* Posts by Smartypantz

59 posts • joined 14 Oct 2011


Contain yourself, Docker: Race-condition bug puts host machines at risk... sometimes, ish


Re: The github generation

"Do you really think that anyone who knows what they're doing with containers just pulls images willy-nilly off the Docker Hub?":

YES! And i know they do because i actually operate in the real world

"f you run Docker direct on your host O/S you are a bit of pillock too. You run Docker in a VM"

You sir are an idiot! Have you ever stopped to contemplate the reason of virtualization? You run Docker on "the Iron" if you want to do any kind of resource optimization that is! Off course you can run it in the public cloud like any schmuck and do your new feudal masters bidding.

I have 20+ years of service uptime under my belt, you, sir sounds like an asshole with a few to many opinions from "social media"


The github generation

Docker is a gaping security hole as a concept

Downloading and running random internet guys image in a container on your docker environment is worse than downloading and clicking random .exe files on your windows box:

1. NO and by NO i meen absolutely NO malware detection in must cases!

2. Everything as root, yeahh... check those container processes!

3. Culture of trust: This is beautiful but can we be sure that the loving altruistic spirit is in ALL container images available as a one-liner from repos?

4. majority of docker containers run on powerful server systems with high bandwidth

If i wanted malware running anywhere, i would look at docker repos as my first choice!

Docker is for people who havn't got the skill to setup a proper server.

Two weeks after Microsoft warned of Windows RDP worms, a million internet-facing boxes still vulnerable


Re: Basic security

Please tell what do you think is the "ftp port"


Re: Basic security

Exactly right!

If original posters tip actually was a "PROTIP" (i hope not) its no surprise that the security of our profession is in such a poor state :-)


Re: Basic security

Regarding your "PROTIP":

Off course it helps to run it on a non-standard port. Most exploit code is dumbass script kiddies copying and pasting the same, lame code that, as a matter of economy, does not run a full portscan + protocol detection before letting the load!

Mozilla tries to do Java as it should have been – with a WASI spec for all devices, computers, operating systems


Re: So 30 years (at least) on ...

Its fantastic, we are sooo close to have re-invented the operating system (again)(in-a-browser) ;-)


Re: If it happens

Verbose is your friend when revisiting code after years gone by. I'm loving verbose method names instead of smug, abbreviated smartassery.

Also.. You do know that "public static" actually means something right? For defaulting stuff. see previous sentence.

Put down the cat, coffee, beer pint, martini, whatever you're holding, and make sure you've updated Chrome (unless you enjoy being hacked)


You will not feel the difference

Apparently this exploit allows "others" to:

"run spyware, ransomware, and other nasties on your device or machine …"

How is this a problem in a product like Google Chrome? If you use chrome, Google, and by extension, "others" run "spyware, ransomware, and other nasties on your device or machine …". because this is the whole business model! Do you not know this?

i Guess the best analogy would be a pornstar complaining about cum-loads in the face from men she have not yet shaken hands with ;-)


Re: Get off my lawn with your modern browsers and all that!

Good for you! Enjoy it while you can! Because it is only a matter of time before the last of the open protocols (mainly HTTP and SMTP are left) get s killed of by GAFAM.


And your customers are correct. "upgrades", which should always be in quotes these days, especially from the ilk of creeps like Google and Microsoft, mostly are about benefits for the supplier, and are, more often than not, detrimental to the interests of the user. A. K. A. antifeatures. How do the end users distinguish? They can not.

Welcome to the sunlit uplands of HTTP/2, where a naughty request can send Microsoft's IIS into a spin


Easy fix ....

Run IIS on Windows (This comment "might" contain sarcasm) and your CPU will already be at 100% for most of the time, handling "Windows Update"/"Feature change-fad of the month" "in the background", (you can continue "working") ;-)

"Aarrgghh" ...... "!"

Three quarters of US Facebook users unaware their online behavior gets tracked


Yours and mine

Your data is your data! You have an obligation to be hygienic about your own data! Most people are 100% frivolous about their data,. They will sell that shit for the tiniest amount of convenience!! YES you will ! You HAVE, and you DO!! People NEED to be aware of the consequences of this sale! if they are not, they, no WE, will be ruled.... Harshly!!..

OneDrive Skype integration goes live aaand... OneDrive falls over in Europe


Lan technology FTW

Host your own databases, mailservers, fileservers, webservers.

