* Posts by Peter 26

173 posts • joined 10 Nov 2010

Page:

Crap gift card security helps crims spend your birthday pressie cash

Peter 26

PIN on the back

This makes no mention of the security feature that is on every gift card I have ever seen, the PIN on the back which you have to scratch to reveal.

You shouldn't be able to check the balance or purchase anything online without that PIN. Which means their attack would only work in physical stores, which with the amount of CCTV and loss prevention teams would be a bad idea, especially if you have to guess the last 3-4 digits(1 check digit).

You should never accept a card with that PIN already scratched off as it means someone could go online and use the credit. Someone could grab a load of blank cards from the counter, take them home, read the cards and scratch the PIN off, then go back and put them in the store and just wait for them to be loaded up.

Staff are supposed to be trained to check the cards haven't had the PIN scratched off before loading them up.

2
0

Nest leaves competition in the dust with new smart camera

Peter 26

Re: Ermmmm

Most criminals are stupid.

http://www.theblaze.com/news/2013/01/02/the-surveillance-camera-footage-of-burglars-breaking-and-entering-into-an-n-c-home-is-surprisingly-fascinating/

If you wanted to stop internet based cameras you could cut the BT line entering the house and the virgin cable. But if they knew there was cameras they probably wouldn't bother...

Plus hopefully it will upload as it records.

6
0

El Reg straps on the Huawei Watch 2

Peter 26
Thumb Down

Android Wear is shockingly bad

I can't believe Google produced this piece of garbage that is Android Wear. It's like they decided on a bunch of features at a committee and then just shoved them all in without any thought.

You summed it up perfectly with swipe left and swipe right lets you change the watch face???? How could anyone ever think that was a good idea and actually get out to a live release?

The best solution for a smart watch seems to be buying one from a company that has gone bust, Pebble. They actually put some thought into how people might use it. That's a sad state of affairs for smart watches.

My only hope at the moment is that Apple will show Google how it's done like they did with the iPhone. I feel like I'm browsing the web on a Symbian S60 when I'm using Android Wear. It has all the features, but just isn't a fun experience, it's just easier to get your phone out.

5
0

Google offers devs fat bribes, hopes to lure them to its Home

Peter 26

Doesn't work for Google Apps users

If you want the techie community to use it, how about making it work for Google Apps (now G Suite) accounts? I'm not going to create completely new google accounts and lose access to my apps features just to use home..

0
1

Cryptocurrency miner found armed with same exploits as WannaCrypt

Peter 26

They can update their malware now to install the hotfix thanks to Microsoft releasing it instead of disabling file sharing. :)

3
0

IBM: Remote working is great! ... For everyone except us

Peter 26

Re: Is it just me, or is this "retro" trend appearing in workplaces ?

There is always resistance to progress. I think it's a sign of a poor CEO, they blame everything on home workers as it wasn't how they succeeded. Where really it's up to them to empower workers giving them meaningful targets to ensure they provide the most for the company and themselves. But that's too much hard work, easier to just say I want bums on seats.

19
0

UK to block Kodi pirates in real-time: Saturday kick-off

Peter 26

Re: Short term 'fix'

A lot of the streams are via AceStream which is really just a torrent which downloads in order as much as possible so you can watch it "live" (about 30 seconds delay). Displayed usually via VLC using the network stream option.

The other ones are HTML5 or flash which just show in the browser. (With a million adverts on top) I think most of the Kodi plugins use this method.

From what I have read you need a special plugin for AceStream which is not compatible with all hardware on top of the already special plugins you need to watch the illegal content via Kodi.

There is two things that can be blocked, the web page or server which lists the streams. (A good place to start), or the actual streaming servers for the flash content.

Either of those should have a significant impact on the low lying fruit, the people who just bought a box with no idea how it works. Nothing is going to stop the VPN.

0
0

Cybercriminals getting as good as nation state spies – report

Peter 26

Ransomware

But does this take into account the increase in ransomware which must be lowering the time to realise you have been attacked as it announces itself to you as part of its strategy? Also doesn't ransomware predominantly attack Western Europe?

1
0

Brit ISP TalkTalk blocks control tool TeamViewer

Peter 26

Re: @Leah

I think that explains exactly why it's not there yet. if you just want to use it for a one off with an IT illiterate user that's a lot of hassle, it'd probably be easier to talk them through fixing the issue than connecting in to do it yourself.

With Teamviewer they have made the download button simple to find on their main screen, you can run it without installing it from the download, then it just gives you a number in your face you can ask the user for.

1
0

Wearables aren't dead but apps on wearables might be

Peter 26

Re: 2nd Display

Yeah you're not the only one wanting a simple extra display with NFC capabilites for tap to pay. But apparently they know better than us what we want...

