* Posts by Alister

2059 posts • joined 19 May 2010

Why do GUIs jump around like a demented terrier while starting up? Am I on my own?

Alister
Silver badge

Pet hate

The Google search page. If I start a new tab in Firefox, the search box in Google's home page doesn't take focus, so I start typing only to look up and see a blank search box.

18
0

NASA to fire 1Gbps laser 'Wi-Fi' ... into spaaaaace

Alister
Silver badge

The ISS Spins round the earth...

It's fine, NASA have taken this into consideration, and they are going to build a set of railway tracks all the way round the world at latitude 22o North, which the base station will run on.

4
0

Coppers 'persistently' breach data protection laws with police tech

Alister
Silver badge

Re: More accurately...

@PatientOne

You are out of date.

Perhaps you should check before posting.

From the BBC website:

"The flag above the Houses of Parliament flies at half mast following an attack on Westminster that left four dead and many injured,"

0
0

eBay dumps users into insecure authentication mechanism

Alister
Silver badge

Re: One laugh of a security measure

Hang on, your mother's maiden name was Budgie-Mangler?

We must be related...

2
0

This AI stuff is all talk! Bots invent their own language to natter away behind humans' backs

Alister
Silver badge

...and the agents were forced to use their “words” more concisely, leading to the development of a larger vocabulary.

Agent1: "Pub?"

Agent2: "Yep"

3
0

Microsoft cloud TITSUP: Skype, Outlook, Xbox, OneDrive, Hotmail down

Alister
Silver badge

Sorry, my fault...

Despite my objections, we migrated to Office365 from on-prem Exchange last week.

It's obvious that Microsoft's infrastructure just can't cope now, we broke it...

Sorry...

26
1

Norfolk County Council sent filing cabinet filled with kids' info to a second-hand shop

Alister
Silver badge

The Register has contacted Norfolk County Council for comment

You'll be lucky, the response from the Council is in the bottom of a locked filing cabinet in the basement of a secondhand shop in Great Yarmouth...

32
0

US military's latest toy set: Record-breaking laser death star, er, truck

Alister
Silver badge
Mushroom

Re: Easy to Destroy

Just shove a torpedo potato down that thermal exhaust port muffler

That's no Moon!

El Reg, we need a Star Wars Icon

2
0

Are you undermining your web security by checking on it with the wrong tools?

Alister
Silver badge

Re: So, uhm...

If you (or your team) have done this, I'd be really interested to know how you manage this process etc :)

We were put in the position that the client wanted a secure environment with WAF / IPS but was too cheap to pay for it.

So we built a lash up of nginx, naxsi, and fail2ban, with munin to provide some reporting and pretty graphs, as a proxy to our apache servers. HTTPS was decrypted, read, and re-encrypted using the proper certs and ciphers.

It worked surprisingly well, although I wouldn't say it was as effective or as maintainable as a commercial appliance product would have been.

0
0
Alister
Silver badge

Re: So, uhm...

The main problem? Simple: you have to know what the heck you're doing. You need a basic underlying understanding of the encryption process, how to monitor network connections (I've come across too many people who had no clue how to use tcpdump or netcat for example) and interpret the results.

And that seems a bit too much for more "modern" companies, time is also money after all, so they'd rather rely on out-of-the-box ready to use gizmo's like these. Without stopping to think about possible consequences.

I think you have to bear in mind that to achieve PCI-DSS compliance, it is often much easier to use a recognised appliance rather than roll your own monitoring at the server level, most QAs I've come across like to have pretty graphs every month, rather than have to wade through log analysis reports.

I remember being met by a stunned silence when one QA asked how we had implemented IDP for HTTPS traffic, and we told him how we did it with a roll-your-own setup on an Nginx box.

0
0
Alister
Silver badge

Looking at some of the big names shown in the report, it really is a sorry state of affairs.

Of the 12 appliances tested, only one, from Bluecoat achieves an A rating, and the majority of the others are C or F. The Microsoft one deserves an F--- if such were possible, as it only offers SSLv2 connections, but you expect better from Barracuda, Checkpoint et al.

I shouldn't be surprised though, as we recently had to remove ECDHE ciphers from some of our servers on an e-commerce site, as the WAF didn't support them, thus weakening the whole environment's security.

