* Posts by Aqua Marina

375 posts • joined 30 Dec 2011

Page:

Microsoft faces Dutch crunch over Windows 10 private data slurp

Aqua Marina

Re: Blaming North Korea?

So what happens when you need to open a very formatted MS Office documents. At some point or other a customer or supplier will send one over that can't be opened very well by OOo or Libre Office and you are back to square one.

3
23

Beardy Branson chucks cash at His Muskiness' Hyperloop idea

Aqua Marina

I thought that "The Virgin Ring" would have been a catchier name. It slips off the tongue easily.

6
0

Malware again checks into Hyatt's hotels, again checks out months later with victims' credit cards

Aqua Marina

Re: Again?

You can say that again!

2
0

Concerns raised about privacy, GDPR as Lords peer over Data Protection Bill

Aqua Marina

Re: What?

Former Employee: "Dear former employer. With reference with my being sacked for starting work late. please provide me with copies of CCTV of the building entrance that shows me entering and leaving the premises on time each day for the past 28 days so that I can produce them at the employment tribunal."

Former employer: "Dear former employee, purely by coincidence our CCTV tapes were accidentally erased 15 minutes after receiving your request, for a period of 8:45am to 9:15 AM each morning for the 28 days in question. We therefore have no evidence to give you."

This is about as simple as it gets. Data is being deleted on purpose, in order to prevent it being requested.

4
0
Aqua Marina

Re: Confusing and unworkable

"but on a practical level you'll have to think about keep a copy of the deletion requests since the backup was taken so that you can re-delete it if the backup has to be restored."

This is perhaps one area I've struggled to solve yet practically. Lets say I hold data on a subject that is being retained legally, and does not need to be retained by law. A subject can invoke his right to be forgotten and ask that this data is deleted which of course I do. Now, is it legal to keep a copy of the "forget-me" request, considering that the subject has lawfully been asked to be forgotten. I.e. you've forgotten him for one set of data, but created a new set. Admittedly it's a smaller set of data. I can see the following responses to a subject request.

a) Show me your data on me.

b) We have no data on you, sorry.

or

a) Show me your data on me.

b) All data on you was deleted at your request on the dd/mm/yy

The GDPR does make an exemptions for data being held that is subject to a contract (i.e. car lease agreement) or anything involved in litigation or expected litigation. In these instances there is a lawful reason why you do not delete the data ("dear car lease company, please delete all my data from your lease database" or "dear lawyer, please delete all data from your database you intend to produce in court against me"). So I often wonder if the deletion requests could be argued to fall under this exemption, in that you mayd need to prove in court that data was deleted by subject request and not maliciously against policy. More legal minds than mine will have to answer that question.

4
0
Aqua Marina

Re: Confusing and unworkable

"You must delete personal data if you are no longer using it. You must not delete personal data if the subject will ever want to access it."

Basically a organisation must have a clear and published process for the deletion and retention of data that is agreed upon by the subject at contract*. If their policy states that after 12 months they delete the data, and they do so, then the subject who agreed to that policy at contract will have no redress if 24 months later they want to access data that was deleted as per policy. Where things get messy is if an organisation has no defined policy, then responds to access requests with "This was deleted last week, sorry", or an organisation changes the retention period without notice.

*subject to mandatory exemptions and obligations such as personal data held for taxation purposes which must be retained for 7 years, and is exempt from deletion requests by the subject but available upon request.

8
0

'There has never been a right to absolute privacy' – US Deputy AG slams 'warrant-proof' crypto

Aqua Marina

Re: Gravity pulls things down.

Pfffft. It’s all maths, science and damned statistics!

2
0
Aqua Marina
Trollface

Gravity pulls things down.

No it doesn't, the earth is flat and moving upwards at 32 feet / second squared!

7
0

Ex-Harrods IT man cleared of stealing company issued laptop

Aqua Marina

It never ceases to amaze me just how many british commentards that post here have the belief that an employment contract can remove your statutory rights as a UK citizen. Seriously I'm sure you guys must be being walked all over by your employers, or you are school age, and watch a lot of american TV shows.

Let's take it slowly so you understand it.

