* Posts by Voland's right hand

5493 posts • joined 18 Aug 2011

Decoding the Google Titan, Titan, and Titan M – that last one is the Pixel 3's security chip

Voland's right hand
Silver badge

I beg to differ

also records the last known “safe Android version,” and blocks attackers from trying to downgrade a device to an older and less secure version.

Google opinion of last safe may not equate to mine and I may want to downgrade to deal with regressions or them outright crippling the device deliberately so it is no longer usable. An example here would be they way they broke the original Nexus 7 upgrading from Android 4.x to 5. They broke a perfectly viable (by those days standards) device and refused to admit to it for half a year.

The few survivors of that upgrade had to "assemble" a viable bootloader + OS load from the older images floating online. I remember spending half an afternoon extracting images pulling the bootloader out of them and flashing different combinations.

No thanks.

6
0

Space, the final Trump-tier: America to beam up $8bn for Space Force

Voland's right hand
Silver badge

Re: Interesting

Deploying space weapon systems in contravention of international treaty is when it becomes a problem.

FYI: Polyus was deployed. Just not successfully (someone forgot to account for it being hoisted on top of Energia bottom up). So it is indeed a very fine line which has been crossed a few times in the past.

0
1
Voland's right hand
Silver badge

Interesting

On one side, Russia has been calling their strategic missile forces "Space Force" for ages. In their case this is supposedly(*) just a name. So this move on the USA side is not entirely unexpected.

One another... If this announcement is not just marketing (as it is supposedly for now in the Russian case), this effectively takes out USA out of several treaties including the Outer Space treaty and moves the doomsday clock into seconds to midnight space.

(*)I am saying supposedly, because Russia and prior to that USSR has a long history of getting as far as prototypes for weapons which violate the Outer Space Treaty - Uragan, Polyus, etc

19
4

Encryption doesn't stop him or her or you... from working out what Thing 1 is up to

Voland's right hand
Silver badge

Interesting detail

Applause. Especially for using proper math (markov chain model) instead of the fashionable tea leaf future telling aka neural nets.

1
1

America's top maker of cop body cameras says facial-recog AI isn't safe

Voland's right hand
Silver badge

Re: Money talks

Wrong idea. The right idea is "Drop down your weapon. You have 30 seconds to comply".

Now assign it to do security for the [mps|congesscriiters|etc].

Optional: fix the cannot navigate stairs bug first.

6
2
Voland's right hand
Silver badge

Re: Wow!

When your family objects, you get litigated into homelessness.

That may be a factor here. They have themselves on public record that the tech should not be relied upon. So anyone who wants to sue them will most likely fail.

7
2

Click this link and you can get The Register banned in China

Voland's right hand
Silver badge

Re: Just to be helpful:

Re: Just to be helpful:

I don't get this - Xi looks nothing like Pooh - Disney or Shepherd version.

1970es Russian version. You can find it on YouTube. It also has several double+ meaning songs where the second meaning between the lines is political and lampooning the great communist leadership. It was a form of sport to get that past the censors in those days - many of their old movies have this.

That is what got pooh-bear banned. The Disney and later versions are just collateral damage.

5
1

Shock Land Rover Discovery: Sellers could meddle with connected cars if not unbound

Voland's right hand
Silver badge

Re: Same applies to other vendors...

online service history and other useful information and benefits associated with said vehicle

Hate to spoil the party, but that service history may inadvertently contain information which personally identifies the previous owner and should require their consent. Example - car fails to start, major fault towed from the driveway to the dealer (happened twice to my neighbour's son). I would be surprised if the traces of that in the service history have been fully scrubbed from all personally identifiable details as required by GDPR

Like it or not, the V5C transfer procedure is becoming woefully inadequate in the day and age of connected vehicles.

In fact, we are rapidly approaching a moment when the V5C is the last part in the sales. Un/Re-registering everything related to the data leaching and connectivity to the new owner will be going before that.

