My guess on why they are having a hard time tracking Snowden in the audits... All the system admins were doing similar profile sharing/switching just to get the system to work. It's really easy to track an anomaly traverse a system, but when when the anomalous behavior is standard procedure they may never be able to figure out exactly what happened.
289 posts • joined 2 Mar 2011
Re: access to documents by unix/linux credentials only?
>One place I was at wouldn't let you email the fully dotted quad of a non-routable ip address but were fine with you emailing a MAC address.
I bet you'd blow their mind if you told them you could convert a IP to decimal format.
Crafty people always have a way of getting around dumb policies.
>SuperSpeed+, what is next, ultimate speed and then ultimax?
>An Observation: Why is it that the "poor" nations seem to be around the equator?
Advancements in agriculture are a large part of it.
Re: Kuwait Is Not Sinking, but Houston, Tx is
I'd like to know what company this is that has a %100 record of nothing going wrong on a well site? Maybe you mean 99.9% safety record which still be around 1500 incidents a year in the U.S. The incident rate of contamination is very low, but at lest in the U.S. there is a large lobby that pays senators to lie and say it doesn't happen.
I'm not sure what you're on, but we can model the weather rather well, the more input data we model we put in, the more reliable our output is. A large tornado outbreak was forecasted in the midwestern U.S. and it happened. You're confusing an exact simulation of what weather on one particular day in one particular place will be, or what one particular stock will be at one particular time because both are an irreducible calculations.
The stock market can be modeled somewhat. The issue is people use the models to predict and profit from the market, which changes the market conditions.
Reproduction of such models have nothing to do with specific or general learning systems. Predicting non-linear dynamic chaotic systems is impossible and can only be 'determined' in probabilities of outcome.
Re: Nothing was learned
This is about the stupidest shit I've heard today.
Next you're going to tell me aManfromMARS is the voice of The Register. Or, you can accept the fact that like any site that doesn't pre-moderate comments, people can say anything they want. Some people will learn, other people won't give a fuck and post anything they want anonymously. Some of it will get removed quickly, other times it's widely viewed.
Sunil was likely dead way before the bombings in Boston, he's been missing for months. Not dick shit to do with anything later posted on the internet.
What's really funny is you post as AC, in the world you seem to desire that wouldn't be allowed.
New way to troll anti-virus companies.
I've got a new idea.
Write tens of thousands of viruses that contain chunks of windows system files from every version of Windows you can find. Cause more damage then the virus ever would have.
Re: Place your bets
I'm not sure in this case, I have seen cases where just paying for the license up front is the cheap way to do it... but it is not always the case. Sometimes a vendor just won't, or cannot provide what you want.
I have a friend who had worked in the oil industry for years. One of the biggest complaints he heard from his customers was how poor the tract management software was for making earnings statements to customers. He asked the company providing the software how much they'd have to pay to get the features they want. Answer: Not going to happen, ever, for any price.
He and two other programmers got together and wrote a web based app that does what the customers want. They built it modular, because it's still a work in progress, if customers want new features they are easy to add. They built it with a consistent internal API, so it can interface with other datasources easily in the future. They use agile development methods, development happens quickly and new feature to rollout times are short. And the program isn't Windows only anymore (on the customers side), it will run in any modern web browser.
I think these big firms doing government contracts are doomed to fail on the projects for a few reason too. Too much complexity, trying to tie in to different legacy systems with varying levels of support. Too large of development teams of substandard coders. Too long of release cycles, features people need now get added in with more complicated features that need longer test cycles, which end up being delayed because of bugs, which end up also testing with other code from other teams trying to get stuff done, which ends up causing other bugs, ad infinitum. By the time the code makes it to the user requirements have changed or additional systems need tied in starting the failure chain all over again.
Re: Armoured plane?
Because they are trying to observe the storm, not kill it.
The schools in America are turning out too few students willing to work tech jobs for minimum wage.
Re: Isn't the Xbox360 pretty much always online
No. I have a friend with no internet service at their location at all. They are able to play non-online games just fine.
Re: XP users should say 'thanks' to the penguins
>Win Me was not a disaster at all
I'll assume 3 things.
1. You did not use WinME.
2. You did not support WinME.
3. Your memory has faltered.
I have never seen an operating system corrupt files, randomly blue screen, or oddly fail in so many ways as ME.
Larger isn't better.
The vast majority of the computers I work on have somewhere below 150GB of data. Seemingly there aren't a huge number of people out there making TB's of video and media. On top of that, the people with desktops are keeping them much longer. A 5 year old desktop is still pretty fast.