A company has a policy that says "No personal use or data on company resources, or else *(except in an emergency)." This is perfectly legal, and if an employee breaks the policy they quite rightly and legally are able to be disciplined.

What the company cannot say is "if you break this policy, you are entitled to no privacy and we can do what we want with your data". This would be illegal. The right to privacy is enshrined in law. Any personal information the company comes across, even when a written policy was established forbidding it, is still subject to the Data Protection Act, and next year will be subject to the even more stringent GDPR. A company must by law treat personal information with confidence regardless of policy. Law > Employment Contract.

*already established by case law

2
0
Aqua Marina

I've found over the years that when someone is in the process of being fired, asking nicely gets completely ignored and laptops are examined with a fine tooth comb over for evidence of anything that will support the firing.

I think all this will change with the introduction of the GDPR laws next year where privacy trumps everything. A user returning a laptop should also in writing inform the company that the laptop contains personal information, and that by denying him the access to remove the data, they have become the defacto guardian of said data and have a legal responsibility to treat it in complete confidence. Going further to that if my reading of the law is correct, he could further insist that they delete, and provide evidence of the deletion of such data. And they would have to comply.

18
2
Aqua Marina

According to FAST software piracy is a crime. Are you happy for your local IT shop to go scouring through your laptop for unlicenced software so they can report it.

I'll clarify my point. I asked if the shop called Harrods or if they called the police. I would guess that most likely they called Harrods. If this is what they did, then this is a huge breach of privacy, and also illegal.

20
14
Aqua Marina

A complete waste of time and tax-payers money then.

The number of people I've had over the years that have wanted me to remove their personal stuff from company owned laptops before they've handed them back. Now because of an over zealous prosecutor, it's established as being illegal. The shop that er, shopped him deserves to be social media shamed. Did they contact the police, or contact Harrods first?

37
12

The URL of sandwich: Microsoft Office blogs redirect snafu foils users

Aqua Marina

Re: Nowhere near as bad as the SNAFU with NT4

Or buy PC Pro! Back then the cover CD shipped with all the major patches and service packs. There wasn't a tech who didn't have the current months CD in his tool case. Then around the turn of the century MS put a stop to that.

A similar thing happened with XP. A fresh XP installation with an original CD left you with a machine that wouldn't accept windows updates, the built-in IE was too out of date. You had to manually install the service pack and latest version of IE before the windows update would start to work.

6
0

Open World? More like closed world: Women sue Oracle for 'paying them less' than blokes

Aqua Marina

Re: Note to plaintiffs

I've always held the belief that you get what you negotiate. If you end up earning twice as much as the guy or gal sat next to you because of this, then you've earned it and deserve it. Negotiation is just an important skill set in business as any other. If you're happy to settle for a lower amount, then you are getting what you are worth.

2
1

UK data watchdog swots automated marketing call pest with £260k fine

Aqua Marina

Re: Limited liability

In this instance the ICO could lodge an appeal to block the voluntary winding up on the basis that money is owed. At that point if this is successful then the only thing that Harkin could do is call in the receivers, wheich essentially puts him under investigation, and forbids him from starting up another company. Hopefully he's left it to late to try to get his company struck off and the ICO can get it blocked.

4
0

ICO whacks Welsh biz with £350k fine for 150 MEEELLION nuisance calls

Aqua Marina

@FFS. Does anyone read the full article these days?

People read the article, but you don't read the comments.

The article simply says "introduce a new law to allow the ICO to penalise a company’s directors for their firm’s nuisance calls". Notice the phrase "ICO to penalise a company's directors".

The commentard stated "The law needs to change so they can't just dissolve when it suits them and also the directors should be personally made responsible for CCJs and fines." The commentard is asking that directors are made responsible for ALL fines and CCJs. Not just the ones from the ICO.

0
0

Equifax UK admits: 400,000 Brits caught up in mega-breach

Aqua Marina

Re: Say what?

"This was due to a process failure, corrected in 2016, which led to a limited amount of UK data being stored in the US between 2011 and 2016."

I wonder if this oversight was reported to the ICO at the time, or if it was quietly swept under the rug and hoped that would be the end of it.

