Re: "The universe is made up of about 23 per cent dark matter and 72 per cent dark energy"
Warning, may contain nuts
3335 posts • joined 19 May 2010
You can implement any version of OS as a guest, on say a Linux base build, take an image regularly, only operate the PC using the guest OS, such that any issues means that you can immediately restore good known image.
Any zero day, or unpatched exploit should be less of an issue as you just restore the good known image. So any old OS can be supported indefinitely, running the proprietary software.
The problem may be that whilst you can emulate software in a virtual environment, it is not so easy to emulate custom hardware in a VM. This is not the case for all of NHS's problems by any means, but may be a reason for sticking with real hardware in some cases.
And if the breach is down to having to use weak encryption because the Government wants to snoop on everybody all the time?
An interesting point, but the fact is the majority of the data breaches that have happened are not down to encryption failures, they are down to easily preventable exploits like SQL injection, which should have been a solved problem years ago.
European Union ministers have approved new rules for video that will oblige Facebook, Google, Twitter and others to remove hate speech and sexually explicit videos online or face stiff fines.
Because of course, American companies, in America, are going to care about what some bunch of other countries want to do. How do the EU propose to enforce these fines?
I'm not sure if it was BT or O2, who I recently had the pleasure of listening to for an hour.
But what drove me mad was that despite the hold music being a pleasant piece of Chopin, I think, every time the "your call is important to us, please hold" message came on, it restarted the music from the beginning.
How bloody annoying that is!
The bottom line is I had a much needed Doctors appointment cancelled last week. And part of me feels like I should feel sorry for them and take part in the public anger against hackers. But another part of me feels annoyed I lost that appointment because someone didn't know how to do back-ups.
I think you are making an unwarranted assumption. The actual number of systems affected by the ransomware was quite small, and most were simply shut down as a precaution, and to limit the spread of the infection, which was absolutely the right thing to do at the time.
This was obviously a difficult decision, but in balancing the ability to honour appointments for a day against the likely impact of a ransomware infection, the answer is clear. There is no indication that GP surgeries do not have sufficient valid backups available.
Using DISM to remove payload files and update rollbacks is all very well, but it still doesn't address the issue that any Roles and Features install themselves to the C: drive as well by default. Consider IIS, it puts both the web root, and all the log files, on the C: drive. Yes, you can change it, but why would it do that in the first place?
And speaking of log files, although you might get away with a Standard install of Server 2012 or 2016 in 32GB, after about 6 months use you would be lucky if it still fits within that restriction, given all the logging, crash dumps, etc that happens as a normal part of the operation of the server, unless you set up a ruthless cull of all logs at regular intervals.
We have spent the week fundamentally changing the way we manage our office networks, in order that we have some protection against Cryptolocker, WannaCry and other ransomware attacks.
Should we have done this before? YES
Could we have done this before? NO.
It's only due to the widespread publicity garnered by the WannaCry attack that our Directors and PHBs have been stung into releasing the necessary funding to allow us to do it.
Luckily, we've long had a plan ready to implement.
So our backups are now on a separate LAN, with no direct routing, and no SMB connectivity.
We've also restricted SMB between individual hosts on the LAN, and moved all non-essential hosts (directors' phones, laptops, tablets etc), to a separate WiFi network, with no access to the corporate LAN.
It makes life harder to do certain things, but it does mean that even if the boss's secretary clicks on an attachment, or a link in an email, we are probably going to survive it.
I'm feeling a lot more comfortable at the end of this week, than I was at the start of it.
The MPS has had a guard on the Ecuadorian Embassy door for some time and racked up considerable cost to the British Taxpayer. We did this because there was an arrest warrant for Assange (TM).
No, we did this because he had committed a crime in the UK, of failing to answer his bail conditions.
Now that they have just dropped the case, we are left with the bill. Shouldn't the Swedes pay the cost of this?
No, Assange should pay it, he's still wanted for the charge of failing to answer his bail.
I'm not in favour of him being given a one-way ticket to the land of the free!.