4
0

BT's Openreach to hire 1,500 engineers

Alister
Silver badge
WTF?

"And now we have more good news – we’re now able to hire to invest in our network."

So this seems to suggest that up until last week they weren't allowed to invest in their network, or recruit staff?

It appears to be a bit strange, to me...

3
0

More Brits' IDs stolen than ever before

Alister
Silver badge
FAIL

Re: Where?

@dm_dv

Oh dear...

0
0
Alister
Silver badge

But remember, millenials, "nothing to hide, nothing to fear", so you keep posting your personal details all over social media, and using the same password for your bank account, 'cos security is just people being paranoid.

25
0

US regulator looks at Internet of Things regulation, looks away

Alister
Silver badge

Re: @ Alister

@ Codejunky,

Solving a problem when there is a problem is better than stopping progress.

There already is a problem with IoT, it just seems not to have reached the threshold where "OMG we'd better do something!", by which time it will be too late.

Trying to retroactively impose regulation when manufacturers are already doing their own thing is not going to work, the framework to regulate the industry needs to be in place early on.

5
1
Alister
Silver badge
Facepalm

The US Federal Trade Commission is holding off regulating the Internet of Things industry until there is an event which “harms consumers right now”, according to its acting head.

Because it's always better to run round like headless chickens after the event, instead of planning how to deal with it before it happens...

16
0

Brit ISP TalkTalk blocks control tool TeamViewer

Alister
Silver badge

Re: genuine question

Home editions of Windows don't contain the RDP server, only the client, so you can't connect to them from another machine.

2
0
Alister
Silver badge

Re: Well thats my family screwed

Native RDP doesn't work through NAT firewalls without port-forwarding, but the main reason is you that the Home versions of Windows don't contain the RDP Server, only the client, so whilst you can connect from them, you can't connect too them.

3
0
Alister
Silver badge
Coat

Re: Would have helped but

That's a bit extreme... TeamViewer isn't worth moving house for...

17
0

The future of Not Reality is a strap-on that talks to my smarting ring

Alister
Silver badge
Thumb Up

Thank you for your ring piece,

Mr Dabbs...

Good article.

Why, what did you think I meant?

6
0

Trump, Brexit, and Cambridge Analytica – not quite the dystopia you're looking for

Alister
Silver badge

Re: In the original Foundation trilogy

Except if I remember correctly, Psychohistory only worked when applied to large numbers of people, and only on those who weren't aware of it?

4
0

Iconic Land Rover Defender may make a comeback by 2019

Alister
Silver badge

Re: Why did people like the defender?

Well, it certainly wasn't the reliability. They break down all the time.

This is just not true, earlier Defenders (and Series Land Rovers ) will go for years without breaking down. The problem is with the more recent electronic bits, but the general mechanicals will go for ever with a bit of maintenance occasionally.

8
0

Mars orbiter FLOORS IT to avoid hitting MOON

Alister
Silver badge
Thumb Up

Re: "If I remember correctly, the orbits of Phobos and Deimos are quite eccentric, "

@John Smith 19

Ah, I see what you mean now.

0
0
Alister
Silver badge

Re: strictly speaking

Hmmm, maybe eccentric is the wrong word, if you take it to mean how circular it is.

My understanding however, is that however circular their orbit, the moons' track across the planet (is it called the orbit footprint) can change in quite a random fashion, dependant on their interaction with each other?

1
0
Alister
Silver badge

Re: strictly speaking

Perhaps time to do some mapping of Mars' moons to refine the models a bit more?

If I remember correctly, the orbits of Phobos and Deimos are quite eccentric, and the tidal forces between the two moons and Mars mean that predicting the exact orbital path for the moons over time is non-trivial.

16
1

Watt the f... Dim smart meters caught simply making up readings

Alister
Silver badge

Not just in the US

Smart meter billing problems have also been documented in the US.

And in the UK:

http://www.bbc.co.uk/news/uk-39169313

From the BBC story...

A spokesperson for the department for business, energy and industrial strategy, said: "Smart meters are a vital upgrade to Britain's energy system."

"The technology will bring an end to estimated billing, and give consumers real-time information about their energy use to enable them to make more efficient energy choices."

Hahahahahahahahahahahahaha!