Re: Paying to keep it running.
I agree that Hybrid systems will bring the power/price down much faster, if the performance numbers on the FirePro SM10000 hold up. 1.4T of DP math... uuhh, that's crazy. The Nvidia K20 isn't a slacker either. Since supercomputers by their nature are parallel, GPUs will inherently speed them up.
Yes, it was an amplification attack. The attacker sends a small packet, bytes generally, the server replies with a larger packet. 512 bytes with the old behavior and much larger packets with the large udp packet behavior. Any request that sends back more data then send to the wrong host can be described as an amplification attack. It's the magnitude of the DNS response that makes it so effective.
You are right on BIND, the correct response is not to return large amounts of data if you don't have the answer.
>Yes, there were issues at the start, but they seem to a lot better now, I happily spent a couple of hours on it last night, and another 30 minutes this morning.
A lot better? I don't own the game since I do not buy from the devil (EA), but watching the Sims Channel on Twitch.tv I see a lot of 15-20 minute wait times for a server spot. And also unsurprising is the number of "We're having errors loading this region' after that. The whole thing is a slap in the face of the fans of the series.
>So, they're either not very well tested and engineered patches, or patches for incredibly simple problems
Most security flaws are simple problems, implementation errors that can lead to serious problems (off by 1 error).
A few patches need to be well engineered because of a design flaw that cannot be fixed trivially (ActiveX).
Firefox will push a serious release to stable within a day, if whatever f'ed up distribution takes a month that's not their fault. Go back to being abused by Microsoft and Oracles terrible patching schedules and stop trolling here.
Re: And this shit
Software methods are much more difficult to patent and far easier to implement via other methods. If patents are overly broad you get Amazons trying to patent web shopping carts in any form. When you run a product on someone elses service/product you are at their whims. Look up the history of Microsoft and Excel.
Re: scrap domain names altogether
>I'm not sure why we ever needed domain names.
>Telephones don't have a similar concept to domain names
I'd say that's incorrect. Call a large company, listen to the options menu press 1. 1 is likely a 'tele-dns*'
lookup to a ring-group, which looks up individual extensions to ring. The PBX doesn't share that information with the public telephone company at large.
*tele-dns is some crap I've made up that represents the data lookup the system does. In large systems this can get quite complex.
> Mormons are more agreeable than fans of Timmy from South Park.
That's because they want to draw you in close. Next thing you know you're locked in a basement of some cult in Utah with 10 other families with 6 wives each. Be wary of those who smile too big.
What ever you do, don't give the customers what they want.
We will instead.
The Pirate Bay.
Re: Shocked, shocked I tell you!
How to sum up the entire article
TL;DR Business as usual.
"The database is a joint project of the Bill & Melinda Gates Foundation, which provided most of the funding, the Carnegie Corporation of New York and school officials from several states. Amplify Education, a division of Rupert Murdoch's News Corp, built the infrastructure over the past 18 months. When it was ready, the Gates Foundation turned the database over to a newly created nonprofit, inBloom Inc, which will run it."
Re: The bill sounds good
Microsoft (via Bill G) wants to corner the market themselves.
Not the last IPv6 problem we will see.
IPv6 is going to go thru all the growing pains IPv4 did so many years ago. Now most IPv4 kit has been rolled up in libraries and modules for so long that the developers have forgot all the magic that's been done to keep it from exploding in users faces.
Re: Christian Berger
>If "just clicking on things" causes your computer to become compromised, it's not the fault of the user
Most modern browsers don't, not even IE. Most of the 'just click on things" these days are fake A/V warnings meant to trick the dull (some of them are pretty good). How is a browser suppose to stop someone from purposely downloading a file and running it (but the prompt said I had a virus and I needed to run this to remover it!)?
A/V is still mostly useless because the malware writers make lots of copies of their crap and release the ones that pass A/V detection that day, then release a new batch every day after that. A/V is a losing game.
Buyer B now can a)buy it.
a.1) maybe depending on where they live, with widely ranging prices
a.2) maybe depending on their operating system, player, method of connectivity
a.3) be prompted to install all kinds of weird shit to make it work.
a.4) still have it not work, or have it downgraded to low-def
a.5) not be able to play it on 2 different devices because of strange producer whims.
a.6) have the manufacture stop supporting whatever odd DRM after some amount of time
d) Steal it for one price
d.1) anywhere in the world
d.2) use it on any operating system, player, or method of connectivity they transcode it to
d.3) use their standard player of choice
d.4) have it just work
d.5) play it on 2 different devices
d.6) never have to worry about DRM.
