* Posts by The obvious

68 posts • joined 28 Sep 2011

Page:

YouTube sin-bins account of KRACK WPA2 researcher

The obvious

Re: patches

I'm going to bet there are a lot of SoHopeless devices that will never get patched...

1
0
The obvious

Re: patches

Just for the avoidance of any doubt - BOTH NEED PATCHING.

"although an unpatched client can still connect to a patched AP, and vice versa, both the client and AP must be patched to defend against all attacks!" it says on krackattacks.com

2
0

WPA2 KRACK attack smacks Wi-Fi security: Fundamental crypto crapto

The obvious

Re: Mitigation

If I'm reading it right then it *CAN* be fixed.

Routers just have to check that the NONCE from a client hasn't been used recently, that's all.

4
1

Avast urges devs to secure toolchains after hacked build box led to CCleaner disaster

The obvious

Re: CC Cleaner is an enterprise tool?

I have always found the presence of CCleaner (and the like) a useful flag that the machine has been tampered with by someone who doesn't know what they're doing - and that it needs nuking as a result.

7
16

My name is Bill Gates and I am an Android user

The obvious

Re: Damn them to Hell

Have to agree with you there - I loved my 930 until the hardware gave out on me.

I trust Apple slightly more than Google when it comes to data slurping (though not much) and the use of the mach kernel rather than Torvalds hobby/experiment-turned-popular and I've now taken a dive into the walled-garden. It's amazing how intuitive the windows phone OS really was to do common tasks quickly - it was designed very much as a tool and not a toy. There are times when I try to do things on the iPhone and think "this is a ballache, my 930 would be done by now."

Microsoft were just starting to get it right when Nadella took over, at which point anyone who knows MS knows that the infighting and empire-building that goes on there is the stuff of legend and Nadella was never going to miss an opportunity to get rid of an opponent.

12
1

Bill Gates says he'd do CTRL-ALT-DEL with one key if given the chance to go back through time

The obvious

Re: Since <CTL><ALT><DEL> forced a reboot

True that - I have a single key shutdown button on my keyboard, to make matters worse it also happens to be mapped to F4 which requires an 'fn' button to access the actual F-key behaviours... that box has gone down more times by accident than on purpose.

11
0

Downloaded CCleaner lately? Oo, awks... it was stuffed with malware

The obvious
Mushroom

Re: Doesn't matter

You do have malware on your machine, malware called CCleaner...

2
15
The obvious

Hopefully el-reg readers are aware of...

this nugget of wisdom from el-reg itself.

"Our testing produced very little evidence that registry fixers and third-party defragmenters do any good at all, although other users with serious computer problems may experience otherwise."

As such if I ever see a machine with CCleaner on it, I assume it is borked and due for nuking. :)

7
20

Indian call centre scammers are targeting BT customers

The obvious

Re: I've drummed it into the friends and family for years ...

The issue is (and something that happened in the TalkTalk fraud attacks to a neighbour of mine) was that those scammed had initiated the call to the ISP and were then expecting a call back from a senior technician. They just got the call from a scammer instead; expecting a call from the ISP and without any technical knowledge they had no reason to doubt that's who was calling them until it was too late.

22
0

Largest advertising company in the world still wincing after NotPetya punch

The obvious

Re: There's more to the world than INTERNET advertising.

...only until google decide otherwise.

Give it a couple of years and google maps will be prioritising routes past google-owned hoardings, if they aren't already.

1
0

Google now mingles everything you've bought with everywhere you've been

The obvious

Re: privacy violations aside ...

It's incredibly useful. Just because you don't understand how doesn't change that.

2
1
The obvious

Re: Not so fast

You missed a hell of a lot. I really do sound like some kind of tinfoil-helmeted nutter when I get onto the subject but I have a simple test - google say if you don't like their services, don't use them.

Try it - blackhole all routes to Google's IP space (the info's available online) and to their DNS servers... and then try to go about your normal daily business. I give you a matter of minutes (at most) of trying to get something done online before you need to open an exception even if you claim not to use their services.

Only when you really disconnect from them and get yourself out of their direct sight will you get even a rough idea of how much you actually give up to googles services. But that only covers the half of the equation which is the data that YOU give them directly. That doesn't begin to touch the data that other people add to their services about you - which is where things get *really* tricky.

