* Posts by Spazturtle

67 posts • joined 26 Jul 2012

Page:

Scottish brewery recovers from ransomware attack

Spazturtle

Re: Customer caught

"But a NAS that supports automated daily snapshots would have had a sporting chance of recovery "

An automated backup likely means the backup drive is attached to the system, in which case it could also be encrypted by the ransomware. I remember a guy telling me about how the company he used to work for used USB hard drives for backups and they were only connected to the servers during the backup, one day in the middle of a backup lighting struck the building and killed not only the servers but also the USB hard drives.

If a backup drive is connected to the system then it no longer counts as a backup for the duration of the time it is connected, this is why you need to rotate backup drives so that you always have an isolated backup.

11
0
Spazturtle

Ransoms only work because people pay them, if people stopped paying them then people would stop taking things ransom. Also we were talking about ransomware, not people kidnapping other.

In regards to kidnapping, it is already illegal to pay a ransom under anti-terrorism laws.

https://assets.publishing.service.gov.uk/government/uploads/system/uploads/attachment_data/file/540539/CTS_Bill_-_Factsheet_9_-_Kidnap_and_Ransom.pdf

8
2
Spazturtle

Paying the ransom should be considered funding organised crime and people who pay should be prosecuted.

16
8

You're alone in a room with the Windows 10 out-of-the-box apps. What do you do?

Spazturtle

Re: Not turn them in to apps.

Not sure about this particular team but some windows software teams use macs running linux for their development environment. Internally they will use whatever allows them to get the job done as fast as possible, time is money after all.

7
1

Still using Skype? Good news! After HOURS of meetings, Microsoft reckons it knows when you're Not Active

Spazturtle

If work on a single feature taking hours is tweet worthy then we have 2 options:

1) Skype devs typically do less then an hours work a day.

or

2) The entire Skype dev team has an extreme case of ADHD.

14
0

Renegade 3D-printing gunsmith Cody Wilson on the run in Taipei from child sex allegations

Spazturtle

Re: Upped the charge...

In the US there is no defense to this other then "It didn't happen" even if she showed him a fake ID that said she was 21 it doesn't matter, he can't use that as a defense.

3
0
Spazturtle

Isn't the website meant to vet people to make sure they are over 18? If so then they should be charged with facilitation.

13
0

Developer goes rogue, shoots four colleagues at ERP code maker

Spazturtle

Re: A gun is involved in every single mass shooting.

"SSRIs are taken as a result of mental problems (stress, depression etc) - they are symptom not the cause."

SSRIs are massively over prescribed in the US and violent behavior is a known side effect of SSRIs.

"I'm expecting some serious woo to back that up."

Propylene glycol and Phenoxyethanol are known neurotoxins that cause CNS damage.

4
5
Spazturtle

Re: A gun is involved in every single mass shooting.

Guns are not the issue, banning guns would reduce violence and crime by such a statistically insignificant number that nobody would even notice it.

The US has a problem with violence and mental illness, caused by many things such as the lead and mercury in most US drinking water, the SSRIs that people take like candy (notice how most spree killers were taking SSRIs, SSRIs are involved in spree killings more often then guns are), the neurotoxin preservatives in food and the self reinforcing culture of violence that US cities have.

8
16

Remember when Apple's FaceTime stopped working years ago? Yeah, that was deliberate

Spazturtle

Re: Give and Take

" At least you can count on the features you had when you got the thing still working"

What are you talking about? I have an Android device right here where the YouTube app is saying I need to upgrade the app in order to watch videos, but the new app doesn't run on this device.

13
0

Congrats on keeping out the hackers. Now, you've taken care of rogue insiders, right? Hello?

Spazturtle

Re: Lemme guess...

Already exists, it is call "User behavior analytics".

1
0

What's that smell? Oh, it's Newegg cracked open by card slurpers

Spazturtle

Re: Client or server.

Due to how NPM works even a single clock widget can have thousands of dependencies. Using NPM and auditing all scripts you serve are mutually exclusive.

Somebody posted a blog post talking about how easy it is to steal credit card data from sites thanks to NPM a while ago:

https://hackernoon.com/im-harvesting-credit-card-numbers-and-passwords-from-your-site-here-s-how-9a8cb347c5b5

1
0
Spazturtle

Impossible to do when you have tens of thousands of NPM dependencies that each talk back to some server.