Some people are always going to violate copyright on media, not much you can do about that. The rest of them want a cheap, easy, and fair way of getting your product. Itunes with all its bullshit DRM has shown that if you make it easy, people will buy. People are creatures of laziness, going out and pirating stuff is just hard enough that easy to use services like Netflix make it not worthwhile. Successful producers are going to have to realize the 20th century is gone, in the 21st century the world is globally connected. Putting up little 'content' walls is laughable.
For me the situation is simple: Adapt or die.
Re: The customer defines value
Historical quite attributed to Andrew Orlowski-Antoinette: "Let them eat digital cake."
""Intellectual property is a monopoly" is a child's logic." Meaning that even a child can recognize it, whats the saying? From the mouth of babies.
If this is the least-badderest way we can come up with then the whole system is screwed because it ignores human nature.
1. People want stuff to work,
2. they want it cheap,
3. they want it now.
What has the copyright cartel delivered them.
1. DRM - Sorry, that expensive player doesn't work right because, HDCP, Region flags, some other bug, etc.
2. Digital download, only $5 MORE then buying the disk! Whadda Bargain!
3. Regional Availability - Please wait till next year you kangaroo eating fucks.
Hey, let them keep their head in the sand making shitty products, worked well for American car manufactures in the 70's.
EA has missed a opportunity to profit.
"Error cannot connect; standard servers are busy." "If you would like instant service please purchase the premium server package for £25 now."
They just aren't milking their cows hard enough.
"VUPEN Security's crack on IE 10 running on Surface Pro was an eye-opener," Gorenc said. "The vulnerability was so elegant it didn't even crash the browser. They launched the process from outside the sandbox so the user wouldn't even know if they had been hacked."
Since this is the Pro version and not the RT, this pretty much means that Windows 8 is hackable (possibly 7 if you upgraded to IE 10)
Re: Hardly news
Nitrates in large amounts aren't good for a person. Of course some of these people at a diet of 50% meat (crazy) which puts them at risks from ...
>More so when processed.
In historical terms, less so when processed. Pig is a very risky item to eat when you don't have proper cooking and cleaning available. Trichinosis is bad stuff.
Nitrates and high levels of sodium are not healthy, but I'm sure that counts for any product that has them.
Re: Martin Budden
It's very rare that someone 'just' becomes a vegetarian.
Most likely you also had other significant life changes at the time. Increased exercise being one of the most common changes. Also changes in diet tend to happen in a recovery stage of depression that the person was not aware of. Lastly it also depends on how terrible of diet a person had before, if they were eating 5 pounds of beef and no fibre, then yea the difference will be significant. If the person was eating a relatively balanced diet, then it is unlikely they can tell any difference unless they have a medical condition.
Other Java Issues.
Off on a tanget to the article, but
The Java installer sucks (yes we already knew that with the Ask toolbar)
Resets Java update settings. Set java to download before installing and set it to daily. Install new update. It's now reset to monthly and warn before downloading.
I've had to reinstall J7v17 twice on many systems as it doesn't install the browser plug-in to IE or Firefox correctly. These days I'd consider this a benefit other then the computers really needed it for apps to work.
The manufactures bios choices and hardware drivers can make a significant difference at boot up, I swear some of it has lines like this
#Wait 5 seconds on firmware load to make sure crappy hardware interface has actually loaded
init_wireless_device_firmware ( wait 5);
Also, add Windows Pro to a domain server and you'll find on the average AD setup the majority of your boot time ends up waiting on the network.
Re: Too small
If you are looking for huge amounts of storage, this is not the drive you are looking for, you want a 4TB drive.
If you are looking for super fast access, you are looking for an SSD.
If you are looking a trade off between both, this is the drive you are looking for.
I've used the XTs in notebooks and so far I've been impressed. I do wish the large desktop drives came with 16GB of flash, that fits my common 'working set' of data better. For the vast majority of office workers the 8GB does just fine. I've put a number of XTs in Core2 type laptops that have plenty of CPU and ram, but the manufactures disk that shipped with it was dog crap, and it makes all the difference in the world. The end users stop looking at buying new laptops because now the machine is more then 'fast enough' for their daily tasks.
Re: Elmer Phud
My mom has worked for the county jail for close to 20 years now, the stories about mistakes in the paper shuffle would blow your mind.