8
0

Forget Mirai – Brickerbot malware will kill your crap IoT devices

The obvious
Mushroom

Is it just me who is secretly applauding this...

just a little bit. It's an extreme, harsh and utterly illegal way to encourage vendors to deal with their security issues, but perhaps a shedload of support calls and returned 'faulty' items might get their attention.

...then again pigs might fly past satan skiing to work first!

62
1

Ubiquiti network gear can be 'hijacked by an evil URL' – thanks to its 20-year-old PHP build

The obvious

...for a given value of 'premium' they are what people claim them to be.

If, like many of those people, your only experience is the typical SOHO crap like the usual D-Link, Buffalo, and Netgear (not even mentioning the no-name crap) it is a vastly premium product set with some big-ticket features for a low price, and you can run the server end on a raspberry pi. Most of those people will never see a big wireless installation.

0
0
The obvious

Re: Pay peanuts

You say that as if Cisco etc have never had a stupid vulnerability or "feature" like being able to rewrite the firmware remotely without authentication...

0
0

Smart meter firm EDMI asked UK for £7m to change a single component

The obvious

Re: secure?

Hahahaha! You'd think wouldn't you. No independent testing. But about this time last year it turned out that a huge number of the devices had to have their encryption keys changed as they were using THE SAME KEY... That is the level of competence behind this little endeavour.

We had an engineer come out to change our meter who couldn't understand why we wouldn't have one. After I showed him a couple of articles I think he may not be so keen any more.

2
0
The obvious

Re: ...nope ...

"For what reason(s)?"

You must be new here. The exorbitant costs, poor implementation, and lack of independent security reviewing are just a selection of the many reasons. That's before we consider the non-existent benefits. All of them documented on el-reg, and obvious to anyone who has been in the IT industry for any length of time.

23
0

Munich may dump Linux for Windows

The obvious

Re: and this has nothing to do with

Nope, the HQ was in Munich for some time before that IIRC

7
3

London's Winter Wonderland URGENTLY seeks Windows 10 desk support

The obvious

The ad asks for 'best price'

I don't mind doing events which are often short bursts of long hours, but for 15 near-consecutive days of 12 hour shifts over the Christmas period firefighting something that's obviously been poorly implemented - that quote is going to involve numerous 0's...

4
1

Sh... IoT just got real: Mirai botnet attacks targeting multiple ISPs

The obvious

Re: A victim report

That's a good idea - if the reliability of my DD-WRT boxes (different devices different manufacturers) is anything to go by an ELF binary will only last about 6-8 hours before the box locks up and needs a reboot anyway...

YMMV of course.

0
0

Robots blamed for wiping 10 per cent off the value of sterling

The obvious

Gambling is based on the probability of both profit and loss. Loss was the only thing on the cards in a leave win, yet May and friends either haven't realised that yet or they are scared some racist dickheads might get violent.

2
0

Ordinary punters will get squat from smart meters, reckons report

The obvious
Joke

Re: Botnets

I was planning to give myself free electricity and play tetris or maybe snake using the tower block up the road from me as a low-res screen...

15
0
The obvious

Re: No, thank you.

"the meters can be read remotely and is always up to date with no estimated bills."

...and how long until we see a situation where someone's supply is shut off remotely after a numnuts callcentre-monkey cocks up, a supplier thinks you owe them money when you don't (which happened when we moved into this house), when someone in some crappy outsourced IT service on minimal training and a bowl of rice a day cocks up 1,000's of accounts, or when yet another security vuln is discovered in the kit.

29
2

Suspicious DNS activity runs rife

The obvious
FAIL

set reporting_mode = '^c^v';

Pretty much covers it.

1
0

A USB stick as a file server? We've done it!

The obvious

Re: iMicroAgression

Round these parts Android is usually prefixed with the word Landfill, and such a designation is taken as read and doesn't require constant enumeration for the sake of iDiots.

1
0

£11bn later: Smart meters project delayed again for Crapita tests

The obvious

Re: Gaz and Leccy...?

I like the idea of balancing out usage away from peak times but equally I've had a handful of billing cockups, they've always been sorted but doing so has sometimes taken a while... making billing more complicated seems like a bad idea for consumers and the idea of some chimp in a call centre being able to nix my heat/power remotely doesn't fill me with confidence.