7
2

Politicians fume after Amazon's face-recog AI fingers dozens of them as suspected crooks

Voland's right hand
Silver badge

Applause

Can we have the same test applied to Cressida's toy in London as well.

32
1

From toothbrushes to coffee makers to computers: Europe fines Asus, Pioneer, Philips for rigging prices of kit

Voland's right hand
Silver badge

Re: They're still at it!

They are not alone either.

Try finding a Giant bicycle or any part of for anything differing even 1£/1Eu from the RRP online.

That still does not prevent people buying them and retailers selling them.

0
1

Intel Xeon workhorses boot evil maids out of the hotel: USB-based spying thwarted by fix

Voland's right hand
Silver badge

Re: Should be disabled in firmsware

Hot glue gun is your friend. Fast. Safe. Very good insulator. Does not dissolve or otherwise damage the board. While easy to "inject", very difficult to remove without triggering a chassis intrusion alert and/or removing the server.

Just walk down the isle and perform a "firmware fix" on all the suspects.

5
1

Sysadmin sank IBM mainframe by going one VM too deep

Voland's right hand
Silver badge

Oh indeed ! I could name you dozens of examples where I've been on the other end of the phone to Senior Professors

You obviously failed to read the orientation leaflet.

PhD student: Knows Everything

Associated Professor: Knows Everything in one narrow well defined area

Senior Professor: Knows where the Associated Professor(s) and PhD Student(s) are at any given time.

I have heard it from my dad (Senior Professor, Differential equations and Optimal Control).

2
1
Voland's right hand
Silver badge

Scientists, not as good at following instructions as you think -->

Based on 2 years of sysadminning in Uni and R&D facility in my youth - you are being overly polite. In fact, I would prefer to describe "Scientist following instructions" as the ultimate oxymoron.

20
1

No big deal... Kremlin hackers 'jumped air-gapped networks' to pwn US power utilities

Voland's right hand
Silver badge

Re: What are they waiting for

BBbbbbut sir...

What about all the k1dd13 college funds, pensions, retirement boats and timeshares in the Caribbean?

If the networks are properly secured and there is no more Red Bear threat there will be no jobs for the people who draft these announcements.

On a more serious note, this is more believable than the usual crap fed by the 3 letters to the press including the air-gapped story. While the networks are air-gapped at the utility, they quite often have remote out-of-band or private network access from the vendor which is supposed to be accessing it from an air gapped machine. Quite clearly they do not. That is believable (same as using vendors as a vector).

11
1

If Brussels wants Android forks, phone makers aren't helping

Voland's right hand
Silver badge

Re: Sony's Open Devices

Concur - I have used it twice on the earliest Xperias in the household which were run using Cyanogen once they became to old for their normal OS.

While I have not used it for the last 4-5 years, it is one of the primary reasons why it is the only manufacturer "authorized for purchase" in our household for nearly ten years.

3
1

I predict a riot: Amazon UK chief foresees 'civil unrest' for no-deal Brexit

Voland's right hand
Silver badge

Re: I was pro-remain, but this really is "Project Fear" at work.

Do not forget. It is Raab quoting it.

So what makes you think that it was not carefully isolated out of context and made to sound like Project Fear?

In fact, my bet would be on that.

31
3
Voland's right hand
Silver badge

The comment has been taken out of context

If I understand the quote correctly, the guy was very specific about this happening a few weeks after D-day if it all goes to shit and if customs collapse. Considering how much stuff is imported he may have a point.

In any case, while people are concentrating on this non-news item, everybody forgot about the real news item which is that Rees Mogg has been making 19% annual (predicted, so far 14% for the first 9 months) profit off companies moving to Ireland due to Brexit via his fund.

https://www.youinvest.co.uk/market-research/FUND:BD6PG56?tab=7&SecurityToken=F00000ZD81]99]1]FXALL$$ALL_1392&Id=F00000ZD81&ClientFund=1&CurrencyId=GBP&ms-redirect-path=/1c6qh1t6k9default.aspx

Corrupt? Moi? Surely not. Just the mother of all insider trading and pump and dump jobs. In fact, not even the mother, grandmother, grandgrandmother, but the whole line of progenitors all the way to the times of William the Conqueror.

