* Posts by Chewi

157 posts • joined 4 Feb 2013


DDoS sueball, felonious fonts, leaky Android file manager, blundering building security, etc etc

Thumb Down

Don't touch ES File Explorer with a barge pole

I vaguely recall it was good once but it borders on malware now, this vulnerability aside.

If I could turn back time, I'd tell you to keep that old Radarange at home


Re: Mobile Microwave!

Fair enough, I've only seen the anime.


Mobile Microwave!

Anyone here who's seen/played Steins;Gate is probably grinning right about now. If you haven't, check it out.

Amazon's homegrown 2.3GHz 64-bit Graviton processor was very nearly an AMD Arm CPU



Few are likely to want it but anyone know if these can do 32-bit? I gather the Cortex-A72 usually can but I'm unsure whether it's true in this context. Cavium ThunderX is (usually?) 64-bit only, which means no one else offers 32-bit ARM in the cloud, unless it's lower spec 32-bit-only bare metal.

Civil rights group Liberty walks out on British cops' database consultation

Big Brother

This is just the Snooper's Charter all over again. Let's invite everybody round for a chat, pretend we listened, and then do whatever the fuck we like.

Sync your teeth into power browser Vivaldi's largest update so far

Thumb Up

My thoughts exactly.

Scottish brewery recovers from ransomware attack


Well worth a visit

I'm very surprised to see the Arran Brewery featured here as I've visited the place and it's tiny! A reminder that these bastards can take down businesses large and small. Anyhow, it's well worth a visit, the island is beautiful and the beer is excellent. I recommend Red Squirrel.

Benchmark smartphone drama: We wouldn't call it cheating, says Huawei, but look, everyone's at it


How did they ever think they'd get Huawei with it!?

Seriously El Reg, you missed a trick there.

Google is 20, Chrome is 10, and Microsoft would rather ignore the Nokia deal's 5th birthday


Re: "play on the mathematical term"

If only they'd googled it.

Vodafone's spending pays off - but EE hangs on to UK network crown


Re: Vodafone .....

I dealt with them for the first time this month. My mobile wi-fi dongle worked a treat in Jersey and was a great deal at just £35 with 6GB data included. No other network came close. However, the whole experience was soured by appalling customer service.

I ordered at 9pm on a Thursday. They said they offered next day delivery for orders before 10pm but the system claimed the next day was Monday. I chose Saturday delivery at additional expense, as I was departing on the Monday. By Saturday morning, it was not appearing on their tracking system. Support assured me it would surely arrive later that day. Of course it didn't. On Sunday, support assured me it would surely arrive on Monday. Still no sign of it on the tracker or at my front door so I ventured out to the nearest store to buy another one.

Publishing their store numbers would be far too helpful so I wasn't able to check their stock in advance. The store staff informed me that they didn't have any so I had to drive half an hour in the opposite direction to the next nearest store. Even that took a while as they had to faff about converting a contract unit to PAYG. I made sure the damn thing worked before driving off.

In Jersey, it all worked fine until it hit 1GB and refused to go any further. I was met with cookie overflow errors when trying to log into the website that could only be resolved by clearing my cookies and starting again. I eventually called them up and they gave no explanation for the issue but gave me a further 6GB to play with.

The original order did eventually show up... the following Saturday, the day before I returned. :-| On getting back, I called them again to ask for a return envelope. You'd think I'd asked for the moon on a stick. What seemed like a simple request too half an hour and a lot of inexplicable confusion on their side. At the time of writing, I still have not received the envelope. What I did get shortly after that call, was an unexpected email to tell me that they had disabled the adult content filter as I had requested. WTF.

Suffice to say that I will be requesting an unlock code for the dongle at the first opportunity.

If Brussels wants Android forks, phone makers aren't helping


HTC still allows this?

Are you sure they've ceased allowing this? I was surprised and disappointed to read that but according to this U12+ guide, you just have to choose the All Other Supported Models option in the drop-down.

Farewell then, Slack: The grown-ups have arrived


You'll have to pry IRC and XMPP from my cold dead fingers!!!

Boffin botheration as IET lifts axe on 20-year-old email alias service



You're not wrong. I met someone with such an address in person recently and complimented them on it!

Happy birthday, you lumbering MS-DOS-based mess: Windows 98 turns 20 today


Re: The all-important Second Edition

Unfortunately migrating to a Second Edition spouse is often hampered by vendor lock-in.


The all-important Second Edition

If you didn't have the pleasure of trying both editions, the Second Edition was a hell of a lot more stable although I am obviously speaking in relative terms. ;-)

HTC U12+: You said we should wait and review the retail product. Hate to break it to you, but...


Re: Usual errors

"Not sure if semantics has evolved over the last decade, but if something still takes up storage space, it's NOT removed. Just because something is hidden or disabled doesn't mean it's removed."