1
0

Alleged $17.5m fraudster accused of duping HPE out of 42,000 servers

Peter 26

$30K?

I don't see why they went to this effort for $30K profit. Was it to try to make the company look legitimate to get investors? Maybe the con was to get investors money?

2
0

Android Wear: The bloatware that turned into gloatware

Peter 26

Re: Bloat v Usability

Thanks, I will check it out.

0
0
Peter 26

Bloat v Usability

I started with Pebble v1.0 when it first came out and moved to Huwaei Watch when Pebble went bust.

The pebble was ugly but really useful for quickly reading a small message and deciding whether to get your phone out. Really good when speaking to someone or in a meeting, a quick look mid conversation without being rude.

Android wear is absolutely appalling. It is designed to show off, not be usable day to day.

With the pebble you received a message on your phone, the message immediately appeared on your watch to read, you had one button to press which scrolled down to read more, or the other button to cancel it. Most of the time I didn't even need to press a button, just twist my wrist and read what the notification was and make a mental note whether I could ignore it or not.

With android wear your receive a message on your phone, your watch shows a small semi circle on the bottom that I have to swipe up, then I have to select the notification I want to read, then if I want to read more than 4 words of text I need to click on this which then does different things depending on the app. Sometimes you have to swipe left then up, other times just up. TBH I still haven't figured it out, I just fumble around trying to read the message, then just give up and get my phones out.

How hard can you make it to read a bloody message!

I'm going to give Android Wear 2.0 a go, but I am seriously considering selling it and buying a nicer pebble and hope it works long enough for someone to make a decent watch and software.

The problem is I would really like the NFC with the new watches and integration with Android Pay, especially seeing as my house door opens with NFC, so I could use it for that...

1
0

GCHQ cyber-chief slams security outfits peddling 'medieval witchcraft'

Peter 26

This needs to be run by the private sector, not GCHQ. Why has this not happened? Why have they had to implement their own systems?

0
6

Devs reverse-engineer 16,000 Android apps, find secrets and keys to AWS accounts

Peter 26
Pirate

Isn't this self policed?

There are bots crawling github looking for AWS keys, one simple mistake with a commit and you'll have bitcoin miners running within minutes racking up your fees.

I would imagine the same people would have done the same with the play store, or are they missing a trick?

2
0

French spies warn politicians of hack risk as election draws near

Peter 26

They don't like it up em!

Previously it was just the Western powers who could influence a small country's elections. But now with a bit of hacking it has opened it up to everyone.

It's really interesting watching the world change due to the Internet. I think back to when it was only us geeks using it, so much has changed in such a short period of time.

5
0

OpenStreetView? You are no longer hostage to Google's car-driven vision

Peter 26

Great for Runners

OSM is great for finding public foot paths and bridleways which aren't on Google Maps.

Very handy when planning a running route.

9
0

Standards body warned SMS 2FA is insecure and nobody listened

Peter 26

Re: SMS messages ... may be ... redirected,

Maybe they mean with the method of getting the network operator to transfer your number to a new sim as mentioned in the article. You don't need much info to get that done.

1
0

Lib Dems to oppose porn checks in Blighty's Digital Economy Bill

Peter 26

Re: The problem with this country

My neighbours in the fire service, will he now be able to see my search history? So what if I want to watch some adult content, I should be able to do that with privacy?

I'm considering setting up a permanent VPN from my internet connection. I'll probably set it up on a UK based server for speed and for the 2% reason you mentioned. I don't have anything to hide, but no need to make it easy to browse my history and block content at will. I want the control back...

8
0

More movie and TV binge-streaming sites join UK banned list

This post has been deleted by a moderator

Cyanogen mods self away from full Android alternative

Peter 26

They screwed over OnePlus now no other company would risk working with them

They set a precedent when they screwed over OnePlus and left them hanging with no OS. They made themselves a very hard sell to other phone companies.

What's even worse is if they had carried on with OnePlus it would have been a fantastic example of a success story with their OS. Other phone manufactures would have wished to replicate the success of OnePlus.

They shot themselves in the foot.

20
0

Premier League Sky card crims ordered to cough up nearly £1m

Peter 26

Re: very confused

Yes I am confused too.

I only know of two types of card, consumer and pub. The pub ones showing the beer glass logo at the bottom of the screen. If they were buying consumer cards and selling to businesses then it would be obvious that something is up. Perhaps there is different levels of business\pub sky card price based on the size of the pub. They purchased cheaper somehow then sold them on? Or maybe did multi screen as many pubs have lots of screens?

Fill in the detail for us Gareth!