He is not the only one. I had to do some unrelated trawling through the company registries in Bulgaria and Romania a few months back and I came across a lot of prominent BrExiteers and their investment vehicles investing like crazy into office real estate there.

I always find it hilarious British politicians complaining about corruption in Eastern Europe and ex-USSR. Sure, they are corrupt as hell. Sure some places are really mob state. However, none of them would even contemplate monetizing grand treason.

75
4

How much do you think Cisco's paying erstwhile Brit PM David Cameron?

Voland's right hand
Silver badge

Re: BFH

.apart from, you know, running a hugely incompetent Scottish referendum

You forgot initiating the North African Clusterfuck by deciding that killing an already defanged Caddaffi is a jolly good PR as well as pouring oil onto the fire of the Syrian Clusterfuck. These are debts which even our grandchildren will be repaying for years to come.

45
1

Microsoft: The Kremlin's hackers are already sniffing, probing around America's 2018 elections

Voland's right hand
Silver badge

Nope

Paper ballots have been counted and tallied electronically since the late 80-es.

They are actually LESS secure than a PROPERLY implemented electronic voting system.

Additionally, you simply cannot use paper ballots in USA any more. The direct democracy "additions" where it is trivial to add a "proposition" to the ballot in major states have killed them. When a voter is voting on 20+ things in ballot doing so on paper is a no-starter. There will be 30% or so spoiled ballots.

0
8
Voland's right hand
Silver badge

Re: "seized in as little as 24 to 48 hours"

Surely better to let them run and track what they are doing.

No you cannot. The server is outside our jurisdiction. So the only way to "see" is to arrest the domain and point it to server(s) you control.

13
1
Voland's right hand
Silver badge

Re: Kremlin's hackers

out assets once cover is blown

This is not so much a case of cover is blown, but a case of the method being known. We know that the roads parallel to the one to Redmond will be mined. If an unsuspecting victim by mistake gets on the wrong road they are done for.

We are yet to know (including names and faces) who mines the roads. We are yet (if ever) to do anything about them.

We also have no idea what else are they doing, the cat-n-mouse with Microsoft may be a distraction.

7
3

Engineers, coders – it's down to you to prevent AI being weaponised

Voland's right hand
Silver badge

Bollocks

and is for non-offensive uses only.

One word: Bollocks.

19
1

Microsoft Visual Studio Code replumbed for better Python taming

Voland's right hand
Silver badge

Where are the holy relics

raise ExorcismRequired("This is not the IDE you are looking for")

5
4

Cybercrooks slurp nearly $1m from Russian bank after pwning router at regional branch

Voland's right hand
Silver badge

Re: Russian Central Bank's Automated Workstation Client

By any change would this 'Automated Workstation Client' run on Microsoft Windows and was compromised by a malicious email attachment?

It is Automated. The most likely point of compromise was the data fed to it - any PC with appropriate access to the bank internal systems.

2
1

Fukushima reactors lend exotic nuclear finish to California's wines

Voland's right hand
Silver badge

Re: Grapes do not absorb much

Just cucumbers? Not melons, squash or gourds?

Cucumber peel specifically. Cucumber collects all sh*t from where it grows and deposits it in the peel. This was in the days when lead fuel was still in wide use so a couple of years later I decided to run some spectrometer tests on the peel. The results were let's say not pretty. I have been peeling cucumbers ever since (the core has little or no contamination).

16
1
Voland's right hand
Silver badge

Grapes do not absorb much

The interesting tests are cucumber peel and mushrooms.

My family has a couple of friends who pinched a Geiger counter post Chernobyl and measured everything they could get their hands on (which was going to end up on the table).

There were only two things which drove it off the scale. Cucumbers (specifically the peel) and forest mushrooms.

28
1

Elon Musk, his arch nemesis DeepMind swear off AI weapons

Voland's right hand
Silver badge

Re: Pertly off the subject....