However, he has never offered to pay back those loyal supporters who mistakenly stood bail for him, and he's never paid the money he promised to Chelsea Manning, and he seems to think he is above the law.
I am therefore quite in favour of him having to face the consequences of his actions in jumping bail.
@ Voland's right hand
You misunderstood the passage you quoted:
Where bail is granted by the police and the defendant fails to surrender, the police may charge him as long as the charge is laid within six months of him failing to surrender, or three months of him surrendering to custody, being arrested or being brought before the court for the offence for which he is bailed, whichever is sooner - ss. 6(11) - (14) of the Bail Act 1976.
He was charged with it almost immediately, so there is no statute of limitations.
Also, whilst quoting, you conveniently forgot this bit:
Where a defendant has been bailed by the court and fails to surrender, the court may try him for that offence at any point after he has been brought before the court for that offence, irrespective of the length of time since he failed to surrender - s. 6(10) of the Bail Act 1976.
just take one step back to CD. You'll get fantastic quality audio, no skipping or crackling,
Hmm, beg to differ. CDs are not immune from the dreaded skipping.
This may be a consequence of having young offspring who apparently see CDs as an occasional side plate for their food, or a coaster for their fruit juice, in addition to their data and audio holding properties...
While playing elaborate pranks on the scammers may be fun, you are wasting your own time as well as theirs -- and your time is probably much more valuable, to you at least.
This is not the proper BOFH spirit!
NOTHING is more important than having fun taking the piss out of these scammers.
(Oh, except preparing a roll of carpet, a bag of lime and a large block of cement for the next luser who dares to raise a support ticket)
I fail to understand not just why, but how, there are so many windows machines with SMB open to the internet.
If some home user puts a server on their broadband, then that doesn't automatically open that port, you would have to consciously add port-forwarding rules for it.
Conversely, I find it difficult to believe that any business would attach a server to the internet without some form of firewall controlling access, and again there must have been a conscious decision to allow SMB out of the network.
This is not something that happens by mistake, nor is it default behaviour, so what the hell are people thinking who configure stuff like this?
A very difficult task, and one which bears no resemblance to classic ATC.
You can't restrict delivery drones to a certain air corridor, or altitude, when they may need to access ground level at almost any geographical location.
This is why I don't see the commercial benefit of using flying delivery drones over ground based options, it smacks to me simply as "because we can" or "because it's cool".
Ultimately one man and a van still seems to me to be the optimum method for most deliveries.
Cue Amber Rudd demanding that Bitcoint be "shut down" or that we put "a backdoor in the hashblock".
Oh, it gets better than that...
UK Home Secretary Amber Rudd tells BBC she expects NHS trusts to learn from cyber-attack and upgrade IT systems
Maybe she should talk to Jeremy Hunt about why he stopped paying for extended support from Microsoft in 2015, and why he vetoed any upgrade strategy from XP?
this is not a ¨cyber attack¨, this is somebody with admin privileges clicking on something they should not have done.
Curious then that it has affected so many dispersed bits of the country. I think you'll find that the evidence so far is that this is collateral damage from an attack on Telefonica (who just happen to manage network links for some of the NHS).
Whatever big contract is awarded and then reported on this website, everyone slams the provider for being crap.
Well yes. This is because all of the big providers, who inevitably get the contracts awarded to them, have a long history of failing to deliver what they are contracted to do - in some cases, failing to produce anything tangible at all.
And yet despite this, the government persist in awarding more contracts - often for the same requirements, to the same providers.
For example in healthcare, this could keep GP load and A&E load lower, which will help the NHS greatly.
You can tell that this is written by someone with no knowledge of healthcare. Human Doctors and medical professionals regularly mis-diagnose patients, due to confusing / overlapping or non-typical signs and symptoms, how do you suppose an AI would fare?
And can you imagine the outcry, and ambulance chasing (literally) if an AI's misdiagnosis led to someone's death?
Biting the hand that feeds IT © 1998–2019