- Cheaper

- More secure!! Yes its IS!

- Waaaay faster! when everything is not forced through https/html/json/xml, and services is on a guaranteed high bandwidth LAN

- Ethically compliant (fairtrade and so on)

- Freedom of choice maintained

Subscription based web services as a software substitute is for suckers!!

Malware scum want to build a Linux botnet using Mirai


So lame

Every time the details of some exploit surfaces it seems that the thing that makes it possible is always sheer stupidity! Default passwords on telnet connections and so on and so on

It must bee the easiest thing in the world to build a massive honeypot to capture the wannabe IT-criminals of the world!? Sadly it seems that the IT branch of our law-enforcement is even stupiduuhhrr..

So the way to keep a secure server running is to not be dummer than, say... a potato! Doesn't really seem that hard ?!??!?

Just one Corretto, give it to me... AWS brews its own blend of Java with free long-term support


Suicide move by Oracle

I truly have never seen, so much, being squandered so fast, by so few, as the Oracle acquisition of java!

They have had an opportunity to develop an "ecosystem" around java, their cloud and their other software offerings. They could have used java to ease the path to an Oracle future (Shudder..).

They have had the chance to really make java pay off, something that sun never succeeded in. It seems like they never even tried after the acquisition. Seen from the outside it looks like utter stupidity?!

Now this licensing move?? They have given up, and are on a suicide mission!

Hybrid cloud’s growing pains – and how to beat them: A guide to raising a good platform, so you can raise a glass later



Hybrid cloud is a fact of life. Its the question of self hosting versus Strangers hosting you tish. For a long time Strangers have been better at "convincing your stupid boss's ass"/cheaper at.. hosting it. Now: not so much, maybe. Clearly cloud vendors sees the trend as a way to consolidate grips on customers. Unfortunately some (Cough.. microsof¤%#) are jumping the gun and jacking prices. Do not be a stupid lemming!! Host your own tish!! (or host with local hosting vendors!!). Article reeks of non-competent person with "communication skills" (a.k.a. whats killing our trade). with a peripheral idea of networking and application design defending their unproductive non-position on a fictitious point ("hybrid cloud".)

We (may) now know the real reason for that IBM takeover. A distraction for Red Hat to axe KDE


Re: Without KDE, RHEL is GNOME to Hell

Still use KDE as my goto De.

I remember being sooo impressed by konqueror (in kde 2 and 3) and kioslaves flawlessly handling sftp, ftp, smb, http, webdav, local filesystemes and more!! hands down the best file manager ever made!!

Where has this gone? dolphin isn't anywhere near this, it can't even handle modern SMB/CIFS. It seems like it has been sacrificed on the alter of UI re-design like so much good software!

Is this cuttlefish really all that cosmic? Ubuntu 18.10 arrives with extra spit, polish, 4.18 kernel


Re: "the system has a more modern and no-reboot look"


This is a virtualization host, only trusted hosts on it and off-course its firewalled against access unless from a few hosts (and has no Internet access). It runs desktop hardware and consumer SSD's!!

You can't argue with years of service! Its the only currency in the operations business!

Open-source this, open-source that, and the end of the Windows 10 Creators Update


Fear among the gargantuans

Microsoft buying something like Minecraft (java based for god sake), clearly shows the fear among the IT Titans that rule our world, of anything threatening their rule.

There will never be "another facebook"! Any would-be creators will be drowned in money by one of the Leviathans (microsoft, google, facebook, amazon or apple)

None of them can tolerate interruptions to the feeding scheme for the AI monsters in their basements!!

In Windows 10 Update land, nobody can hear you scream


Re: Installing Windows 7 on Sky/Kaby Lake CPUs

I guess most peoples resentment (including my own) is that the very valid points 1, 2, and 3 adds up to a piece of software (win 10) that is obviously NOT in the service of the user, but serves the nefarious purposes of the authors (Microsoft). FUCK THAT!!

Anybody who is able to use alternatives will. Sadly this is not the majority


Re: Yes I understand Microsoft's problem ... and Linux...

This "Eventually, the never-ending pain train will drive the users away, but by then they would have been monetized for years. MS could then toss aside the withered remains of Windows and be all about the cloud, having sucked all of the juice out of their former desktop monopoly."