Once recent case involved a guy my sister went to school with. He committed an armed robbery in Austin, was arrested in Dallas, but was shipped to the county of his residence which my mom happens to work at. Dallas county didn't send the felony arrest paperwork with him, he just just had a traffic warrant at the county here. The officer in charge was getting the court paperwork ready for the traffic ticket (in which he would have likely been bonded out the same day) when my mom recognized him and looked at the paperwork and noticed the serious problem. She quickly got the original warrant from the NCIS and reclassified him as a high risk inmate. Had it been her day off, or she was on vacation, the guy would have walked (which he was a flight risk because of an attempt to flee to Mexico).
Events like this are pretty common. : (
HP laptops normally come with the crappiest HDDs ever. The IO performance is unbelievably bad.
That said, I ordered a 17" HP a while back and it came with one of the XT's with 8GB of flash, it outperformed any non-SSD hard drive I've had in a notebook before. The clients loved the upgrade in speed, and the huge amount of space.
Re: I have momentus XTs
I've used a number of the XTs with 8GB Flash and they are much faster with Windows 7. In notebooks the difference seems (and feels) pretty large. XTs are great for single use clients. Multi-client/Server installs are looking for a different solution.
Re: In the UK in the 1960s 2/3 of adults smoked. Today it is 1/3. This applies that idea to alcohol.
>Ban advertising of alcohol
You might take it out of the mags, papers, and bus stops, but what about the internet? You think that facebook accounts telling you about $ewer_brew of the week won't try to fill the vacuum?
Also, if you raise the cost of alcohol above the cost to make it illegally you create a black market, then you have to factor in the law enforcement costs of said black market. The enforcement costs are significant, possibly more then the tax income you raise.
Re: Advertising - Internet age
How are they going to 'ban' internet advertizing? None on sites with a .co.uk? What counts as an ad? My blog where I talk about the newest swill released on the market? If they can't stop the ads or 'false' ads on the internet expect the billion dollar ad industry to go on the internet in one way or the other.
Re: Die, Java. Die.
In Firefox 19 at least it had notified me that 7r15 was vulnerable even before I read it online. Quick moving on the Mozilla team.
Re: Non-admin accounts, Software Restriction Policies, etc etc etc etc
Non-admin accounts are a good start, but can still be an issue if the 'virus' is persistent and updates from a server. The next local privilege exploit can then be used to fully own the machine.
Software restriction has worked great for me in larger businesses with AD and well defined use policies, but outside of that in the small business arena and standalone computer market it doesn't really exist in an easy to manage fashion.
Re: Title is too long
>when they start to inconvenience someone important the rules can be thrown out of the window.
We need to publish lists of these someone importants on the internet so sustained attacks can be commissioned against just them until the time that they figure out not being a twat when it comes to policy is necessary.
"I want the secret of the Coca-Cola company not to be kept in a tiny file of 1KB, which can be exfiltrated easily by an APT," Shamir said. "I want that file to be 1TB, which can not be exfiltrated. I want many other ideas to be exploited to prevent an APT from operating efficiently.
MIcrosoft made this years ago by allowing you to embed flash in a .doc file.
Re: RE: Or more simply, why does being small mean you have to be cheap?
I had a client pulling that same thing with a 100MBps switch, so I brought in a loaner GB switch for a day. They ordered a new switch the same day.
Re: easy failure - designed to fail.
Designed to fail, because it's a single point of failure. I bet about everything else with the system is redundant.
The entire cert system needs to be ran off 2 different CA's, the entire system can run off one, but has a total fit about it (leading a person to correct the problem). Oh, and make sure the CA's expriy dates are significantly different.
Failure at point of no redundancy.
Redundant Hardware: Check.
Redundant Network: Check.
Redundant DNS: Check.
Redundant Services: Check.
Single point of failure at certificate services: Check, wait not FAIL, crap ARRAHHH.
Design tip for next time, find a way for your services to use two different set of certificates from two different providers. Make sure the expiry dates differ. Have stuff warn, but not fail if there is a problem with one.
I'd like my consulting fee now.
Re: Hopelesslly deluded...
Ugh, it's because the word cloud is used in places it shouldn't be.
It's not the WAN, it's the VM. Cloud isn't about the end user, it's all internet to them. It's about the server room. Cloud is not co-location, it's closer to no-location. Go back 10 years, ask your co-location service to have 150 servers up and running for you in 2 hours and then take them down 10 hours later. I think the words they would use is 'FAT FUCKING CHANCE' as they hung up. I see cloud as the abstraction of the server room. Apps have always had some abstraction when they used DNS to contact a server, now because of VMs I can push that same server to US, EU, or Asia in almost no time, depending on what I needed to serve. And then, I can take it all back down quickly.
Reality is, since running on VMs has become almost universal, that clouds will be here to stay.