12
0
The obvious

Re: I'm glad they're optional.

Me too, given most energy companies well documented ability to fsck up billing, nobody in their right mind would trust them not to make a massive cock-up and cut off your supply remotely...

11
0

Microsoft buries the bad Windows Phone news: Mobile sales collapse

The obvious

I'm bloody annoyed

OK - it was me, I'm the one who liked it.

The devices I've had (625 & 930) have been rock solid and been good workhorses - pretty much the only times they've had a reboot were when they physically ran out of juice... and an excellent third choice when the first two are istyle over isubstance or landfill in waiting.

I'm in a genuine quandary over what to get when my 930 needs to be put out to pasture. I genuinely hate iOS and Android equally - to the point where I'm feeling the appeal for a brick-phone and a tethered tablet.

1
1

So you’d sod off to China to escape the EU, Google? Really?

The obvious

Re: Presumably we could all just switch to Yahoo! or Bing if Google goes...

I wouldn't be so sure about that, try blocking say... Googleapis.com and see how your web experience fares. I've been looking into it and basically the only way to completely avoid googly eyes is to implement a firewall with a pretty invasive content adaption filter on http.

I tried to setup firewall rules but it was just impossible, now I am building a pfsense/squid box and an icap server to actually find out how hard it I to not use google services at all... when i noticed even my OpenWRT based router talks to googly overlords when it establishes a connection - I have the wireshark trace to prove it.

6
0

Dear Santa: Can gov.UK please stop outsourcing?

The obvious

Re: The bizarre logic of outsourcing

Because if you've worked for an outsourcer you'll know that instead of hiring some skilled people on decent wages and have to give them pensions and things like that as is required by council policies and those pesky unions, outsourcers can usually hire people who are barely literate at minimum wage (or less if they're "apprentices"), cut a bunch of corners (apologising if they are unlucky enough to get caught out), treat them like excrement and sit back to cream the profit off the top.

If they really want to make some money then they can do the same in some 'low cost country' safe in the knowledge that the contract probably didn't say anything about where the people doing the work are based, only that it's done.

6
0

Not so fast on FM switch-off: DAB not so hot say small broadcasters

The obvious

Re: DAB is only useful for big stations.

"Bloke in shed starts own DAB radio station - with Ofcom's blessing"

Setup would work fine with a Raspberry Pi, he says...

http://www.theregister.co.uk/2013/08/06/open_source_hacks_dab_to_the_masses/

Since local stations could still reasonably use similar transmission power and host their own mux using a raspberry pi or similar I'm not seeing a huge cost burden here. Am I missing something?

1
7

'YOUTUBE is EVIL': Somebody had a tape running, Google...

The obvious

About that 'low lock-in'

If you think google is only a dominant force in search then you're in for a huge eye-opener. Set yourself a mission to *completely* de-google your life, to not give them any data at all and let me know how you get on...

9
4

Sony to media: stop publishing our stolen stuff or we'll get nasty

The obvious

Re: Journalistic Truth

Only if you work for the Daily Mail

4
3

Google, Microsoft to add remote KILL switch to phones

The obvious

Re: Cell Phones

Yes, Europe does have the same rule.

You pick up a phone anywhere in Europe dial 112 or also you can use the local emergency number if one exists (999 in the UK.)

It's nice to know that folks from the colonies are still trying to keep up with the developed world.

0
0

Microsoft advertises Surface, Excel with maths mistake

The obvious

Re: Recalculate ?

Or even more likely a formula fail where they forgot to include the last two entries when they made the sum... That would account for the $500.

4
0

Internet Explorer 11 for Win7 bods: Soz, no HTML5 fun for you

The obvious

Never mind that...

Where's the option to disable those annoying browser tabs gone? It was a killer feature (sure you can get plugins for ff/chrome etc but they don't really work.)

0
0

SUPERSIZE ME: Nokia unveils Surface rival and 2 plumped-up phablets

The obvious

cottoned on?

"Why toy manufacturers haven't cottoned on to this, I don't know."

They have. That's why they continue to make what they do (cheaply with a tidy profit) because parents buy them and then get them something else next year instead of losing the market to apps at a couple of bucks a throw.

0
0

Chaos Computer Club: iPhone 5S finger-sniffer COMPROMISED

The obvious

2002 called...

