* Posts by Halfmad

561 posts • joined 16 Jan 2013


Google slides text message 2FA a little closer to the door


Re: embrace... extend... bloat?

Because he/she is incorrect, this is still a text being used, just in a different way.

Survey: Tech workers are terrified they will be sacked for being too old


Re: What companies forget...

We're far more likely to know our rights though and hold employers to the wording in our contracts.

Then again we're also far more likely to know about all the legacy cr*p the company refuses to replace due to costs..

BBC Telly Tax petition given new Parliament debate date


Re: If you have issues with the Telly Tax...

I watch on demand only, the only reason I don't mind the TV tax is that I really like Radio 2 and 4 and listen to both daily.

Citrix patches Netscaler hole, ARM TrustZone twisted, Android Dirty COW exploited – and more security fails



"With Unmetered Mitigation, we’re breaking the industry’s practice of surge pricing when someone comes under attack. It was an easy decision for us because it’s the right thing to do."

In other words, they are big enough now to offer it when competition may be unable to and they've milked the metered mitigation cow to death.

Ouch: Brit council still staggering weeks after ransomware bit its PCs


Re: Victim of what?

Were? How recent was this?

Absolutely attacks can be minimised, but that goes back to my initial point about how ICT can deal with it when it happens. I could lock down my own infrastructure far tighter than I have but that requires approval to do it and will require some money to be spent, money that many councils etc don't have to spare.


Re: Victim of what?

Any organisation can be hit by ransomware, it's how quickly and effectively they deal with it that shows the underlying skills and understanding their own IT department have of the tech they are using IMHO.

For this to drag on for weeks makes me think they're reliant on outsourced support in some way either for infrastructure or backups.

Scared of that new-fangled 'cloud'? Office 2019 to the rescue!


Re: Pricing

Openoffice > LibreOffice.

Deloitte is a sitting duck: Key systems with RDP open, VPN and proxy 'login details leaked'


Re: Some questions

I would love to know if they've got ISO 27001/2, Cyber Essentials Plus, PCCDSI etc.

Even more, I'd love to know which auditor signed those off.

Dyson to build electric car that doesn't suck


Re: The date seems very optimistic

You can easily buy expertise in these areas, it's not as if he personally needs to read up on it.

New HMRC IT boss to 'recuse' herself over Microsoft decisions


Ladies and Gentlemen, I cannot talk about Microsoft..

However I would like to say how beautiful this building is, I mean those victorian WINDOWS are stunning, absolutely trustworthy and secure, absolutely those Windows are TEN out of TEN.

Remember when Lenovo sold PCs with Superfish adware? It just got a mild scolding from FTC


Re: On de fence

From a typical users perspective they are very different statements, even if you change them to be as soft as possible most users would react with horror at the second one.

Will occasionally show adverts

Will occasionally show adverts based on the sh!t you've been up to bra!

UK not as keen on mobile wallets as mainland Europe and US



We've convenient payment systems many other countries haven't adopted to the same scale, tap to pay, chip and pin are fairly rare in the US.

I don't need to keep my card charged up for it to work either unlike a phone.

Lanarkshire NHS infection named as Bitpaymer variant


Re: Brute force RDP access?

Unlikely, they are behind PSN/N3 unless they have an external address for some reason.

UK infrastructure failing to meet the most basic cybersecurity standards


Dial it back a bit

"not having completed the 10 steps"..

That doesn't mean they wouldn't comply with them if they did. Does national infrastructure need to comply with every standard and recommendation going even when that would literally be impossible as many contracted each other in minor or major ways?

Jocks' USO block shock: BT's 10Mbps proposals risk 'rural monopoly'


Re: Blinkered politicians...

You need to look at this from the SNPs perspective. Rural farmers are far more likely to vote tory or lib dem than SNP. Stir it up against the current evil-tory government is a good thing for the SNP.

It's win-win because if the tories got ahead and tell BT to do it the SNP can say the tories are making a monopoly on the poor disadvantaged farmers, whilst themselves doing nothing to help.

Core-blimey! Intel's Core i9 18-core monster – the numbers


Re: Gamers?

Even with Rizen you'll see better performance in games but it particularly shines when streaming or recording too. Having more cores just generally keeps things a lot smoother.

The problem I increasingly have with Intel isn't core, it's locking down functionality on boards artificially behind paywalls purely to market them as different models. That's why my next CPU will be AMD, right now I've got an i7-6700K which is no slouch for video processing but there's little reason to head back to Intel and pay the premium.

Marcus Hutchins free for now as infosec world rallies around suspected banking malware dev


Something just fundamentally doesn't add up about the story.

However as we don't know where the problem is, either with Marcus or the authorities I'm minded to side with him, innocent until proven guilty and the narrative we're getting from the authorities doesn't make a huge amount of sense for anyone in the infosec world.

It's almost as if they are simply squeezing him for info for other cases, put pressure on him, prevent him leaving the country and see if he'll squeal on any contacts he has.

