* Posts by TReko

232 posts • joined 25 Feb 2011

Page:

Just updated Windows 7? Can't access network shares? It isn't just you

TReko

Re: Who cares?

If you have a 32 bit Windows system, you cannot upgrade it to Windows 64 bit. You need to do a clean install.

This stops a lot of 32 to 64 bit upgrade paths.

Uncle Sam fingers two Chinese men for hacking tech, aerospace, defense biz on behalf of Beijing

TReko
FAIL

MSPs are cheap for a reason

Well, if you outsource your IT needs to the lowest bidder, which is often overseas, you get what you pay for.

Microsoft: Come and play in our Windows SandBox

TReko

Sandboxie

Sandboxie has been around for around a decade, giving you a decent, but non-VM sandbox in Windows.

https://www.sandboxie.com/

German cybersecurity chief: Anyone have any evidence of Huawei naughtiness?

TReko

Re: Maybe banned because there are no back-doors

The UK government actually runs something called the "Huawei Cyber Security Evaluation Centre".

They've looked through all the source code and so far have found no back-doors, only bugs.

You can even read Her Majesty's Government reports on it:

https://www.gov.uk/government/uploads/system/uploads/attachment_data/file/525761/huawei_cyber_security_evaluation_centre_oversight_board_2nd_annual_report_2016.pdf

It's December of 2018 and, to hell with it, just patch your stuff

TReko

Spectre and Meltdown

Interesting that there are no specific mentions of Spectre and Meltdown in the wild yet.

Oz telcos' club asks: Why the hell do Australia Post, rando councils, or Taxi Services Commission want comms metadata?

TReko
Big Brother

Re: Scope creep??

The Australian Big Brother is huge, though. Agencies make around 300,000 requests for metadata per year, or 1000 per business day.

This means that they are using it on about 1% of their population.

Microsoft promises a fix for Windows 10 zip file woes. In November

TReko

Re: "file indexing service works brilliantly in 2008R2"

Everything is superb, but it only searches file names. It indexes the MFT (Master File Table) in NTFS. It does not index file contents.

Facebook, Google sued for 'secretly' slurping people's whereabouts – while Feds lap it up

TReko

Re: Good

Thanks for the Blokada link!

Oh no, Xi didn't! Chinese spymaster cuffed in Belgium, yoinked to US on aerospace snoop rap

TReko

Re: Expect more

Indeed. Given the Chinese got the entire personell records of almost everyone who works for the US government through the OPM hack a few years back, they know who to target and what their weaknesses are.

The OPM hack can the potential to be one of the most damaging in history.

PC makers: Intel CPU shortages are here to stay ... for six months

TReko

Silicon bugs not fixed yet

Odd that people aren't delaying chip upgrades until Intel includes a full Spectre/Meltdown fix.

Google Cloud boss promises 'security built into every layer of the system' at UK shindig

TReko

Re: Blah...

...which is why Google still does not support at-rest encryption of the data stored on its cloud. You'll need to add a third-party plugin like Syncdocs https://syncdocs.com to encrypt your files on Google Drive.

How Google plan on restricting access to certain regions is unknown. Will they do it via an IP geolocation database, or via the Google user's self-reported country?

Decoding the Chinese Super Micro super spy-chip super-scandal: What do we know – and who is telling the truth?

TReko
Happy

Fun and games

you left of some juicy details from the Bloomberg article:

"In 2009 the company announced a development partnership with In-Q-Tel Inc., the CIA’s investment arm, a deal that paved the way for Elemental servers to be used in national security missions across the U.S. government.

Two of Elemental’s biggest early clients were the Mormon church, which used the technology to beam sermons to congregations around the world, and the adult film industry, which did not."

TReko

Superb reporting and analysis, Register!

great technical and legal analysis. The parsing of Apple's and Amazons press statements is an education, too!

Apple forgot to lock Intel Management Engine in laptops, so get patching

TReko

Re: Apple's bug description

Apple doesn't manufacture their own laptops, they are made by sub-contractors in China and Taiwan (Foxconn, Flextronics and Qanta).

Given that Foxconn and Flextronics also make some Dells and HP laptops the problem might be more widespread.

Microsoft: OK, we have no phones, but look how much we love Android

TReko

Re: Re-use; buy; build

SideSync is from Samsung, who have many innovative, but poorly marketed innovations.

If Apple released something like SideSync, they will have a huge announcement, a big conference and many trained PR people and tame journo's regurgitating how it will "change the world".