Is the true reason behind the lackluster quality of Windows. It also explains Microsoft's sudden friendliness towards Linux and Open Source in general.

MS doesn't care what you run, as long as you pay your subscriptions and run it on Azure!!


Ugrading works.. On linux

I have been upgrading Debian (with tons of applications since "etch" (EOL 2008). That this process has never failed me on 100's of occasions testify to the quality of the operating system (and Debian)

Microsoft accidentally let encrypted Windows 10 out into the world


Modern IT sucks

Because there are waaaaaay to many "UX designers"! All scrambling (at their masters bidding) to lift the same old shite to look like its NOT the the same old shite, with another evil twist to own your data.

Windows 10 Linux Distribution Overload? We have just the thing

This post has been deleted by a moderator

It walks, it talks, it falls over a bit. Windows 10 is three years old


Re: Could Windows 10 spell death for Microsoft?

"I question how well this would really work. Cloud services are inherently platform-agnostic"

That is completely un(anti)true!! Do you not know that if you develop for any cloud platform (i.e "Azure") Your data AND your application logic becomes hopelessly vendor locked?? That is the whole point and ultimate goal of being a cloud vendor!


Re: Reasons why Windows 7 is far superior

Sad but true

Microsofts Windows audience is not tech savvy desktop users anymore though! Its people slowly being accustomed to being bent over and anal probed on a daily basis by facebook and google/android. It works for Google and Zuckerberg, why shouldn't it for Microsoft (it will too)

Microsoft will ‘lose developers for a generation’ if it stuffs up GitHub, says future CEO


Re: Be smart

Hi shill

Managed services like azure means that your administration budget goes through the roof (on top of the linearly scaling subscription costs), and that you no longer have any control over your infrastructure!. To host repositories (or anything else for that matter) is Cheaper, more secure, faster, and more scalable then any cloud offering if you buy a building and run everything in your own server-room (even more so if you eliminate any proprietary licenses, service agreements and so on, and run everything on "of the shelf" hardware and Open source software).... *SHOCKIIIIING*

Half of all Windows 10 users thought: BSOD it, let's get the latest build


Re: They say history repeats itself.

I think you mean ".NJET" ;-)

An easy-breezy attitude to sharing personal data is the only thing keeping the app economy alive


Re: And that's exactly why...

Neither do i (to great extend ;-) ). And i would like to question if the value of this data is really worth the 1000's of billions these companies trade for? Especially now that people are more and more aware of the nature of the STASI economy (their data is to a greater degree poisoned by awareness resulting in "good old" garbage in, garbage out)..... I smell a gargantuan bubble!

Microsoft Office 365 and Azure Active Directory go TITSUP*


And if you multiply the amount of users with the duration to get a real sense of impact?.... (do not understand the "cloud" apologists at all!)

Microsoft says 'majority' of Windows 10 use will be 'streamlined S mode'


Good old soothing CDE

Operating systems from the era where design was meant to enable users:

CDE running with todays issue of "theregister" Look at the soothing and comfortable colors, clear contrasts (apart from the garish website) and thought out icons

Google nukes ad-blocker AdNauseam, sweeps remains out of Chrome Web Store


Re: Just use Firefox

So, willing to sacrifice security for convience? That is what fuels this whole disgusting mess!

Microsoft: Why we had to tie Azure Stack to boxen we picked for you


Elimination of choice

Has always been the cost of doing business with Microsoft

Intel loses its ARM wrestling match, kicks out Atom mobe chips


Re: ARM are growing even without Apple


In two months they will announce a triumphant return to the mobile/power-saving chip business (WTF.. they do not have the resources ????... yeah right!).

Buy intel stock now!! (they have a complete monopoly on desktop/server anyway)

Building a fanless PC is now realistic. But it still ain't cheap


HDD noise (a bit offtopic)

I miss the chattering of the old HDD's seeking. It gave a nice, comforting, connection with the machine on an almost subconscious level

Microsoft offers to PAY YOU to trade in your old computer for a Windows 10 device



That photo makes me feel so, so sad!

Rejoice, Windows fans: Stable 64-bit Chromium drops for Win 7 and 8



Can someone please explain how anybody, KNOWING FOR A FACT, that the ulterior motive and every effort put in to their communication device (browser in this case) is designed to extract exploitable, personnel information in as great quantaties as possible, is able to trust same? In this case its the Chrome browser. Not only does a lot of people trust it, they actually defend it against alternatives. What kind of half-wit ONLY cares about the convinience, and speed of their browser in this day and age?