Forget sexy zero-days. Siemens medical scanners can be pwned by two-year-old-days


Re: Same impression here

"Which turns out to be not much of an impediment. In practically every application which offers both a point and click as well as a keyboard input (like AutoCAD, for example),"

Ex-draughtsman here, worked on DOS versions of AutoCAD all the way to Windows 95! Keyboard input was the way to go, mouse in right hand, left hand mashing various keys to manipulate what I was drawing at the time.

Yes there were GUIs especially in 95, but they were almost always slower unless buttons linked to macros we'd setup for snapping at pre-set distances etc. At all other times typing singular keys was quicker as the mouse pointer could remain on target.

Teen who texted boyfriend to kill himself gets 15 months jail


Re: Jump! Jump! Jump!

"Some people twice that age don't seem to be able to manage it"

Because they have never had to take responsibility for their actions doesn't mean they are incapable of doing so and shouldn't be held to a reasonable standard for young adults/adults.

Universal Service Oh... forget the Obligation. BT offers to stump up £600m for 10Mbps


Re: voltage



EU standard is 230v plus or minus 20v, with mainland Europe being 220 plus or minus 10v and the UK sitting at 240 plus or minus 10v. The EU standard is written so that it just gives the range used in such a way that any electronics kit sold to an EU customer should be safe anywhere in Europe

^^ UK voltage has been 230V plus or minus 10% for years.

Marketing giant Marketo forgets to renew domain name. Hilarity ensues


Re: Be Paranoid

I waited 2 years to grab a domain I'd been wanting for longer than that. When it changed ownership and wasn't being used I thought it was just a matter of time.

If you want to keep them, renew them. If you spend too much time shopping around someone like me may well have been waiting.

Take that, gender pay gap! Atos to offshore hundreds of BBC roles


New tooling?

Some new top level management with "sir" and "Dame" as titles picking up a pay cheque?

Want to visit your loved one in jail? How about Skype instead?


Re: Two wrongs...

Even if you blame the person in prison, the family and friends visiting don't deserve to be treated with such a lack of respect and empathy.

Currys PC World rapped after Knowhow Cloud ad ruled to be 'misleading'


What about this?

"All your data is protected and backed up in our military grade encrypted UK based data centres"

Are they actually owned by the company? Otherwise this simply isn't true. More likely this would be appropriate: "All your data is protected and backed up in the military grade encrypted UK based data centres which we rent rack space in."

The eyes have IT: TSB to roll out iris-scanning tech for mobile banking


I heard an interview with an "expert" about this.

Apparently it's great for customers because:

1. You don't need to physically touch the device to login and check balances etc.

2. It's more secure than finger prints.

3. It's just jolly bloody great.

OK well let's see.

1. You can login accidentally just by f*cking looking at it.

2. You still need to physically access the device which is in your f*cking hand to do anything in the app.

3. It can be bypassed using a photograph and a contact lens and as camera get better..

Moneysupermarket fined £80,000 for spamming seven million customers


Fines are always stupidly low

7+ million people spammed.

80K fine.

I'm sure they'll totally learn their lesson.

'Millions of IoT gizmos' wide open to hijackers after devs drop gSOAP


Re: Maybe I'm growing into a grumpy cynic but...

That'd be like finding a needle in a haystack..

Want to kill your IT security team? Put the top hacker in charge


The NHS sort of does this in my area, the trust has managers who are on a grade below some of the staff they manage as those staff are specialists in their area. Sadly this isn't the case in IT departments though.


Re: So the obvious solution is...

This is how healthcare tends to handle clinicians. Sadly it doesn't extend beyond that so we end up with the best staff going into management and making an **** of it. Many of the dreaded NHS "Middle managers" I know were fantastic in their fields and the only option to progress was to move out of it into managing the staff working in that field.

Then they themselves can no longer contribute anywhere near as much.

Flight Centre leaks fliers' passport details to 'potential suppliers'


Don't forget it's not just about the potential to leak that data

There's a debate over whether people testing system readiness should have access to person identifiable information. They have no need to access that particular data, so they should really be using randomly generated data.

Ubuntu Linux now on Windows Store (for Insiders)


I know I'll be down voted for this

But at least it gives more exposure to Linux. I know two of my friends kids will be all over this as it gives them a way to tinker with Linux more readily without annoying their windows obsessed dads until they get their own PCs. Both currently use live linux CDs to mess about.

Bloke takes over every .io domain by snapping up crucial name servers


"Bloke takes over every .io domain by snapping up crucial name servers"

then a few paragraphs down

"It's worth pointing out that owning four of the seven authoritative name servers doesn't grant full control over .io."

So which is it el 'reg?

Good luck building a VR PC: Ethereum miners are buying all the GPUs


Re: Not to worry

Generally less stressful for the card than the hot/cold of gaming. Buy card, reapply fresh thermal paste and a new cooler and it'll be fine.