What do Zuck, Sergey, @Jack and Bezos have in common? They don't want encryption broken

TReko

Its too late

Not disclosing your password in Australia will cost you $60,000 or 5 years jail

A web where the user has complete control of their data? Sounds Solid, Tim Berners-Lee

TReko
Thumb Up

Windows

Indeed, your paid for copy of Windows 10 will spy on you just as intrusively as the free version. Good luck trying to turn it off, too, when every update turns it all back on again and throws in a free 300M version of Candy Crush.

New Zealand border cops warn travelers that without handing over electronic passwords 'You shall not pass!'

TReko
WTF?

Australia has more draconian laws

Aussie customs (called "Border Force") have similar laws. But the fine is bigger and they can detain you until you divulge the password, confiscate the phone and laptop.

If you do unlock it they can copy all the data on the laptop, phone and associated cloud accounts.

You'll never guess what you can do once you steal a laptop, reflash the BIOS, and reboot it

TReko

You gotta be fast

DRAM will also fade out, so you have to act fast, how fast depends on temperature - note the coolant spray used in the video.

Modern Windows apps also should store passwords etc in secure storage provided by the OS, which is encrypted.

Windows 10 also compresses the RAM pages, which I guess was disabled to make this attack easier.

Python joins movement to dump 'offensive' master, slave terms

TReko

As usual, George Carlin said it best:

https://youtu.be/vuEQixrBKCc

It's September 2018, and Windows VMs can pwn their host servers by launching an evil app

TReko
Happy

Re: round up the usual suspects

or a new version of Candy Crush included in the update.

It is always a gamble for us if the update fixes more than it breaks.

Everyone screams patch ASAP – but it takes most organizations a month to update their networks

TReko

Re: Patchy McPatchface

MS just performs minimal testing on their patches these days before releasing them into the wild and seeing what breaks.

Google Project Zero boss: Blockchain won’t solve your security woes – but partying just might

TReko

Re: 'People in the middle snoop'

Snooping is Google's business, they need to know about you to sell targeted ads. More unsettling is their recent move into censoring content. The old "don't be evil motto" is ironic now.

Google's cuddling up to China with clouds in its eyes – reports

TReko

Re: So essentially...

It's important to remember that Google Drive and Docs data is not encrypted at rest, only on the wire via TLS/SSL. You'll need a tool like Syncdocs to encrypt it at rest, although not sure if encryption is legal in China.

Cache of the Titans: Let's take a closer look at Google's own two-factor security keys

TReko

Re: Ah, the tyranny of choice ...

I'm not sure why the Yubikey can't be turned into a smartphone app that communicates to your PC via bluetooth. A "soft" yubikey would add to the market take-up of this technology. In the meantime I use Syncdocs to do full end-to-end encryption of Google Drive, as I don't want to put un-encrypted files on the cloud.

Y'know... Publishing tech specs may be fair use, says appeals court

TReko

Re: Um...Yeah

The same is true in Australia. Many building codes and electrical standards which are mandated by law cost around $4000 a year.

Intel, Microsoft, Adobe release a swarm of bug fixes to ruin your week

TReko

Intel fixes

Any link to the performance hit of the Intel fixes?

Sadly, I'm a patching coward an prefer to let others be the guinea pig first.

IBM wins five-year whole-of-government deal with Australia

TReko
Go

Bureaucrat who made the decision to work for IBM next year

that's the way the revolving door works in Australia - throw a supplier a contract, resign and go work for them next year as a reward.

Thunderbird gets its EFAIL patch

TReko

Good to see it's still in development

We use it as a mail client and find it hard to beat.

When Google's robots give your business the death sentence – who you gonna call?

TReko

Re: Google 'support'

We have found the same, even with a higher level service agreement. Any queries get automated replies, or a human cutting and pasting a reply based on keywords in our query. It is very hard to find an educated human to talk to at Google, which I think is by design. Humans cost money.

Still Google's Office suite is what we must use, but we make a continuous local backup using Syncdocs which has saved our bacon a few times when we had problems.

The Notch contagion is spreading slower than phone experts thought

TReko

Re: Charge by wire

Wireless charging has a second drawback - it is inefficient, and the coils in the phone produce a decent amount of heat. Heat which reduces battery life.

Although, with user-replaceable batteries being a thing of the past, I guess Apple and Samsung make more money when the user has to upgrade their phone because of a cooked battery?