3
0

30-up: You know what? Those really weren't the days

Spazturtle

Re: 'Twas in the year of '88

"mind you an ordinary Cherry keyboard was touching £100. queue gasps from the youngsters :)"

Youngsters would think that £100 is a pretty good price for a Cherry mechanical keyboard.

11
0

Man cuffed for testing fruit with bum cheek pre-purchase

Spazturtle

Re: Disgusting but not criminal.

People go to the toilet and don't wash their hands before touching the fruit, do you think that doesn't get it dirty? He didn't cause anymore damage that that does, and people are fine with that and accept it as normal. It's not criminal if he didn't do anything different to what the store normally lets people do to the fruit.

The pillocks are the ones who don't thoroughly wash fruit when they buy it.

0
4
Spazturtle

Disgusting but not criminal.

Any decent lawyer will get the charges dropped, he caused no more 'damage' to the fruit then simply picking it up does.

1
12

'Men only' job ad posts land Facebook in boiling hot water with ACLU

Spazturtle

Re: Gender bias in advertising

"https://data.oecd.org/earnwage/gender-wage-gap.htm"

That is meaningless data as it is not measuring people with the same job. Men and woman who are hired to do the same job are paid the same, this is the law. Will you be complaining about the wage gap between cleaners and neurosurgeons next?

2
4
Spazturtle

Re: Being Blonde

Facebook charge extra if you want your advert shown to women due to higher demand. So it's not that they didn't want women to see it because they didn't want to hire women, but that they simply didn't want to pay Facebook extra.

The company will argue that it was facebook that broke the law by charging more for female views then for male views.

2
3
Spazturtle

Re: Gender bias in advertising

Because he ended his post with some drivel about women getting paid less which is not true. For the same job women get paid the same as men, 1) it is a legal requirement to pay people the same and 2) if it was true companies would try and only hire women to save costs.

3
9
Spazturtle

Re: In the current environment, women are too much of a business risk..

You are assuming that 1) all complaints are true, 2) men are the only ones who perform sexual harassment and 3) the victim is always a woman.

6
5
Spazturtle

Re: I think some people might have missed something...

"No, of course not, it must be because men are just innately better, right?"

No not better, but more interested in that field, just like women dominate other fields that they are interested in.

17
5
Spazturtle

Re: In the current environment, women are too much of a business risk..

Rather sexist of you to assume that only women are sexually harassed. Women are just as capable of sexually harassing men as men are of women.

The treatment of men and women should be the same, if a woman asking a man out for a drink after work is not considered sexual harassment then a man asking a woman for a drink after work is also not sexual harassment.

29
6

FCC's 5G masterstroke little more than big biz cash giveaway – expert

Spazturtle

Re: It's a G thing

5Gs biggest improvements are in spectral efficiency and coverage, speed improvements are not the key feature.

So 5G will make it easier to cover rural areas and also reduce the number of towers you need in a city saving money allowing more to be spend on rural areas.

0
4

IT bods, beware! AWS claims Storage Gateway appliance doesn't need you to manage it

Spazturtle

Re: overbuilt much?

Not sure how much data you store but "2 big xeons and 128GB of ram" sounds about right for a NAS handling lots of data.

As a general rule of thumb for mission critical NASs you should have at minimum 1GB RAM per 1TB of storage.

1
0

Cloudflare invites folk to dabble in the 'distributed web' with InterPlanetary File System gateway

Spazturtle

Re: So, this is... wait, what is it?

No nobody has to store any thing they don't want to, you can host sometime and if somebody else copies it and hosts it then other people can find their copy with the same hash.

1
0

DNSSEC in a click: Cloudflare tries to crack uptake inertia

Spazturtle

Re: in large part because DNS providers don't see much of an upside to offering it

"Protection against spoofing is already done at the transport/application layer, specifically HTTPS (which protects both against DNS manipulation and other attacks like MITM)."

Only if the suite has a DNS CAA record set, which many sites don't (including theregister.co.uk). Without a CAA record I can go to a CA and get a valid certificate for theregister.co.uk and then perform a MITM attack.