33
0

HSBC biz banking crypto: The case of the vanishing green padlock and... what domain are we on again?

Aqua Marina

"where, in my experience, the employees are hard working but are completely unable to think for themselves"

I spent about 6 months trying to open an account with them. The account kept getting declined repeatedly for the same ludicrous reason. My passport had my middle name on it, my bills didn't. It wasn't possible to get my middle name on the bills because it would have taken me over the maximum character limit. They wouldn't accept initials either. It was ridiculous, the bank manager kept trying to push it through, but a week later each time I got an automated letter back saying my proof of ID didn't match. After 6 months I went to Barclays. They only looked at my passport to confirm my ID, account was open same day.

20
0

US government: We can jail you indefinitely for not decrypting your data

Aqua Marina

At the risk of being downvoted a million times again, I'll point out that Section 53 of RIPA puts the onus on the prosecution to demonstrate that the accused has or knows passwords to hand over. There is a myth on The Register comments that prosecutors can repeat the request over and over, each time sending the guilty party to prison for 2 years at a time. This simply isn't true, and to date has never happened or even been attempted. It's very possible that the prosecution could not prove their claim beyond a reasonable doubt. Anyhow, here is the exact wording of the law below.

Section 53 Failure to comply with a notice.

3 For the purposes of this section a person shall be taken to have shown that he was not in possession of a key to protected information at a particular time if—

....

(b)the contrary is not proved beyond a reasonable doubt.

2
0

UK.gov is hiring IT bods with skills in ... Windows Vista?!

Aqua Marina

Re: What?

Exactly, Vista with the service packs, and a few registry changes disabling the buggy caching and buggy memory management was Windows 7, at least it ran as reliably right up until I was forced not to use Vista by Microsoft. We had Vista and 7 running reliably side by side for years.

4
0

Apple removes VPN apps in China as Russia's Putin puts in the boot with VPN banlaw

Aqua Marina

Re: How far will this go ???

"So what is next, banning of such texts"

In the U.K. It's been illegal for a couple of decades now to publish instructions on how to circumvent many of our computer misuse laws. Yes you read that right, it's illegal to inform people how not to break the law, if the objective was originally to break the law.

6
0

FUKE NEWS: Robot snaps inside drowned Fukushima nuke plant

Aqua Marina

I thought the published opinion of Fukushima on el-reg was "Nothing to see here, move along". Did something happen to change that view?

3
0

Fake Newspaper steals Reg design to spruik storage upstart

Aqua Marina

Sprechende designer?

"you need someone with technical expertise who speaks enough "design" to communicate with the designer "

Something I've clearly never learned looking at the years I've spent banging my head against the wall with designers who do not understand the concept of DPI. A typical example:-

Designer: I need all my photography images to be supplied at 300 DPI.

Me: What resolution?

Designer: 300 DPI......

Me: 6" x 4" at 300 DPI, 10" x 6" at 300 DPI, A1 at 300 DPI?

Designer: Look, they just need to be 300DPI then they are good enough to print out.

Me: You've saved 1TB of JPGs twice and filled up the entire NAS, one lot at 96DPI and the other at 300 DPI, but they are both just 3800 x 2100 images.

Designer: That's because the ones at 96DPI are for use on the website, the 300 DPI are to be printed.

Me: But they're identical, you only need one set.

Designer: No, they're different resolutions, those are the same resolution as your monitor, those as your printer.....

And many many more....

20
0

The AA's copped to credit data blurt, but what about car-crash incident response?

Aqua Marina

Re: Electoral register

The clue was in the sentence "contains just as much personally identifiable data".

E.g. Name, address, nationality, DOB, national insurance number, telephone number, previous addresses, email address and signature. Everything your average identity thief needs.

The last 4 digits of a credit card isn't particularly personally identifiable data.

0
2
Aqua Marina

Electoral register

The electoral register contains just as much personally identifiable data as this leak, but I'd be interested to know how many reg pro-privacy-commenters have actually followed the steps to remove themselves from it.

https://ico.org.uk/for-the-public/electoral-register/

If you take the steps to remove yourself from the open register now, all subsequent years registrations will still remain published and in third party hands, so you're not really removing yourself from it, just not keeping it up to date. Unless you move house to a different area, in which case you'll be automatically opted back in, until you notice and opt out.