Assuming these apps are on the /system partition (which they probably are) then you wouldn't be able to use that space, even if they were removed, at least without rooting. On the plus side, disabling them does prevent further space being taken up by (non-firmware) updates, which are not applied to /system.

Meet TLBleed: A crypto-key-leaking CPU attack that Intel reckons we shouldn't worry about


Phoronix did some benchmarks in the wake of this. Make of it what you will but it quoted 30% at the end.


Done and dusted? Vast storm gobbles NASA's long-lived Mars robot

Thumb Up

Re: Opportunity already has her own XKCD

That's one of my favourites!

In defence of online ads: The 'net ain't free and you ain't paying


Re: Computer Life

It included the winning entry for a competition to do the best home-made DOOM video. I recall some kid shouting "you got the super shotgun!" and his Dad doing some heavy breathing while standing on a green piece of paper. *lol*

The cover disk featured huge a collection of DOOM maps harvested from various BBS's at the time.

I am starting to wonder whether I've got mixed up with a different magazine. Hopefully not. I definitely got Computer Life at one point at least.


Computer Life

Didn't know you were involved with that. I bought one issue, the one that was almost entirely about DOOM and it was one of the best magazine issues I ever bought and certainly the most memorable.

As for your stance on ads, I think you're right on the money. I don't use ad blockers on principle.

The future of radio may well be digital, but it won't survive on DAB


Avoid VQ radios

The reception in my house is fine but my VQ Christie radio is the buggiest piece of crap I have ever had the displeasure of owning. There's practically nothing good I can say about it except that it looks nice. I complained and they sent a replacement but it was just as bad. I should have got my money back while I had with chance. I would entertain you with all its crazy quirks but I don't have the hours to spare.

Void Linux gave itself to the void, Korora needs a long siesta – life is hard for small distros



Thanks for the Gentoo mention! We're still alive and kicking. :-)

Chrome 66: Get into the bin, auto-playing vids and Symantec certs!


Re: Ok, so you have fixed some bugs

Erm, you can install Chrome extensions in Vivaldi.

UK spy agency warns Brit telcos to flee from ZTE gear


Re: Don't know about infrastructure but great phones

Yep but like many, I put a custom ROM on it so this probably wasn't an issue. Hopefully?

Linux 4.16 arrives, keeps melting Meltdown, preps to axe eight CPUs


Re: And so fairwell blackfin, cris, frv, m32r, metag, mn10300, score, and tile.

> Of which I only even recognize Blackfin (AMD?) & Tile (IBM?)

Blackfin is Analog Devices, not AMD. I have one such box sitting here. With no MMU, it's not the easiest thing to run Linux on but it has some analogue phone ports, which are usually quite expensive. I now have a broadband-only line from A&A but I had toyed with the idea of hooking this box up to the phone port on my alarm system so that it could trigger a bunch of other things in the house when the alarm goes off!

Your code is RUBBISH, says GitHub. Good thing we're here to save you


It's worth pointing out that this probably applies more to private projects than open source ones on the Ruby side. It's considered bad practise to commit Gemfile.lock in open source projects and you're not supposed to lock down dependencies to exact versions in your gemspec either. The gemspec may have something like ~> 1.2 and the whole of 1.x may be vulnerable and unmaintained but it's not clear whether this checks for that. Such cases often involve more than a simple "bump" too.

Privacy folk raise alarm over schools snooping on kids' online habits

Big Brother

Not a new problem

As a tech parent, I'm not going to give any immediate opinion over whether tracking in schools is good or bad, I need to think about it.

What's interesting is that this isn't even a new problem. Back in 2000, I was collared by the head of sixth form because they'd discovered a bunch of kids playing Doom in the library and they'd traced the original download back to me. I only shared it with a select few but then some idiot started handing it out to everyone and it quickly got out of control. Obviously I'd be able to cover my tracks a lot better now. ;-) I was told to apologise to the head of IT but he couldn't seem to hide his enjoyment of commandeering the PCs remotely, leaving the kids rather spooked. I suppose the fact that he was able to do that was also a concern in itself.

Cali cops' Clue caper: Apple technicans, in an iPhone repair lab, with the 1,600 silent 911 calls


Yeah, my 3310 did that to me once as I was pulling it out of my pocket but luckily I noticed and hung up before it connected... I think.

A bit of intel on AMD's embedded Epyc and Ryzen processors


These processors have never been affected by Meltdown.

TalkTalk to splash £1.5bn laying full fibre on 3 million doorsteps


Re: Good Idea.. but..

Does this necessarily mean using TalkTalk as an ISP though? I'm with A&A and I have a BT line (resold via A&A) but use the TalkTalk backhaul. This gives me no problems and RevK's blog gives the impression that their backhaul is just as good as BT's.

‘I crashed a rack full of servers with my butt’



Whilst building my new desktop last year, I was hunched over it to reach the back when I discovered that I had the ability to switch it on with my balls. The power button is located on the top.