0
0

Source code unleashed for junk-blasting Internet of Things botnet

Peter 26

"By happy coincidence I received my new V****n router on Saturday. I was surprised to see that the username and password was available in five places"

It is pretty shitty physical security. But the vast majority of people are computer illiterate and are never going to change the password anyway. If we have to sacrifice physical security to stop the far more plausible threat of attacks via the Internet, then I think it's a good compromise.

12
0

Brit telcos plead with Ofcom: No one should own more than 30% of available spectrum

Peter 26

Re: Simple solution

Although I agree in principal. Who do you trust to provide the infrastructure without ending up with a BT open reach situation?

1
0

D-Link DWR-932 B owner? Trash it, says security bug-hunter

Peter 26

Re: really taking the piss

I completely agree. Until we outlaw this incompetence it will carry on. At minimum no hardcoded credentials or other backdoors should be allowed in consumer devices. That should be a fine.

4
0

UK copyright troll weeps, starts 20-week stretch in the cooler for beating up Uber driver

Peter 26

Sounds like a complete prick

Love the judges last line "Get used to life being different."

120
0

Spoof an Ethernet adapter on USB, and you can sniff credentials from locked laptops

Peter 26

Inconspicuous dongle

On a side note. I don't get the point of these dongles looking like USB Ethernet Adaptors. If the idea is to leave the dongle connected to a LAN for remote access then it needs to plugged in permanently. You're not going to leave the laptop there permanently are you? So it ends up plugged into a power socket USB charger, looking really suspicious having a network cable going towards the power sockets. I guess you could plug it into a desktop if they have any, but again slightly suspicious to an IT person. Wouldn't it be better to make it look like a POE adaptor, even act like one?

0
4

'Hey, Elon? You broke it, you bought it' says owner of SpaceX's satellite cinder

Peter 26

Re: Insurance covered the launch

You'd like to think considering the amount of money, that scenario would have been covered.

3
0

Stop lights, sunsets, junctions are tough work for Google's robo-cars

Peter 26

Re: Roundabouts...

In reply to myself I think the solution is to just change the infrastructure. Add wireless signals to lights, put intelligent traffic lights on all roundabouts.

It will cost a lot, but I don't think it is too much. At first we will start with the hybrid car that self drives most of the time, but still needs our input from time to time. Everyone will get tired of this and start pushing the government to upgrade the lights and roundabouts to handle the new cars so that they can finally become autonomous.

I'd image the major cities would implement this first allowing the the fully autonomous taxi's etc.

6
10
Peter 26

Roundabouts...

The bit that got me was the 4 way junction without lights that really confused it, where drivers have to decide with other drivers who goes first. Sounds just like a roundabout in the UK which we have everywhere...

8
0

BT customers hit by broadband outage ... again

Peter 26

Re: It's about money!

Yes this is the truth, why doesn't it just route round the issue but take a bit longer? Certain sites just don't work at all.

2
0

Hack the Pentagon shutters 100 bugs

Peter 26

Nice recruiting method

This was a really good plan to find US citizens with security skills to recruit. Probably a lot cheaper and more effective than the usual recruitment methods.

1
0

TeamViewer beefs up account security after rash of PC, Mac hijacks

Peter 26

Will these extras have much effect?

The criminals have gone to this much effort, I'm sure they can afford a VPN in the targets country so the locale matches. They would be doing that anyway to hide their IP, all it means is they have to pick the right VPN in their list...

Secondly the notifications that someone has logged in from a new device. Well these attacks are happening at 5am in the morning when everyone has their phone on silent...

5
0

Smartwatches: I hate to say ‘I told you so’. But I told you so.

Peter 26

Still useful, just not as much as they thought

They are aiming too high, hopefully things will calm down when the novelty wears off. We just want a simple display and buttons so we can read notifications and tell the time. Advanced features would be a gyro (for maps), touch screen (for zooming maps) and heart rate monitor.

We need a chip that does it pretty much all and let the watch manufacturers build the actual watches, maybe they can make something pretty and the price will be more reasonable.

4
0

Microsoft won't back down from Windows 10 nagware 'trick'

Peter 26

Re: My opinion on this?

Wow that sites a blast from the past.

Shield's Up!

29
0

Google to kill passwords on Android, replace 'em with 'trust scores'

Peter 26

The end of passwords?

Before you all go mad, just remember, if you're bothered I am sure there will be a way to use higher security.

I don't really see how this gets rid of passwords though? Surely it is just a better lock screen.

I think it's a good idea, currently I have my phone unlocked longer than I really should security wise. I have Google Authenticator on it and Android Pay which I really wouldn't want anyone using for nefarious reasons. So it's slightly better than no security.

6
13

Hacked in a public space? Thanks, HTTPS

Peter 26

Someone needs to create a program to tell you which certificates are normal default Windows and which ones have been added in and by who if possible.