0
3

AES-256 keys sniffed in seconds using €200 of kit a few inches away

Aqua Marina

Try not to read this in a Liam Neeson voice.

I don't know who you are. I don't know what you want. What I do have are a very particular set of skills, skills I have acquired over a very long career. Skills that make me a nightmare for people like you. If you post a link to a clickbait article, I will look for you, I will find you, and you won't believe what happens next!

10
0

You wait ages for a sun, then two come along at once: All stars have twins, say astroboffins

Aqua Marina

Nibiru!

2
0

Facebook tried teaching bots art of negotiation – so the AI learned to lie

Aqua Marina

Please tell me more, how do you feel about the hats?

10
0

Hand in your notice – by 2022 there'll be 350,000 cybersecurity vacancies

Aqua Marina

"...are unwilling to hire less experienced candidates"

I remember in 2002 being told I was unsuitable for a job, because I didn't have 5 years experience in Windows 2000.

15
0

London City airport swaps control tower for digital cameras

Aqua Marina

Re: Optional

Cockpits eye view landing video here. Looks amazing, lands to a standstill in half the runway, then performs a u-turn!

http://www.mirror.co.uk/news/uk-news/how-land-plane-london-city-8610007

2
0

Britain shouldn't turn its back on EU drone regs, warns aerospace boffin

Aqua Marina

Re: Here be snowflakes...

"Because the rules do not tell you what you can do..."

I was under the impression that this is how exactly those EU countries still following Napoleonic law work.

European Napoleonic law = everything is forbidden apart from that enshrined in law.

British law = everything is legal, apart from that which is forbidden by law.

2
2

Robot lands a 737 by hand, on a dare from DARPA

Aqua Marina
Black Helicopters

Could anyone enlighten me why the plane has a yoke and a joystick? I would have thought it was one or t'other?

0
0

Android O-mg. Google won't kill screen hijack nasties on Android 6, 7 until the summer

Aqua Marina

I'm seeing something like this regularly on my iphone in Safari. A pop up fills the window, and cannot be shut down unless I click the button being offerred that will "let me speak to a microsoft technician who will remove the malware from my PC". The image seems to be perfectly sized so that I cannot scroll up or down to get to the control bars at the top or bottom. If I kill safari, then once I start it back up, the last page viewed is shown, and blam, I'm back to the same screen. To get around it I have to kill safari, then go into the settings and erase the safari history.

3
0

Ewe, get a womb! Docs grow baby lambs in shrink-wrap plastic bags

Aqua Marina
Coat

Re: Is that photo a photoshop job?

That gave me such a groan I feel obliged to grab your coat off you, and leave myself :)

8
0

Shooting org demands answers from Met Police over gun owner blab

Aqua Marina

Let them know they screwed up (and possibly broke the law) on their Facebook page

https://www.facebook.com/SWTechnology

Tweet them too https://twitter.com/smartwaternews

2
0

Oh snap! UK Prime Minister Theresa May calls June election

Aqua Marina

Re: Dodgy ads!

I read that (and still do) as "Dodgy ADSL".

I thought "Oh finally an IT angle to a political thread" :)

0
0

NASA agent faces heat for 'degrading' moon rock sting during which grandmother wet herself

Aqua Marina
Trollface

Time to voice your disapproval...

...on their facebook page

https://www.facebook.com/NASA/

1
0

'Clearance sale' shows Apple's iPad is over. It's done

Aqua Marina

Re: Education PC seller says Apple is no good in that market

"Aye, i know at least one secondary school where Ipads are actually mandatory, with various finance options"

I was furious when my lads school sent home a letter stating all children would need an iPad in the following term. They had an offering for the latest and greatest with finance, and a disclaimer stating that lesser models might not be capable of running the schools software.

They were effectively painting a target on the backs of all the kids saying "mug me". Every kid in town now walks to and from school with a grands worth of iPad waiting for the bag snatchers.

