Given the low level system access that AV and other security tools need to do their job on an endpoint I'd be surprised if the US military used software from outside the US.
113 posts • joined 10 Feb 2010
Its going to get to the point soon where you must really want to goto the US to visit. Its already close to ritual humiliation with the security precautions and thats not even considering the fact the airlines treat you like crap. I'd be tempted to do the transatlantic trip to Canada or Mexico first then a smaller hop to get where you wanted. IE goto Toronto and goto New York from there, or if going to California, Texas or Florida transit through Mexico.
All very short sighted. Regular face to face contact with customer stakeholders significantly improves customer satisfaction in my experience in the industry. Saving a few thousand per contract could lead to contract termination later down the line. You'd be surprised how even the worst f*ck ups are smoothed over by a 1-hour face to face.
Re: Yes, good idea
The problem is most people have social media accounts that are or have previously been linked and with a bit of googling even if you severed the link between LinkedIn and twitter there is a good chance google will link your accounts together again.
Re: If only someone....
Well they are useful unless the clever ransomware writers sneakily encrypt your daily backups for a period of time before and then encrypt the main machine, meaning when you try and revert to your backups for the past week you find they are all encrypted too.
Re: If Only OfCom Did What They Were Paid For...
Then we go back to the days of a few set speeds like when we could choose 512k, 1MB or 2MB, granted I'd hope for the most part we could better those speeds these days, but I'm pretty sure people who are sold lets say 15MB but see the line sync at 17 or 20 MB will be unhappy. Regardless of the speed delivered the cost to provide ADSL broadband is pretty much the same if you get 256k or 20MB, similarly with VDSL cost is the same regardless of actual speed delivered. So the only way for that to work would be to charge everyone the same as now but then increase price regardless of actual cost to deliver.
Would you like to pay 4x the cost to go from 20MB VDSL to 80MB VDSL regardless of the fact the cost for the ISP to deliver is the same and would you like to be stuck on set values and lose out on the line sync speed?
I've had it on my PC and laptop since it first came out and am very pleased with it. Was dubious and installing it on my niece's netbook but after doing it wish I had done it when it first came out. Its like its a different machine compared to it running windows 8.1. Definetly if you have windows 8 or 8.1 upgrade. For windows 7 support will eventually stop and you'll have to pay for an upgrade is that what you really want?
Didn't they used to use quicktime for TV shows purchased on itunes? Does this mean windows users are forced to either accept the security hole or not watch programs they've bought on windows?
Just reminds everyone why you don't ever test scripts for the first time on a live environment and also why proper off system backups are so vital! Don't ever just rely on RAID disc resiliency it wouldn't have helped here.
Thats quite simple here in the UK and I'm guessing elsewhere in the EU. Only paper books are VAT exempt. VAT is payable on ebooks.
It doesn't matter who owns Openreach as long as its run on commercial lines they have to worry about competition rules, have to be careful about cross subsidies, have to make some sort of profit and the cash to put fibre into every home would have to come from somewhere. Now we're slowly edging there with FTTC and now G.Fast. However to do the last 10% will cost more than the other 90%. It will never commercially even come close to breaking even, you goto the market looking to borrow billions more than you make each year and say we want to borrow this money and spend it on something that we wont even be able to cover the cost of it and you'll get laughed out of the door.
The unpalatable options are :-
1) Slowly keep creeping fibre closer to homes(Works for 70% of the population mainly in towns and cities)
2) Massive government subsidies for rural areas.
3) Ofcom to agree increases in openreach charges so that money can be reinvested in rural areas. Two problems its anti competative as it decreases the incentives for other people to compete in those areas and customers would be up in arms if say £5 to £10 a month was added onto combined bills.
4) Tell rural people they will have to pay for roll out of fibre to there communities. I cant see many people in rural communities accepting being told they have to each pay £10,000 to deliver fibre to there homes.
Re: Spokesperson for the Home Office 'disappointed'
Actually no the department of justice headed by Michael Gove is responsible for the courts and judiciary not the home office.
Re: It was probably documented. RTFM?
Documented in the early 2000s? Most things even in big companies were on the back of a fag packet and maybe a quick and dirty visio back in those days.
Reality is you're responsibility ends at the end of your employment. The IT director is an idiot and should have handled this properly by ensuring that other people within the organisation were aware of the system and could support it going forward before sacking anyone. If that wasnt possible then he should have had the guy work his notice to ensure a proper handover.
Also given the costs involved it points to lax internal controls that would allow someone to order something that was that costly without senior management sign off.
Microsoft got batted because they were the dominant player in one market and were trying to use that muscle to move into another market. Now if the new license is loss making, and oracle have a dominant position in the database market (Over a certain market share) then they could be in trouble however there are plenty of other players in the commercial database market including microsoft and IBM.
I presume consent has been given...
...for this transfer of personal information from one legal entity to another?