2
0
Spazturtle

Re: El Reg writes "In some respects it is like IPv6...."

theregister.co.uk also has no DNS CAA record which means that anyone can ask a CA for a SSL certificate that is valid for theregister.co.uk and then be able to do a MITM attack.

1
0

Trump pulls trigger in US-China tit-for-tat tariff tiff: 10% slapped on $200bn of imported kit

Spazturtle

Re: China supply the world

If the tariffs make it cheaper to manufacture in India then China that US companies will move to India. As Indian manufacturing expands and gets cheaper then even more manufacturing will move there. The Chinese government have been worried about India stealing their manufacturing base for a while now.

And more and more companies are getting fed up with China for stealing their products and ignoring their IP, look at what happened to Micron. A Chinese company started making DRAM using Micron's designs and IP, so Micron sued them but the Chinese courts turned around and said that this Chinese company was the owner of these designs and IP and that Micron had to stop manufacturing DRAM.

Trump might not know what he is doing, but he didn't draw up these tariffs, career civil servants did, and they do know what they are doing and targeted areas where China is most vulnerable. These tariffs are bad for the US, but worse for China and in Trump's mind if you hurt somebody more then they hurt you then you have won, even if there was no reason for anyone to get hurt to begin with.

12
5

Microsoft: 'So, we can buy GitHub?' EU: 'We'll tell you on 19 October'

Spazturtle

Neither Microsoft or GitHub are American companies though. They are multinational.

4
0

Microsoft reveals train of mistakes that killed Azure in the South Central US 'incident'

Spazturtle

Re: Odd design choice

My guess is that were were some hot spots in the data center which could be fixed with having some fans to circulate air, but at normal temperatures they weren't an issue so somebody though "We can deal with that at some other time".

2
0
Spazturtle

Nobody is saying to only have it locally, you should always have an offsite backup. But you should also always have a local copy of the data.

3
0

Microsoft pulls plug on IPv6-only Wi-Fi network over borked VPN fears

Spazturtle

"I’ve been hearing “running out of IP Address” for over a decade (2 decades?)."

People have been warning of it for a long time, but we have now reached the point where we have run out. BT are now rolling out CG-NAT and Virgin will be soon. Say goodbye to online gaming and VOIP if your connection uses CG-NAT and the people you are trying to connect to don't have an IPv6 connection.

1
4
Spazturtle

BT have already started to roll out CG-NAT and Virgin Media will soon. We need IPv6 because we have now run out of IPv4 addresses. Soon people on BT or Virgin will not be able to do things like online gaming or VOIP over IPv4 due to the duel NAT of their router and CG-NAT.

3
5
Spazturtle

Re: Catch 22

Virgin Media will stop giving customers their own IPv4 address when they roll out DOCISS 3.1 and IPv6 (next year?), everyone in the same area will share a single IPv4 address.

BT have already started rolling out CG-NAT for IPv4.

People will suddenly start to care a lot more about IPv6 when they get told by customer support "Sorry your internet connection doesn't support online gaming/VOIP/whatever because your connection uses CG-NAT".

7
4

Amazon probes alleged bribery of staffers for data on e-tail platform

Spazturtle

They only care because this was found out. Amazon have very little internal security for their shopping division, a good system would have automatically flagged this up for review and Amazon would have found out earlier and been able to fire the people responsible whilst making sure the public never found out.

4
0

Leeds hospital launches campaign to 'axe the fax'

Spazturtle

It being usable or not is a moot point, if fax is the tool provided and somebody is told to send an x-ray to a doctor in another hospital then it will get faxed over and the person can say that they sent it over. When I moved from down south my old hospital faxed over my medical records including OCT scans, which are completely un-usable so the doctors at the hospital I now go to had to do all the scans again.

2
0
Spazturtle

Re: digital signatures

OR the NHS can just provision their own certificates like any medium - large business would do.

11
0
Spazturtle

1) Take digital x-ray, print it out and the fax it, ring up in 2 weeks time to check they actually looked at it..

2} Take digital x-ray, it's automatically added to the patients digital records, if anything looks odd the x-ray technician can add a flag to notify the doctor.

Yeah I'd pick #2 any day of the week.

Most of what is being faxed is already on the computers.

