have failed to deliver it madness to send even more money in their direction? Surely its time to put the work back out to tender?

Staffs Police face data protection probe over 'drink drivers named' Twitter campaign


Tweets weren't sufficiently detailed and came across with a presumption of guilt. It would probably be best to tie this into people actually being found guilty. I suspect a slap on the wrists is coming and is this prejudicial to the court case given that the tweets present it as someone is guilty rather than just charged.

BT banks on ex-HSBC man to take charge of Openreach biz


Not always sometimes a business needs someone who is focussed on costs. Plenty of businesses go bust when they mature and change from a low volume, high margin product to a high volume, low margin business. I worked for a company that specialised in pay as you go mobile phones back in the 1990s for a few months they basically went down the pan as margins on handsets went from approaching 50% back to 1 or 2% in less than a year.

RSA comes out swinging at claims it took NSA's $10m to backdoor crypto


I notice they haven't threatened to sue. That to me speaks volumes.

Internet Explorer 11 at it again, breaks Microsoft's own CRM software


IE 11 seems to be a trip back to the bad old days of microsoft. It crashes constantly on my PC I'll get around to turning off the hardware accelerated rendering soon, but I use Chrome day to day and its just for the odd site which is still IE only that I use it.



Biting the hand that feeds IT © 1998–2020