I like the idea if your car goes off the road on a dodgy bit of road at least it wont take days for you to be discovered. However I'd temper that with the fact that the dodgier bits of roads around here in Exmoor are nearly all in spots where mobile signals are mere fantasy!
Of course microsoft is crying blue murder they and other American cloud providers know that the rest of the world will dump American cloud services if this goes ahead. It also would most likely put microsoft in breach of EU law and most likely in breach of its contractual obligations. What EU company could live upto its legal never mind moral data protection obligations if this judgement is allowed to proceed. How long before people start pulling office 365 hosted sharepoint and email provision?
Who would still have there web and email security appliances managed via telnet? Even if telnet is enabled by default the first thing you do once you have an ip address on the thing is to create an SSH key, enable SSH, disable telnet and then change the password.
Reality is various government departments have pretty much unfettered access to your calling and internet records. Three/EE/Vodaphone have opted the method with the least overhead. So O2 have a department that checks for full stops in the right places. Given that the departments concerned can have everything the automated system allows them to have what difference does it make? Have O2 given any indication of the numbers of requests they've knocked back? And even more importantly what happens next? I suspect its just a case of the relevant department correcting a few minor errors.
The problem isnt the companies is the overly broad law with no proper oversight.
Re: Merkel has the right idea, make the non-UK EU internet like a corporate intranet
Great idea until you realise that the US already has the back doors to all of the solutions that the EU could deploy. And if it doesn't it will just install fibre taps like its already done before. That is unless the EU wants to fund a ground up re engineering of computers and networks starting at the hardware and firmware level and working up?
I did wonder last month how I jumped from upto 1GB used given that I live in an area with GPRS/Edge and at home I'm always on Wifi!
I like this idea I'm hopeful eventually you buy your hardware like a PC and use whichever OS suits you best. Got bored of android, try firefox OS, dont like that go back to the latest google vanilla android, then a month later fancy checking out windows phone makes sense for MS too as more people will be willing to try windows phone if they arent stuck with it for 2 years!
Mozilla CTO Eich: If your browser isn't open source (ahem, ahem, IE, Chrome, Safari), DON'T TRUST IT
What nobody else has mentioned as well is what use is a secure browser if its running on an OS with backdoors, running on hardware with potential back doors is transmitting unencrypted information or is relying on trusted certificates from companies that would probably provide any certificate requested by the government which incidentally has a whole number of side channel attacks. Just mearly saying "OMG open source will fix it" which seems to be a common reaction in these parts just luls people with a false sense of security. If the NSA/GCHQ wanted to implant back doors do you think they couldn't create people with a history to do that? Don't you think they could hide the back doors in such a way that it looks like a bug rather than simply adding something that looks like a backdoor? Do you think the NSA cant find ways to intercept passwords and code being passed to and from a CVS system, or can't find a way to have the CVS code repositories including but not limited to sending someone into the physical location of the server?
People go on and on about open source as though it automatically makes everything more secure. Given the size of most open source projects it would most likely be fairly simple for the NSA to slip in a back door and thats not even considering slipping something into libraries. Additionally unless you've actually downloaded and compiled the source you cant be sure that the source code online is whats been used to compile the executable you're using.
Surely if Capita have failed to deliver it madness to send even more money in their direction? Surely its time to put the work back out to tender?
Tweets weren't sufficiently detailed and came across with a presumption of guilt. It would probably be best to tie this into people actually being found guilty. I suspect a slap on the wrists is coming and is this prejudicial to the court case given that the tweets present it as someone is guilty rather than just charged.
Not always sometimes a business needs someone who is focussed on costs. Plenty of businesses go bust when they mature and change from a low volume, high margin product to a high volume, low margin business. I worked for a company that specialised in pay as you go mobile phones back in the 1990s for a few months they basically went down the pan as margins on handsets went from approaching 50% back to 1 or 2% in less than a year.
I notice they haven't threatened to sue. That to me speaks volumes.
IE 11 seems to be a trip back to the bad old days of microsoft. It crashes constantly on my PC I'll get around to turning off the hardware accelerated rendering soon, but I use Chrome day to day and its just for the odd site which is still IE only that I use it.
Is this the same yahoo email system where people are regularly complaining about having their accounts hacked?
What do I care on my personal equipment the only use I have for IE is the browser after installing/reinstalling windows to use to get a decent browser and for that's chrome at the moment.
How many tablets or phones currently have 4GB of RAM(And I dont mean flash storage) or more? Hell the highest I've heard of is some android devices such as Samsung note 2 that has 2GB.
Seems like the Americans regard the Chinese like a girl's father regards teenage boys. IT IS TOTALLY NOT ALRIGHT FOR YOU TO DO THE SAME AS ME!
Talk about payment for failure!
Re: It's stuff like this...
The private sector really helped the Olympics in 2012 didn't it? All of the privatized utilities have cut bills and improved service just as we were promised, Oh wait...