And it comes down to scale and collateral - nukes and chemical and biological weapons are massive in their impact and will hoover up innocent people as well as combatants with no control or regard.

You would be surprised how few salvos from a Grad regiment can produce the same effect (as far as the civilian population is concerned). Viewing some footage from the Nagorny Karabah conflict may be rather educational under the circumstances (*). Nearly any artillery or bombardment weapon can be (and is) used indiscriminately.

I believe, too, that NATO mandate an attack with a bio/chem weapon on a member constitutes an attack by a WMD and can therefore be responded to with a nuclear strike.

That was adequate and appropriate when they were the sole domain on a nation state. Times have moved on. Building a chemical weapon (f.e. fentanyl aerosol bomb) or a biological weapon is now well within the capabilities of the larger mob groupings and corporations. Responding to these by nuking the country it is in is very dubious in terms of adequacy of the response. Anything else aside - mobs and corps can just move to another country so you have created an enemy for life without eliminating the real cause of the trouble.

(*)As a side effect of the locations of munitions storage in the USSR South both combatants in that conflict had a nearly indefinite supply of missiles for their Grads and deployed them indiscriminately creating zones of total destruction which are far larger than the Hiroshima and Nagasaki ones.

1
1
Voland's right hand
Silver badge

Re: Assume air of innocence ..

Why, just shove 'em to the guy using the desk on the other side of the isle who does not officially exist and is working on classified contracts.

2
1

British Airways' latest Total Inability To Support Upwardness of Planes* caused by Amadeus system outage

Voland's right hand
Silver badge

Re: Why???

Not for any other reason, but to ensure that the master functions correctly. Even if you run only a couple of flights per day through it that should be enough as a verifier.

It is the classic example of the three BIGGEST problems with a typical outsourcing deal - no verification, no backup and no ongoing quality control.

44
1

Oldest swinger in town, Slackware, notches up a quarter of a century

Voland's right hand
Silver badge

Re: 1994

like 27 install floppies. - that was the whole thing. Just the base was 6.

The SCO one from the same age was a 100. One floppy screwed up and that's it. In those days it was still an OS and not a bad one either, not a litigation shop.

11
2

PayPal's pal Venmo spaffs your pals' payments – and yours

Voland's right hand
Silver badge

Sharing is Caring

SHARE!!!

Including your (dirty) underwear.

5
1

People hate hot-desking. Google thinks they’ll love hot-Chromebooking

Voland's right hand
Silver badge

Re: Pointless?

Yes, he does. The issue is the user finding all of his stuff where he expects and using the machine straight away by just opening it and logging in. No Windows sysadmin is capable of delivering that experience because the OS does not provide for it.

22
34
Voland's right hand
Silver badge

Nothing new here

As any Unix sysadmin of old can tell you, in a correctly set up environment with $HOME on NFS, NIS/LDAP and $HOME and /usr/local/??? mapped via autofs any PC is 100% interchangeable. In the days when I ran sysadmin in a development shop we operated full grab-n-go on all Linux workstations. It took less than 3 minutes to swap one as there was nothing to do software-wise. It just worked. In fact, even that was unnecessary - people could just grab the hot-desk while their machine was being services. Windows however... you were looking at a couple of hours time for each swap.

So back to Chrome. If your data is on the network, if your authentication is from the network and you cannot swap a machine by simply logging in on a new one - you are doing it wrong. Google are demonstrating that they are doing it right. Sure, it is an achievement, but only people with windows background need to sing hallelujah. If you have run a properly setup Unix network it is a "Meh, nothing new".

30
17

Trump wants to work with Russia on infosec. Security experts: lol no

Voland's right hand
Silver badge

Re: Don't get sheep herded by the fake news media

That Putin changed the Russian constitution to allow him to have more than two terms of presidential office should tell you everything you need to know.