I've still got a couple of 7950s in Crossfire on a PC which ran for 3 years overclocked at a friends house.

Largest advertising company in the world still wincing after NotPetya punch


Re: Is it just me...

Those local IT staff don't need to understand it, they need to have a process in place and training to say "look guys, you use your admin account when you need to do admin work, at all other times you use a standard account". Nice and simple, also don't give access to network shares etc from the admin accounts to stop them wanting to use their personal shares etc. Typically these accounts require local admin rights and very little rights on the network.

Hell I can monitor admin account usage due to the way our transparent proxy picks up anyone launching a browser or windows looking for updates.

Judge used personal email to send out details of sensitive case


Re: A digital watch?


Had to be done.


Re: At least it seems it's an exception

If companies don't want staff to use things like cloud then policy/guidance is only the first step. Step two is to block them on work computers.

This is typically where things get messy as there's almost always exceptions to be made as companies you collaborate with start supplying information only via cloud based solutions.

PCs will get pricier and you're gonna like it, say Gartner market shamans


Re: Value for money?

We get semi-decent PCs at work, although an SSD would be a massive help when juggling a VM and a large unwieldy spreadsheet people demand I use.

The biggest problem without a doubt though is the f*cking monitors. They're all widescreens, it's like looking through a letterbox compared to the 4K monitor I have at home. The one I'm using just now is 1600x900

900! I'd rather have a 1080P monitor than this sh!t.

'Bio-hacker' embeds public transport ticket under his skin


Re: Easy fix

Or sown it into the cuff of a jacket he regularly wears etc.

Clothing in general with little zip pockets near the cuffs would be ideal for this sort of thing.


Ubuntu 'weaponised' to cure NHS of its addiction to Microsoft Windows


Re: Terminal servers?

We use to do this, problem is reliance on boardband connections, even with failover circuits when it happens you can have many hours or even days of outages.

That's frankly unacceptable but no amount of stamping of feet and pointing at an SLA helps in that situation.


Re: Good luck.

Not for clinical systems rules out 95% of computers in most health trusts/boards as clinicians have to have access to clinical systems, not just in wards.

They can say that but the way these places work means it's not possible WITHOUT including those and preferably as early as possible as frankly many developers dont have a linux client from my experience so far. Sure they can make one, but that costs money and takes time.


Good luck.

But for many places 2.5 years isn't long enough to move over even if it was a proven option right now. Existing contracts for many clinical systems are 3 years+ as a minimum and moving off those will have a major cost in terms of finding an alternative system and training etc.

I'd love to have the flexibility of not being on Windows but no way will anyone be fully off it by 2020 for this, not without a huge chunk of additional funding and staff.

London suffers from 'sub-standard' connectivity - report


Stop comparing to the best.

Compare to the average across the country, that's what most of us are stuck at.

Dixons Carphone stirs PC Curry, reports 10% profit gravy


Re: Actually not terrible

As long as you're selective you can get what you want with just a little numpty-surcharge over internet sites.

It's things like whole systems, cables and audio stuff that's usually insanely price and of course those warranties!

Murdoch's £11.7bn Sky takeover referred to competition regulator


Re: Why not just say NO?

You require a politician to say no to the media? are you mad?

He'll get enough stick for referring this to the competition regulator.


Re: NowTV

I recently got a box with a 3 month pass for £10 in sainsburys. I've cancelled my current subscription and will then register a new account to claim the 3 month pass.

Should be noted that Now TV and sky share customer information.

Cisco and McAfee decide users just can't be trusted not to click on dodgy attachments


Re: Won't work

That's why this is part of a layered defence, although I doubt Cisco and McAfee will call it that.

Can't rely on any one vendor to save you, especially McAfee IMHO it's an odd teaming up.

Watchdog slaps NHS for failure to tackle correspondence backlog


ICO should step in.

Any patients asking for copies of their own records wouldn't have been able to be given complete sets due to this missing data sitting at the SBS but nobody would have known that other than the SBS.

They have fundamentally failed to care for the data in their possession whilst data controllers.

US voter info stored on wide-open cloud box, thanks to bungling Republican contractor


Re: Voter registration data is not confidential

That's fine but they started tagging things onto it, some true, some not and now that's public.

Whether it can be considered sensitive is another matter but it's certainly embarrassing for the firms involved.

Banking websites are 'littered with trackers' ogling your credit risk


Re: I think we need to know...

Don't investigate yet, wait until GDPR kicks in..

Apple gives world ... umm ... not much new actually


Microsoft are like the mad uncle

In their shed banging out ideas, doesn't matter if most are awful you need to at least give them credit for trying some of their whacky sh!t. Every so often they come up with something clever and then someone else actually makes it useful.

Apple have become incredibly safe and scared of trying out new things, they'll happily buy a company that's already done that - but rarely push any boundaries themselves.


Biting the hand that feeds IT © 1998–2019