2
0

Jim Kubicek Cumming Forsythe Chamber of Commerce

Aqua Marina
Megaphone

Jim Kubicek Cumming Forsythe Chamber of Commerce

Well, after a month of silence and no indictment, it looks like the local fuzz have decided that character assassination is in order. A detective who says he rarely comments on investigations, comments enough to fill this article. Surely the appropriate place for his comments would be court?

http://mspmentor.net/managed-services/msp-denies-destroying-office-365-data-nonpayment-flap#comment-170101

0
0

US Marines seek a few supposedly good men ... who leaked naked pics of a few good women

Aqua Marina

Probably not politically correct of me to say this, but one of my female friends was forbidden (as much as she could be) by her dad from following his footsteps in a career in the army, because (in his words) the female soldiers were treated as beds by the men, and that most of the women didn't mind this. He put it down to the training having a confidence boosting effect on both sexes, where there was no shame felt by what they got up to, until people started getting caught out when they went too far.

10
0

COP BLOCKED: Uber app thwarted arrests of its drivers by fooling police with 'ghost cars'

Aqua Marina

Re: tbh, Uber has a point

"If Uber operates in a country where Uber is not legally allowed to operate, then Uber is operating illegaly. Are you able to follow that?".

By your logic if the police set up a speed trap on my way to work, and I decide that day to change my route because of that, I should be arrested for avoiding the speed trap, because I normally speed on my way to work.

You're forgetting innocent unless proven guilty. Uber like most career criminals known to the police, are probably up to something they shouldn't be. But because we live in a civilised society, we just can't round people up based on "They are up to something". Likewise in the same civilised society, you can't set up a trap, then round up all the usual suspects who fail to fall into it. Due process and all that.

Are you able to follow that?

3
5

You're Donald Trump's sysadmin. You've got data leaks coming out the *ss. What to do

Aqua Marina

Reminds me of the time a CEO of a UK based chain-store wanted a webcam on his desk, but at the same time the webcam wouldn't be able to allow the person on the other end to read any documents the CEO might have within view of the webcam. "If I hold up a sensitive document in front of the webcam during a conference, I don't want him to be able to read it". It was a real head-banging moment, he genuinely thought that there was a technical way to stop the camera from focusing on anything other than his face. This was in 2001.

19
0

'I'm innocent!' says IT contractor on trial after Office 365 bill row spiraled out of control

Aqua Marina

Paper trail

The paperwork trail will ultimately exonerate or lack of will crucify him.

If he has records of sending via some form of recorded delivery, or acknowledged email, an invoice for the service, a statement, a reminder, a 7 day letter and a final notice then he's covered.

If however he has seen red when they have terminated him, and he's shut down the service in spite, it's unlikely the judge will take his side.

Always do things in writing, never by phone.

23
0

Dead cockroaches make excellent magnets – now what are we supposed to do with this info?

Aqua Marina
Coat

I for one welcome our future post-apocalyptic magnetic cockroach overlords!

I'd love to know what transpired prior to the scientist getting the idea "I wonder how magnetic a dead cockroach is". It's just so random.

10
0

Global IPv4 address drought: Seriously, we're done now. We're done

Aqua Marina

Re: "Let's use a firewall"

"The issue with a firewall is it requires network skills to be properly configured. NAT implies a simple "all inbound connections denied" default rule"

I think the issue is, that you have only ever used domestic / SOHO routers that appear to have merged the NAT and firewall functionality together, blinding you to the fact that they are 2 separate functions. You are blindly trusting the manufacturers of these devices to have made this choice for you and that it works in the manner you believe. Here's the eye opener for you, you are wrong. Many of the SOHO / domestic routers look like they work how you believe, but in reality they have fudged the interface to give you that impression. Have a dig down in the advanced settings, there you will see that the default settings are not configured as you believe (sometimes you have to enter the CLI), and that you have to do do some tinkering to make your network as secure as you think it is now.

TLDR: SOHO / domestic router manufacturers have lulled you into a false sense of security by hiding technical stuff.

8
2

Page:

Forums

Biting the hand that feeds IT © 1998–2017