Relive your misspent, 8-bit youth on the BBC's reopened Micro archive

TReko

Tim Hartnell

now there's a name that rings a bell. Pity he's no more.

WPA3 is the magic number? Protocol refresh promises tighter Wi-Fi security

TReko

There are still easier ways to hack routers than WPA

WPA3 will be harder to hack, but most routers run web interfaces and many of these are vulnerable to XSS vulnerabilities.

UK Foreign Office offers Assange a doctor if he leaves Ecuador embassy

TReko

Re: Many things but not a traitor to the US

The historian A.J.P. Taylor remarked, in his book English History 1914–1945, that "Technically, Joyce was hanged for making a false statement when applying for a passport, the usual penalty for which is a small fine."

Meet TLBleed: A crypto-key-leaking CPU attack that Intel reckons we shouldn't worry about

TReko
Facepalm

Re: Core issues

The big problem for Intel is the way Intel sells it's CPUs with hyper-threading enabled as "6 cores/12 threads", for example. The claim HT doubles the number of cores, something which can be partly true.

Disabling HT disables a huge marketing advantages for Intel. Expect the "not a problem" approach to continue, until exploits emerge in the wild.

Intel CEO Brian Krzanich quits biz after fling with coworker rumbled

TReko

Re: non-fraternization policy - Intel Insider

The Intel "inside" was Insider Trading - he sold a $24M of his Intel shares when he heard about Spectre, but before Intel made it public to stockholders.

Telstra reveals radical restructure plan

TReko

Offshoring

Perhaps Australian labour is too expensive. Telstra opened another new call center in Manilla in April, with an additional 3,500 workers.

Now Microsoft ports Windows 10, Linux to homegrown CPU design

TReko

Good description, Register

Well written explanation with background. Thank you

Aussie bloke wins right to sue Google over 'underworld' images

TReko

Re: But

Australian libel law is odd. It does not care if the allegation is true, rather whether it damaged the person's perceived character.

June 2018, and Windows Server can be pwned with a DNS request

TReko
FAIL

Does it fix more than it breaks?

Most recent MS patches have resulted in more work trying to get servers working again.

I reckon Microsoft has outsourced testing of its patches to their end-users.

Have to use SMB 1.0? Windows 10 April 2018 Update says NO

TReko
WTF?

Fix it, don't disable it

Why not just patch the vulnerability rather than disabling it?

I suspect Microsoft's engineers are just being lazy.

SMB1 is widely used by legacy NAS devices and most Android clients.

Monday: Intel touts 28-core desktop CPU. Tuesday: AMD turns Threadripper up to 32

TReko

Gimme speed

I don't want more cores on a workstation, I want fewer cores that I can clock higher.

Most tasks are hard to parallelise - Gimme a 10GHz CPU.

'Moore's Revenge' is upon us and will make the world weird

TReko

Does it need Bluetooth?

There is an excellent Australian comedy TV series of shorts about bluetooth added to arbitrary items.

https://www.youtube.com/watch?v=6mm-I6Jfbhs

nbn™ ponders a gamers' gate to throttle heavy wireless users

TReko
FAIL

Bandwidth vs latency

Morrow doesn't understand gamers don't use the bandwidth, video streaming does.

Gamers typically want low latency connections.

That the head of the nbn doesn't get this despite a $3.5 million a year salary is worrying.

Amazon can't or won't collect sales tax in Australia

TReko

Re: Nice headline

Neither are teddy bears. Koalas can bear more than a teddy though!

Spectre-protectors: If there's something strange in your CPU, who you gonna call?

TReko

Re: Cease and desist destroying English

Yes, that other great English mag, The Economist has seriously relaxed its grammar recently, too.

Still, that sentence is understandable, just hard to process.

NAB mainframe turns its TOESUP* after power outage, offline 7 hours

TReko

Re: Compensate their customers.... and who else?

All this makes you wonder about the government and bank pushing towards a "cashless society".

Cash is a great backup for when things go TITSUP

Big bimmer bummer: Bavaria's BMW buggies battered by bad bugs

TReko

Re: Crossing fingers

Many printers use QNX too.

TReko
WTF?

The same thing goes for plane

Boeing's 787 and Airbus were recently reported to have bugs where the avionics info was visible to the seat-back entertainment systems.

Why there is any physical link between these two systems worries me.

About to install the Windows 10 April 2018 Update? You might want to wait a little bit longer

TReko
Thumb Up

Re: PC Updated itself last night

Good review!

Page:

Biting the hand that feeds IT © 1998–2019