NASA finds satellite, realises it has lost the software and kit that talk to it


Re: Need help, NASA?

It says it was presumed dead in 2005. It doesn't say when it was sent up.

New Sky thinking: Media giant makes dish-swerving move on Netflix territory


I did wonder whether it was a bit late in the day to start setting up a new Linux-based DVB-S box at the end of last year but I figured it would still be very many years before they shut all this off.

Job ad for designer proves its point with MS Paint shocker


Re: Bonus points

Yes, that did occur to me afterwards.

Thumb Up

Bonus points

…for inappropriate use of Comic Sans!!

The ultimate vendor lock-in: High school opens on Oracle campus


“We are not *just* training kids to be Oracle employees or *just* using Oracle products.”

So you're doing both of those things then?

Scotland, now is your time… to launch Brexit Britain into SPAAAACE!


Life imitating art?


HSBC biz banking crypto: The case of the vanishing green padlock and... what domain are we on again?


Android app

I suspect the app has a token as well as the short password so guessing the password alone wouldn't be enough. I've not messed about with it to find out though as I had enough trouble getting my account to work in the first place.

As for sending funds through the app, I still can't figure out how you allow that. I send funds through the web site all the time but my recipient list in the app is always empty.

.UK domains left at risk of theft in Enom blunder


Mmmm domains

Nom nom nom.

Boffins hijack bootloaders for fun and games on Android


Re: Am I missing something

In the case of malware, yes, but if you're trying to install a newer version of Android, no. You usually can't replace the kernel without unlocking the bootloader so while you may be able to get root and even load a custom ROM, you'll be effectively stuck on the same version of Android.

Microsoft ctrl-Zs 'killing' Paint, by which we mean offering naff app through Windows Store


Who needs MS Paint when you can have...

Tux Paint! The noises it makes crack me up every time.

I was in Edinburgh's sick kids hospital a while back and saw they had a (hopefully disconnected) Windows XP desktop running MS Paint to keep the kids amused. The temptation to install Tux Paint via a USB stick was very strong but so was the risk of my wife divorcing me on the spot.

Firefox doesn't need to be No 1 – and that's OK, 'cos it's falling off a cliff


Re: Finally!

Me too. However, competition is very important so I want Firefox to live. I'm interested to see what they can do with their next generation Servo stuff but the UI is generally the dealbreaker.

Find your happy place: Fedora 26 has landed



I installed F26 with LXQt on a colleague's underpowered laptop. First impressions are good, it's made things a bit nippier compared to F25 with KDE.

UK.gov snaps on rubber gloves, prepares for mandatory porn checks


Re: Worthless.

You won't even need to do that. This will be all but unenforceable as most porn sites are hosted outside of this country. All this will do is put the British porn industry out of business.

What's got a vast attack surface and runs on Linux? Windows Defender, of course


I'm not entirely surprised

He used to be a Gentoo Linux developer.

Man sues date for cinema texting fiasco, demands $17.31


"I wasn’t bothering anybody"

Evidently she was!

Leaked: The UK's secret blueprint with telcos for mass spying on internet, phones – and backdoors


Open Rights Group

The doubts about encryption aside, I'm really glad I joined the ORG recently. Please do the same.

Flatpak and Snaps aren't destined for graveyard of failed Linux tech yet

Thumb Down

They might seem nifty now but I don't see this ending well. Windows has been able to use this approach for years because it is a closed ecosystem with a relatively stable base. New Windows releases are few and far between and Windows software tends to run standalone with dependencies limited to invisible libraries. Free software, on the other hand, is subject to much more rapid change, and is designed to reuse as much as possible, be it libraries or other applications. This stuff doesn't always just slot together like magic and that's just one of the reasons why we have distributions. Of course, there's also the bug fixes, security concerns, and so on. I think distribution developers are very underappreciated, especially by upstreams who only care about their own software and don't think about the bigger picture. If they made things easier rather than harder for distributions then we could package their updates more quickly. Fortunately the new Meson build system is making it easy to support both approaches and it is starting to gain traction.

I may be biased but I did try the OpenShot AppImage a couple of times. The first time, it crashed horribly. The second time, it was too slow to be usable, probably due to the video acceleration failing in some way.

As for bundled libraries, I wrote a script for Gentoo called esteam to unbundle libraries from Steam games as much as possible. Without this, I don't benefit from a fix to SDL that allows me to run games on my second screen, which is a much bigger TV in front of a much comfier sofa.

Deeming Facebook a 'publisher' of users' posts won't tackle paedo or terrorist content


I'm sorry, I didn't realise Facebook and WhatsApp were the only means of communicating anonymously these days. Tighter monitoring of these services will do little but drive the bad people further underground and infringe on other people's liberties.

Pirate of the Caribbean to play Hacker of the Caribbean


I'm surprised that having him play himself wasn't an option!


Biting the hand that feeds IT © 1998–2019