You sir are full of hot air (or methane). Go and read it before lying in writing in public. THEIR CONSTITUTION DAY ONE SAID TWO CONSECUTIVE TERMS. There was NEVER a limit on non-consecutive in it. There was NEVER a moment when it was changed for that. Text is the same when it was first voted.

This is exactly the difference between the games played in other ex-soviet republics and Russia. They all changed their constitutions to allow the dictators to rule. Putin simply gamed it by swapping with Medvedev for a term. As obviously rigged, appalling and ugly as it can be it is perfectly legit and fully obeys the letter of their constitution as it was written day one. So he actually never broke it.

Going back to your other conjecture about playing by the rules. He himself not just "plays by the rules", he has created a cult of "playing by the rules". It is something they brainwash kids with now. The biggest damage that can be done to him propaganda-wise is to show that he has broken his word or a rule under which he has signed with actual documental and evidential proof. The west fails this every time because our idiots are fecking incompetent to even follow what their propaganda machine is doing and what are the obvious weaknesses.

Though, he has actually shot himself in the foot now by losing 15% of his rating by doing exactly that - breaking a rule he set in his early days on the pension age. ONE "not by the rules" proven and with a record cost him 15%. That in itself is remarkable - if one of our idiots turncoats on one of their promises or signatures they will hardly lose a percent. He lost 15%!!! This tells you everything you need to know about the cult of the "abide by your word" he has cultivated.

Going back to Brezhnev, Gromyko, etc - they broke any rule they liked any time they liked. I can run you down a historical timeline, but their signatures were almost as valuable as a signature of an American president (not worth the toilet paper it is on).

3
2
Voland's right hand
Silver badge

Well, with all of NATO being either personal foes or parts of the "greatest Foe"

Well, when Canada is a personal enemy and European Union is the greatest foe, you have to look for "friends" somewhere.

37
2

It walks, it talks, it falls over a bit. Windows 10 is three years old

Voland's right hand
Silver badge

Re: "the Windows 7 hold-outs should finally feel able to make the upgrade"

time to step into the wonderful of world of Linux

That is exactly what I call upgrade. Since 1997.

53
36

Notes/Domino is alive! Second beta of version 10 is imminent

Voland's right hand
Silver badge

Where are my silver bullets

Where are the silver bullets for my gun and the ash stake. Someone has to finally put this thing out of its misery.

16
3

Clean up this hot sticky facial-recog mess for us, Microsoft begs politicos

Voland's right hand
Silver badge

Re: 'Clearer ethical principles' or Totally Disingenuous?

Typical large company. Left hand does not know what right hand is doing.

4
1

It's 2018 so, of course, climate.news is sold to climate change deniers

Voland's right hand
Silver badge

Re: "decried as 'fake news' because it's written by well known climate 'deniers'"

Maybe the authors ruined their reputation previously, but in the cited work they seem to just summarize reviewed scientific results.

Please read the whole abstract. It is quite clear towards the end that the claim in the article is that the predicted temperature data for sea temperature (a very common input variable into most global warming models) differs from observed. Not surprising. If it differed significantly, the hurricane patterns should have changed significantly and they have not. While we have had a few odd years, there is not enough changes to demonstrate something statistically significant.

As with every research on a very hot topic (remember the fake clonings?) there is some good research and some bottom feeders related to meteorological science. That's now valid for both sides as the amount of money thrown at "no global warming" by the likes of Cox brothers has become roughly comparable to what scientists get as financing for global warming research with a confirmation bias.

11
4

Farewell then, Slack: The grown-ups have arrived

Voland's right hand
Silver badge

Re: Its the integrations stoopid

Bingo - I was just going to write the same.

Teams is several YEARS behind slack as far as drop-in integration especially for development environments. Sure, MSFT comes with integrations of its own, but they are to different (and for developers the wrong) systems.

This is one area where MSFT acquisition of github needs to be watched. While on one hand GitTeams is an anathema and abomination onto nuggan it is also the only thing that can compete with Slack or Atlassian XMPP based vertical stack for that matter.