0
0

Non-police orgs merrily accessed PNC without authority, says HMIC

Peter 26

Re: Three body problem

This is the main issue! Somebody needs to be in charge and take the blame for failures.

What will be the result of all these failures? Who will be fined? Who will be fired? Nobody...

So they might as well just carry on with the current practice...

11
0

EU vetoes O2 and Three merger: Hutchison mulls legal challenge

Peter 26

Re: Dam

Not any more they aren't, check out the latest prices they hiked in case they had to freeze them for five years...

1
0
Peter 26

If Three had tried the merger before the BT-T-Mobile merger, would they have been allowed?

I don't think either merger should have been allowed. BT is heading towards a monopoly in every area, Internet, TV and now mobile phones. They seem to be unstoppable.

5
0

Google, Honeywell put away Nest patent knives

Peter 26

Re: Allow me to point out something...

I live in a 3 bed semi with new windows, full 12" loft insulation, 100mm external insulated walls.

Your house doesn't get much more insulated than ours. I have done my calculations on real figures and the Nest paid for itself in a year.

I didn't buy it for cost savings, I just thought it looked pretty and I liked being able to control it with my phone. I very rarely use it via my phone as my house is well insulated and stays a consistent temperature. The dial only gets touched when one of us is ill and feeling the cold. But the auto-away feature is what saves the money.

You may hate Nest, but the fact is that smart thermostats work. The ability for it to automatically turn off the heating when you are not in the house and you forget to turn it off before you leave will save energy and money for nearly every household.

In general I'm pretty lazy when it comes to saving energy, but if it is more efficient and pays for itself, then it's a no brainer.

The only argument I have against them is the theoretical spying capabilities it adds to your house. But then with the amount of other internet connected devices I have at home with microphones and cameras, it is just one more addition to worry about.

0
0

Hacking Team hole still unpatched, exploit pop doc claims

Peter 26

What's the embedded device?

OK get your guesses in, what was the embedded device?

0
0

BT hauled into Old Bailey after engineer's 7-metre fall broke both his ankles

Peter 26

Re: More than reported here?

I'm not saying it's right, but that's the law. It's there for a reason though, to make sure that employers actually do enforce health and safety and therefore increase safety. If they do enforce it and the employee still doesn't do as told then I think BT will be in the clear.

I'd imagine the reason this case will take 3 weeks is because they will be trying to prove they were enforcing it and this was one rogue employee, whereas the employee will be trying to say that wasn't the case which will require other people giving evidence etc.

8
0
Peter 26

Re: More than reported here?

Standard Health and Safety in that situation is that you should have a Harness & Lanyard when working at height. I can't imagine a company the size of BT would have broke the law and skipped training on this. So maybe they it was common practice for engineers to skip this on roofs and BT never enforced it, therefore they would be at blame...

12
0

Windows 7's grip on the enterprise desktop is loosening

Peter 26

Does everyone need Windows at work?

We assumed that Windows would be kept for enterprise in the future, but when I look around my office, I only see about half the office that actually need real PC's. The other half simply need email, a browser, Word, Excel and PowerPoint. They could definitely go down the web OS route.

All the stupid complicated or legacy internal systems we use have been put on Citrix or RemoteApp as it is less effort for IT than trying to get them work on everyone's individual laptop.

I know of some solicitors that simple use their laptops to login to a remote desktop so that everything is kept secure in a remote location.

Maybe the future market for Windows is even smaller than we first thought.

19
0

You can't dust-proof a PC with kitchen-grade plastic food wrap

Peter 26

Positive Air Pressure

I dust proofed my tower years ago as I got annoyed with my GFX card being covered in dust and slowing down. You just need positive air pressure to stop the dust getting in through all the gaps, push more clean air into the tower than can get out easily. (Remember the breaking bad episode with the fly and Walter creates positive air pressure in the cooking room to make it into a clean room?)

The fan blowing air in should have a filter in front of it. I got mine on eBuyer I think for a couple of quid. Of course you need to clean the filter every so often, at home that's once a year, at a building site it'd probably be more frequent. A quick vacuum from the outside does the job, you could even tell the cleaner to do it, it's pretty fool proof.

10
0

Teen tricks leaky Valve into publishing hot new Steam game: Watching Paint Dry

Peter 26

Clever

I like that he linked two different areas to get the desired effect of a session id linked to a different user. He obviously had a lot of fun thinking, how far can I take this? Watching paint dry game... genius.

5
0

Review sites commit to address UK regulator's concerns

Peter 26

Re: Checkatrade

You don't pay checkatrade, the businesses advertised there do. These businesses are checkatrade's customers and they won't do anything that would stop them paying them.

Just go look at roofers, the dodgiest business there is, yet the majority on checkatrade has a 99.7% approval rating?

3
0

Page:

Forums

Biting the hand that feeds IT © 1998–2017