Maybe im just paranoid and stupid but I reaaallye do not understand people figthing FOR their privacy beeing exploited????



Why the hell are you using that piece of creepy spyware??? A bit of convenience? loads a bit faster does it?

A few years ago there was this concept called "spyware". Google chrome fits that description perfectly, but OK maybe it does'nt matter when its big benevolent mother google ?

'Fix these Windows 10 Horrors': Readers turn their guns on Redmond


Re: Then there is the Whitespace everywhere


Dont mention Kubuntu. I've been anjoying hassle free secure and consistent computing with Kubuntu (and debian + KDE) for years now (in spite of all the pointless kde 4 hate). If all the Mint refugees, generel Ubuntu users and their enemies ever find out it will be ruined :-)

That 8TB Seagate MONSTER? It's HERE... (You'll have to squint, 'cos there are no specs)


hitachi versus seagate

I have a bunch of KVM virtualization servers on pc hardware running 4 mirrors each, comprised of one hitachi drive and one seagate drive. I havent got the details on them at hand (cant be bothered to fire up the VPN, log on, tjek the drives...... to much like work on a friday night :-) ) they are a couple of years old (1 TB drives). My observation:

Seagate drives are failing like crazy, hitachis just keep on running! Sad about that really, hopefully WD puts their acquisition to good use!

Internet2 superfast-boffinry network peers with Azure cloud


Maybe not to late

Maybe its still not too late for "The Microsoft Internet" we all know was old Bills wet dream

Superworm Crisis eats Macs, VMware and - shock - Windows


Re: Windows security fail

Forgot to add "security software suite" blackmailing


Re: Windows security fail

Mee to.

Runnning KVM on LVM on debian for virtualisation and debian on the desktop, no worries, licensing bullshit, crippleware gauntlets, forced "upgrades" end general creepiness of one of the platforms of the great information parasites of the world (you know who they are :-))

Windows 8: Download it, then speak YOUR brains


dum and dummer for dummies

"So you think you got the grips on dum? Nobody dums it down lower than us, our target group are the 10 year old retards! Just click (or spit or rub your genitals) on the pretty pictures and the incredible bing machine will take you to your dreams!"

Google makes Opera bloggers an offer they can't refuse: Use Chrome


EVIL assholes

And the worlds most swollen parasite, they are.. mmrrhh..


Programming for the web browser

"the browser is the operating system."

This is the stupidest idea i haver ever seen. All the "cloud providers" keep pushing it because they want to own your data. Nevertheless it has been a pipedream from day one.

it boils down to: "we want the same amount og functionality in the browser, as in native applications. and we expect a lot less complexity" !?!?! WTF?

everyday i praise my self lucky that i am NOT the one programming FUCKING javascript for the MOTHERFUCKING webbrowsers (unlike my poor colleagues).

Luckily i spend my time in a somewhat predictable environment (sysadm, a bit of serverside java and bash+perl)

Total bankers: Twitter and LinkedIn's cynical API play


Dont trust your communication to privately owned protocols

This kind of crap will never happen to SMTP, IRC, HTTP (although they keep trying), IMAP and so on!

Review: Samsung Chromebox



The day i will be"signing in" to any of the giant data-parasites (i. e. google et. al) to use my computer, will be the day there will be two cold sundays on a week in hell!

Gouged by cloud - but it's so convenient


The great RockNroll swindle

If the cloud is so fantastic, its amazing that we can host all our services on either KVM virtualized servers, or physical servers (for the response time critical services), all on off the shelf hardware.

Can meet any provisioning demand within 1-3 days, all for about 1/3 - ½ of the cost off any "cloud" provider. And thats just the running costs.

Do not tell me that if we suddenly bought into the vendor-pushed cloud hype, our support and provisioning costs (in manpower) would suddenly be zero.


Brian Simonsen

HP Z1 quad-core Xeon 27in PC


Re: The author was just wrong

So.. the only arguments for this machine being a "real" workstation compared ti the MAC (or any homebrew) is the certification, officiel support, NBD blabla - thievery? All of it just i big scam, and completely pointless if you know how to swap a stick of RAM, PSU etc....


Biting the hand that feeds IT © 1998–2019