It would like to know if you fancy some Gummy Bears...

http://www.theregister.co.uk/2002/05/16/gummi_bears_defeat_fingerprint_sensors/

4
0

Google's new Chromecast spills its simplistic guts

The obvious
Holmes

re: proprietary protocols

We expected something different from the makers of the next IE4?

1
4

FTC to cast an eye over Google's Waze buy

The obvious
Black Helicopters

Business model

I was lucky enough to meet Di-Ann Eisnor (one of the VP's) at a TechHub event when they officially launched here. She certainly outlined a decent long-term strategy which included providing traffic data to tv & radio stations. Also more importantly she outlined ways that the Waze data could be used in "smart city" projects but with a very low cost compared to installing hardwired traffic monitoring kit - something that got plenty of attention from Arup and Skanska (I spoke to reps from both and there were probably other similar companies there).

0
0

Leaked docs: GCHQ spooks secretly haul in more data than NSA

The obvious
Black Helicopters

If you've nothing to hide and nothing to fear, you've got nothing - so why are they still listening?

5
0

Murdoch hate sparks mass bitchin', rapid evacuation from O2, BE

The obvious

Re: I'm going

I'd go find an infinity reseller. Back in the earlier days of DSL, BT support staff had (and perhaps still have) access to your login password in plain text (I managed to get it out of one of them once), I quit them there & then and have no plans to return.

3
0

UK.gov blows a fuse at smart meter stall, sets new 2020 deadline

The obvious
Holmes

Re: Luddites

"There are of course also potential misuse of data and other security issues that need to be considered carefully."

Those are the bits we're worried about because we know exactly how well they're done... lowest bidder with the highest kickback with quality and security to match (as usual) I'd wager.

4
0

Opera joins Google/Apple in-crowd with shift to WebKit and Chromium

The obvious
Facepalm

Re: Another one down

Your lack of comprehension is not something us commentards can help you with Lars. Try the helpdesk. :)

Opera's rendering engine being killed off in favour of Google's - that's most definitely a bad day. It doesn't really matter if Opera's renderer was good or not, it matters that a genuine alternative is going (or gone) leaving chrome (the new IE4) to dominate with it's own nonstandards and sites that work with nothing else.

* And no, Nets^h^h^h^h Firefox is not worth mentioning, too many people have been burned there.

6
3
The obvious
Pint

Another one down

Chalk another death up to Google doing no evil...

Bye bye Opera, it was fun.

/Beer - I'll have one for you.

6
6

Psst, wanna block nuisance calls? BT'll do it... for a price

The obvious

The short answer is that if you have two telco's or operate from more than one office or a block of lines, as pretty much every legitimate company with more people than fingers does, it's not possible to do what you propose via caller-ID. There are other signalling mechanisms which can be used to identify the callers entry point into the network but few companies (particularly BT) want to hand over the data to let us go direct to their call provider.

1
0

It pays to study the habits of your email users

The obvious
Thumb Up

Re: MS Outlook

Dale hasn't used outlook in a while has he.. - the 2gig limit that hasn't been there in nigh-on a decade when the file format was changed in Outlook 2003. New files from 2003 onwards are limited to 50gig (20gig defaults for 2003/7 but fixable by a registry tweak).

Piler AND Filer, me? Of course!

0
0

'UK DNA database by stealth' proposed in £100m NHS project

The obvious
Coffee/keyboard

Friend, You owe me a new keyboard. This one has coffee (mixed with DNA) all over it.

0
0

New laws to shackle and fine the Press? We've got PLENTY already

The obvious

Right response, wrong reasons

On one hand, he's got the right answer - more regulation is moot when the old regulations were ignored.

But DC's position is more one of not wanting to annoy on the people / organisations who put him in office because he's going to need them to prop him up again soon enough.

0
0

BBC iPlayer downloads BORKED by Adobe Air update

The obvious
Mushroom

Re: get_iplayer

Actually I've noticed in the 2 weeks that my get_iplayer has been having problems with certain programmes and rtmpdump either locks up or the download gets corrupted (including "World's Craziest Fools" featuring Mr T which is a current favourite of my 5 year old). I wonder if that's related?

/Bomb as the A-Team love blowing stuff up

0
0

Page:

Forums

Biting the hand that feeds IT © 1998–2017