7
3

Ukraine claims it blocked VPNFilter attack at chemical plant

Voland's right hand
Silver badge

The VPNFilter nasty infects mostly consumer and the lowest tier of SME routers. Having that as routing equipment in an industrial plant shows a level of cluelessness which makes any other claims highly doubtful.

7
6

No, seriously, why are you holding your phone like that?

Voland's right hand
Silver badge

Re: They have a point.

Most smart meters communicate thought the power lines,

Not in the UK. The reason is that in the UK some retarded idiot in their infinite wisdom put a 3 tier regulatory regime - retail, regional franchise and grid with the meter theoretically owned by retail. Theoretically - because retail can be changed at any time by customer and thus does not want to keep meters as capital assets on their books - so it usually outsources it to a fourth entity which rents meters to different retail outfits. Additionally, retail does not WANT to give the regional franchises which own the feed even the smallest leeway. So when the original SM consultations were made, they were not allowed to compete as neutral communications provider (in a very simple way - by mandating that any comms provider operates nationwide). Thus UK ended up with an idiotic GSM based comms solution.

In the rest of the world there is no end-customer retail tier. It is all owned by the regional franchise which has to regularly reconfirm its license and rights. As a result they can and do use the feed without any issues. They also use other regional comms solutions - meshes, drive-by metering (mesh or short range radio talking to a slowly moving "collection vehicle"), etc.

8
1

FCC caught red-handed – again – over its $225 complaint billing plan

Voland's right hand
Silver badge

Re: Swamp

But as a consolation price, we get Jerusalem as the new capital of some bizarro country.

And WW3. If you think that inviting 2 countries having an unresolved territorial/separatist regions conflicts with Russia into NATO while simultaneously raising the budget from peacetime (<2% GDP) to wartime (>4% GDP) footing is anything else you need to have your brains examined.

9
2
Voland's right hand
Silver badge

Re: Swamp

Oh, he drained it all right. You can now see all the alligators in their armored and invulnerable glory while they are proudly devouring the carcasses of whoever made the mistake of straying too close.

17
1

Python creator Guido van Rossum sys.exit()s as language overlord

Voland's right hand
Silver badge

Re: And people wonder why ...

Linus goes all draconian on brats who don't play well with others.

Indeed. Guido has been way too benevolent over the years. In fact, I am surprised Python got that far without regular exercise the dictator part in BDFL.

22
4

UK.gov is ready to talk data safeguards with the EU – but still wants it all

Voland's right hand
Silver badge

We have read the cake

There is no way in hell this will survive the inevitable ECHR/ECJ cases.

Not that any agreement will be reached considering that ECHR/ECJ jurisdiction is a given for Eu and is a No-Go for UK.

22
1

Do you really want your kids' future in the hands of Capita? Well, too bad

Voland's right hand
Silver badge

Re: Press 'F' for fault reporting

DM will have plenty of sadface pics of schoolkids awaiting test results.

Nope, they will not. It is primary school tests we are talking about. The tests are a DoE B&D fetish which the kids do not care about and the teachers can only swear about.

So it is in fact a present of 110M to Crapita - an excellent state subsidy masquerading as a contract which is actually about doing f*ck all.

5
1

A curious tale of the priest, the broker, the hacked newswires, and $100m of insider trades

Voland's right hand
Silver badge

Then they have to explain their investigation by inventing a daft story about how their AI spotted patterns etc.

Used to be the case. Not any more. SEC and most other watchdogs now all use Bayes statistics based analysis which has > 90% success rate on picking typical insider info based trades done on embargoed info.

1
1

UK privacy watchdog to fine Facebook 18 mins of profit (£500,000) for Cambridge Analytica

Voland's right hand
Silver badge

Re: Max Fine

Because the lawmakers couldn't conceive of social media platforms

Because the lawmakers could not conceive trading in personal information and its derivatives (*) being a business with profits and turnovers comparable to G20 economies.

screw the attribute social it is misplaced - there is nothing "social" about it

6
1

Forums

Biting the hand that feeds IT © 1998–2018