7
1
Spazturtle

"So you will need a encryption system that all the parties agree to and can use. "

You know you can sign emails with a digital certificate right?

"Or you use a fax"

And ensure the other person never sees the record all together as it gets lost?

4
2

New MeX-Files: The curious case of an evacuated US solar lab, the FBI – and bananas conspiracy theories

Spazturtle

Re: Conspiracy Theorists

That's not really true, schizophrenics all over the world have delusions about the CIA and FBI being after them or involved in some conspiracy. The CIA and FBI have nice and easy sounding names, and the US exports a lot of culture in the forms of TV shows, Movies ,ect which makes these ideas prevalent globally.

1
0

Sysadmin misses out on paycheck after student test runs amok

Spazturtle

All critical server should be in a rack with a UPS and the power cable going from the rack to the wall should use a IEC 60309 plug.

Using a standard plug for critical equipment is just silly.

22
1

Euro bureaucrats tie up .eu in red tape to stop Brexit Brits snatching back their web domains

Spazturtle

"Note how you must be a citizen of the US or have a business presence in the US."

A UK business can get a .us domain for it's site targeting US customers but cannot get a .eu domain for it's site targeting EU customers.

Not sure why your brought up the .us rules since they are much more liberal then the .eu rules and show how silly the .eu rules are.

2
3

UK.gov tells companies to draft contracts for data flows just in case they screw up Brexit

Spazturtle

No, so long as the UK continues to implement the GDPR and follow the GDPR rules on privacy, there is no requirement in the GDPR to follow other EU privacy laws. The GDPR was written so that non-EU countries could join and become GDPR nations, the US could become a GDPR nation if it wanted to and it would only have to adopt the GDPR, not any other EU privacy laws.

0
1
Spazturtle

Just because we are leaving the EU doesn't mean we are leaving the GDPR area, the UK will still be a valid GDPR nation even in the event of a no deal brexit.

0
3

The grand-plus iPhone is the new normal – this is no place for paupers

Spazturtle

Re: It's the Oxfam effect in action.

"They get p0wned because they've gone 4 years without a security update?"

Cheap phones from the likes of Xiaomi tend to get many years of security updates.

0
1
Spazturtle

Re: It's the Oxfam effect in action.

Very few people are swapping platforms at this point, and people are using the same phone for longer and longer, both Apple and Samsung are now targeting the £1000 price point. Meanwhile you can get phones that are almost as good from other vendors for £200 which also last multiple years, people used to get a new phone every year, then every 2 and now people are keeping phones for 5 years. Apple and Samsung can still make money selling a new phone to somebody every 5 years for £1000+, but what happens when people start buying phones for £200 and keeping them for 5 years? Xiaomi are launching in the UK soon so the cheap phone market is about to explode in the west.

The western market has been fully realized and exploited (in the financial usage of the word), and now they are trying to do the same to India and China. But what happens then when people in India and China start keeping their phones for longer and longer as the benefits of upgrading become very incremental?

Is the smartphone industry a bubble?

18
1

Apple in XS new sensation: Latest iPhone carries XS-sive price tag

Spazturtle

Re: What now?

Selling it for £800 after 2 years would mean you only paid £100 a year for it though and per year price is what was being compared, so the poster was assuming it would sell for £600 after 2 years.

0
0

First it was hashtags – now Amber Rudd gives us Brits knowledge on national ID cards

Spazturtle

Re: "people already hand over masses of info to private firms"...

Amber Rudd is an overgrown school prefect, and it doesn't help that the person she is trying to brown nose thinks that free will is a bad thing.

10
0

World's oldest URL – fragments 73,000 years old – discovered in cave

Spazturtle
Flame

Hash FFS!

# is called a hash, not a hashtag.

A Hashtag is a Hash(#) follow by a tag for example: #tag

It's only a hashtag if a tag follows the hash.

17
0

Microsoft: You don't want to use Edge? Are you sure? Really sure?

Spazturtle

Re: Block IE and Edge

"You'll have to reboot (or kexec) to use the new kernel though."

Security updates can be applied with live patching though, so if you are on the LTS Kernel then you only need to reboot every 6 years.

2
0

Page:

Forums

Biting the hand that feeds IT © 1998–2018