17
0

RAF pilot awaits sentence for digicam-induced airliner dive

Alister
Silver badge

Voyager ZZ333 was returned to RAF service after exhaustive tests, including X-rays of the captain’s stick assembly and assessments of cosmic radiation measurements

With apologies to PTerry, but I saw that and thought of:

"Special offer this aeon is various measurements of paracosmic significance built into the very fabric at no extra cost"

7
0

If we must have an IoT bog roll holder, can we at least make it secure?

Alister
Silver badge
Coat

Re: IOT Bog Roll holder?

Anyone who would market an IoT bog roll holder is three sheets to the wind...

5
0

US military drone goes AWOL, ends up crashing into tree 623 miles away

Alister
Silver badge

Re: Stryker?

Nah, it's better than that, it's Ed Stryker, from S.H.A.D.O

2
0

Palmtop nostalgia is tinny music to my elephantine ears

Alister
Silver badge

So Dabbsy, are you Living on the Ceiling this week?

9
0

BONG! Lasers crack Big Ben frequency riddle BONG! No idea what to do with this info BONG!

Alister
Silver badge
Headmaster

Re: huzzah!

I'm sorry but I didn't half chuckle at the fact you said "teaching lord jobs how to say words" and then spelt archives wrong...

Oh, and are werthers ordinals some obscure mathematical unit?

14
0

Blighty floods with techies' tears as Capita boss Parker quits

Alister
Silver badge
Thumb Up

Re: such a diverse range of businesses

Thumbs up for Bubblegum Rhinos / Stringpersons

8
0

We found a hidden backdoor in Chinese Internet of Things devices – researchers

Alister
Silver badge

I'm not sure I would classify VoIP GSM Gateways as an IoT device, really, it's more a network device like a router or switch.

28
1

Dark net webmail provider Sigaint still in the, er, dark

Alister
Silver badge

Canary time...

If it's suddenly disappeared, suspect foul play.

2
0

Amazon's AWS S3 cloud storage evaporates: Top websites, Docker stung

Alister
Silver badge

Re: @Lusty

@Lusty,

You put:

The lack of any legitimate data would flag it up as a security risk. Using Telnet without encryption to connect to a TLS service is a dead givaway that it's not legit since Telnet doesn't set up the TLS before the connection.

And just how do you imagine a TLS session starts? If you are using telnet to prove or disprove connectivity exists to a host, then the initial connection attempt is all you need, and that is the same for any tcp connection, whether it be a TLS negotiation or any other protocol.

I agree with you about ping, most secured environments block ICMP traffic nowadays, however, it and traceroute are still useful for investigating latency and routing so long as you temporarily enable it on the endpoint.

4
0
Alister
Silver badge

@Lusty

I think you just blew any credibility you had to comment on networking subjects.

6
0

Two million recordings of families imperiled by cloud-connected toys' crappy MongoDB

Alister
Silver badge

People learn far more from their mistakes than successes. Sure fire the IT dept, but can bet your boots those guys/girls won't make the same mistake twice.

Except in this case, they obviously have, not once, but multiple times. Their databases have been deleted on several occasions, and replaced with warning messages, and they have had to restore the databases each time, and yet apparently, at no stage did they wonder why this was happening, or investigate ways to stop it.

9
0

NSA snoops told: Get your checkbooks and pens ready for a cyber-weapon shopping spree

Alister
Silver badge

Too Late?

Part of that is, no doubt, down to increased levels of security vetting involved. After all, they don't want another Snowden in the ranks.

Much too late:

https://www.theregister.co.uk/2017/02/08/us_grand_jury_indicts_harold_martin_nsa/

"Zachary Myers, an assistant US attorney with the District of Maryland, told a court last year Martin had 50TB of potentially secret and top-secret data at his home."

Also a Booz Allen Hamilton contractor, strangely...

2
0

BOFH: Elf of Safety? Orc of Admin. Pleased to meet you

Alister
Silver badge

Re: Reminds me

...the noise level in some server rooms...

...is NOTHING, compared to the noise from the "low environmental impact" turbofan hand dryer in the Gents'

This!

I swear, I think our hand dryer is designed to work by sonic waves, and doesn't actually have a fan in it.