All that old stuff on COBOL and mainframes you are complaining about has worked in many cases flawlessly for 30-40 years. Its very easy to buzzword it with "REPLACE IT WITH LINUX" but I've seen many implementations along these lines fail because the people buzzwording often had no idea or experience in the scale of system being talked about.
To be fair to Microsoft this is 12 year old product and they have said for years they will not continue to support it. Apart from mainframes how many other OS or software releases are still actively supported 10 years after release? It costs money to continue to develop updates for windows XP and no organisation is going to continue developing something for free indefinitely. Microsoft are just pointing out that every flaw and vulnerability they fix in VISTA, 7 and 8 will be checked by those with malicious intent to see if XP has the same flaw.
I guess if there is a call for it maybe the AV vendors can potentially scan for and block any malware extending the life somewhat for those that arent ready to make the jump to something newer. Not as good as fixing the problem though.
Be realistic if you dont want the NSA to be able to view your mail you probably need to do the following :-
Not use SSL - US companies control most of the root CAs.
Not use US manufactured equipment and software - Think about that for a while, how many equipment manufacturers of chipsets and CPUs are there. How many BIOS chip designers are there world wide? How many server companies with no US links? Take it to the next step find an OS that's not made by a US company. Bar compiling linux from source I cant think of many. Then look at networks no cisco or juniper or any of the other US companies that manufacture(Huwaei so you can be snooped on by the Chinese instead).
Next consider encryption, I've no proof that the US can crack 256bit AES or triple DES quickly however the same department thats tasked with signals intelligence suggests to US companies publicly that they use AES-256 wouldn't you be a little bit suspicious? That doesnt count other parts of your encryption software is there problems with keys not being secure enough?
Ultimately I think it comes down to the most important thing though, do I think the NSA is bothering to read my comms? Nope, I'm just a normal bloke who lives in the UK. I've got no links to anyone interesting. Given that I am literally one of 5+ billion people if the relevant apparatus wasn't properly targeted it would be a monumental waste of time and resources.
Sounds great in theory!
Seems a strange fit to me. CISCO already have an IPS, and as much talk of the "next generation" firewall features as there is from sourcefire, its not a patch on Palo Alto, Checkpoint and Juniper. It is a very good IPS however.
Granted yes I do think CISCO need to up there game in the security field, the latest ASAs are a strange compromise.
I dont normally get warnings about malware or phising sites if I do I wouldnt ignore them and wouldn't continue onto the site in question unless I was just being nosy and was sure I wouldn't be infected myself. I often get warnings about self signed SSL certs or mismatched SSL certs and I consider each one. If I am logging into the admin console of a customer device I know that its nothing to worry about generally as I trust the management network involved and know the certs are supposed to be self signed. Again when browsing the web if for example my bank site or facebook presented an SSL certificate error I'd run away! Its not the fact I'm ignoring the warning, I'm considering should this site be using a self signed certificate? Do I need to login to do anything on the site? Are those login credentials likely to cause me a loss(bank or online purchases) or embarrassment(if someone gets my facebook login details and posts malware or spam as me). Sometimes the user knows best!
It depends on the context
I dont normally get warnings about malware or phising sites if I do I ignore them. I often get warnings about self signed SSL certs or mismatched SSL certs and I consider each one. If I am logging into the admin console of a customer device I know that its nothing to worry about generally as I trust the management network involved and know the certs are supposed to be self signed. Again when browsing the web if for example my bank site or facebook presented an SSL certificate error I'd run away! Its not the fact I'm ignoring the warning, I'm considering should this site be using a self signed certificate? Do I need to login to do anything on the site? Are those login credentials likely to cause me a loss(bank or online purchases) or embarrassment(if someone gets my facebook login details and posts malware or spam as me). Sometimes the user knows best!
Good luck trying to secure your traffic against US government snooping. US companies supply most network kit, most pc's are running windows and US companies run most of the trusted root certificate authorities.
The cloud is a good idea you just need to make sure you don't put all your eggs in one basket. Make sure you always have a datafeed to keep a local copy!
This is ofc assuming there isnt some sort of government/judicial order covering up data requests... I've not read the report but if a request for information had a secrecy clause then microsoft couldn't report it?
Surely the way forward is to put a tick box in everyone's profile saying "I do not wish to be part of expanded search?"
Ahh a step up?
So he's gone from selling shiny tat to apple fanboys to selling shiny tat to women? At least the women are more likely to be rational ;)
If I lived close to one of the <individuals> I would be happy to protest them when I had time. I'm sure if locals get together than can protest these people where they live, where the work and where they go for fun!
SSL/TLS is already being inspected. Most security proxies already have the technology. It wont even warn you that your traffic is being inspected if someone has installed a root certificate on your machine. Never assume SSL/TLS isnt being inspected if you dont own the device or have allowed the network/service provider to install stuff.