8
0
Alister
Silver badge

Hah, brilliant!

Was not expecting that ending at all, loved it!

27
0

I was authorized to trash my employer's network, sysadmin tells court

Alister
Silver badge

Missing the point

An awful lot of commentards seem to be missing the point of this story.

Thomas has never disputed that what he did was wrong, and would be grounds for a civil lawsuit from his ex employer, however, he was very specifically charged with a criminal act under the following:

"intentionally causing damage without authorization , to a protected computer."

His argument is that he should not have been charged under that statute, as he was authorised to access the computer(s) in question.

As a shaky analogy, If I cause a road accident by throwing a concrete block off a bridge, and then got charged for "driving without due care and attention" I would be within my rights to appeal, as I wasn't driving at the time.

8
0

Ad men hope blocking has stalled as sites guilt users into switching off

Alister
Silver badge

How many swallows do you need for a summer?

African or European?

20
0

Paper factory fired its sysadmin. He returned via VPN and caused $1m in damage. Now jailed

Alister
Silver badge
Facepalm

"This case is a powerful reminder of the very real threat and danger that businesses and individuals face from cyberattacks and other cyber-related criminal activity," said United States Attorney Walt Green on Thursday.

Or...

This case is a powerful reminder to businesses to take rudimentary security precautions when terminating staff, like removing their access to your networks, for instance.

112
0

A webcam is not so much a leering eye as the barrel of a gun

Alister
Silver badge

Re: When squirrels were squirrels and men were men

While the alleged trojan may be able to enable the camera in device manager, putting tape in front of the lens doesn't remove that ability ;)

No, it doesn't, but here's a clue: It stops the camera seeing anything!

In an earlier post, you put:

Using tape is surely a great mechanical way to solve the problem. But it isn't necessary with a basic understanding of how computers work.

I would counter that anyone with more than a basic understanding of how computers work, knows that software lies and therefore hardware (a piece of tape) is the most conclusive solution.

12
0

Magic Leap sued for sex discrimination … by woman it hired to stamp out sex discrimination

Alister
Silver badge

he began to dig his heels in even more in the face of dissenting ideas and to explode ever more frequently into child-like fits of rage, threatening retribution when he didn't get his way, felt betrayed or was portrayed publicly in an unfavorable light."

I know someone else like that.

5
1

Vinyl, filofaxes – why not us too, pleads Nokia

Alister
Silver badge

Selling Point

For me, the one thing that made Nokia my phone of choice in the Nineties / Noughties was the quality of the GUI, not the pixel value or anything like that, but just the intuitive way the menus and settings were laid out, requiring minimum key-presses to get to what you needed and back again.

It was obvious that an awful lot of time had been spent by the UI designers in making it as easy to use as possible.

Any modern Nokia will I suppose, be stuck with the crappy Android UI, but it would be a great thing if a Nokia skin could be developed which followed their old traditions.

4
0

Kings College London bods recruit members for penis ring study

Alister
Silver badge
Paris Hilton

Limiting the sample size...

"Couples who have been in a relationship for more than six months and who have intercourse at least twice a week".

That should narrow things down a bit...

21
0

Roses are red, violets are blue, HMRC confirms Verify can STFU

Alister
Silver badge

can I not just sing in

Two verses of "T'was on the good ship Venus"?

6
0

NASA bakes Venus-proof electronics

Alister
Silver badge

Re: Geek note

It has more than 250 polymorphs!

ObRedDwarf: "That's a lot of curries!"

6
0

Grumpy Trump trumped, now he's got the hump: Muslim ban beaten back by appeals court

Alister
Silver badge

"However, the Senate Judiciary Subcommittee on Immigration and the National Interest used publicly available information and identified at least 17 individuals from these seven nations that from March 2014 to June 2016 were implicated in terrorism.

Wow, 17 whole people from 7 different nations.

How about this then:

http://researchbriefings.files.parliament.uk/documents/CBP-7613/CBP-7613.pdf

In Great Britain, between 11 September 2001 and 31 December 2015, 656 individuals were prosecuted for terrorist offences, 542 of whom were convicted.

That's a mean of roughly 38 a year, from one country.

So maybe the UK should be added to the immigration ban as well?

10
0

Forums

Biting the hand that feeds IT © 1998–2017