* Posts by Down not across

951 posts • joined 21 Mar 2013

Page:

Now UK bans carry-on lappies, phones, slabs on flights from six nations amid bomb fears

Down not across
Bronze badge

Re: Checked in luggage

Yes, but if your goal is to terrorize people, depressurizing a cargo hold (or starting a fire there) isn't nearly as spectacular as depressurizing a cabin full of people.

Explosive decompression of the cargo hold is unlikely to stay limited to the cargo hold.

1
1

'Sorry, I've forgotten my decryption password' is contempt of court, pal – US appeal judges

Down not across
Bronze badge

Re: I guess that means it's time to add a time component to the encryption

There's a secondary issue: how do you tell the difference between an encrypted disc and one full of random numbers? Or one containing two encrypted partitions, one of which is completely innocent?

I don't think you can (without having the password and therefore being able to decryp and mount). Not reliably anyway.

With two partitions, presence of one known encrypted partition (confirmed by it being decrypted by the provided password) might raise suspicion of any other partitions on the disk being also encrypted.

Possibly better option would be TC's hidden volumes (within a parent volume). Even then a keen eyed observer might get suspicious with discrepancy between apparent used vs free space.

There are of course various other ways presence of hidden volume might be revealed.

0
0
Down not across
Bronze badge

Re: I guess that means it's time to add a time component to the encryption

No successful logins after X days means the key is destroyed and the data cannot be recovered.

Or another password, that will destroy data (wipe or re-encrypt with random key).

Although for forensic investigation all the work would be happening on a copy rather than original so it would be fairly easy to spot what happened. End result would likely be in contempt anyway.

0
0

BlackBerry admits dying BB10 is in pain

Down not across
Bronze badge

Re: Support for Blackberry

Sorry no. I hope they (Whatsapp) burn in hell. The way they slurp contacts without those contacts' permission is unforgivable.

3
0
Down not across
Bronze badge

Link (and their other sync tool too) is the sorriest POS excuse for software I've seen yet.

You've not seen Samsung's Kies then?

0
0

The world's leading privacy pros talk GDPR with El Reg

Down not across
Bronze badge

Data transfers

“We're part of the information economy now, and the data transfers between Europe and the United States are so incredibly important we simply cannot abide by not allowing these data transfers to occur.”

Oh yes we can.

3
0

Linux, not Microsoft, the real winner of Windows Server on ARM

Down not across
Bronze badge

Re: Well said!

now only if some of this lovely ARM Server H/W was available to us mere mortals at prices that were compatible to i5/i7 systems and off the shelf. That may be sometime coming though.

Quite. I'd love to get my hands on few Cavium ThunderX2 boxes/boards to replace some aging x86 stuff with. At the moment the only realistic options for reducing power consumption are either crappy Atom (for some very light non-memory intensive workloads) or low power i5/i7 (or perhaps Naples, depending what AMD comes up with). Given a choice I'd opt for the Cavium over the others, given the goodies in the SoC.

1
0

Hell freezes over: We wrote an El Reg chatbot using Microsoft's AI

Down not across
Bronze badge

Re: This was first done around 1980

Or few lines of tcl for an eggdrop bot on IRC. There were some fairly clever ones back in the day.

3
0

User jams up PC. Literally. No, we don't know which flavour

Down not across
Bronze badge

Re: Good design my a***

Why?? I'll rephrase that. No I won't. Why?? The laptop is useless without wifi!

Ever tried to use a corporate laptop that tries to contact DC and bunch of other services, before you have had chance to login to VPN to make them available?

Being able to turn wifi off means windows (no, linux is often not an option on corporate machines) will complete login/resume from sleep in few seconds instead of spending several minutes trying to connect somewhere being utterly unresponsive until it finally gives up.

Just because you have no need for it doesn't mean others might not find it very useful or even necessary.

4
0
Down not across
Bronze badge

Re: Turbo Button

Turbo buttons should've been called snail buttons.

That is actually a valid point. In non-turbo mode the CPU would be clocked at 4.77 MHz and in turbo mode it would be usually around 8-10MHz. Wasn't just for gamed though. IIRC some ISA cards didn't always play nice with higher clock speeds, which was probably more due to bad implementation by some motherboards.

1
0
Down not across
Bronze badge

2-digit 7-segment display

Ah those wonderful Turbo buttons with a 2 digit 7 segment display that was set just with a jumper board.

I used to (sometimes) wire those via a little homebrew logic to the ISA bus to watch POST codes as the machine was (or not, as often could be the case) coming up.

Given it was not particularly great deal of effort, I was somewhat surprised no case/computer manufacturer never (that I remeber) offered that as an option.

1
0

Ubiquiti network gear can be 'hijacked by an evil URL' – thanks to its 20-year-old PHP build

Down not across
Bronze badge

Re: Pay peanuts

You say that as if Cisco etc have never had a stupid vulnerability or "feature" like being able to rewrite the firmware remotely without authentication...

Ok I bite.

I take you're referring to the Smart Install (yes, I agree in principle that most things named Smart something rarely are). Whilst I agree that the feature (I don't agree it being called a vulnerability since the behaviour and risk is well documented in Cisco's documentation) could no doubt benefit from additional security features, we are in the end talking about an enterprise feature which presumably is being used by qualified personnel.

Here is an excerpt from the doc linked to above:

The absence of an authorization or authentication mechanism in the Smart Install protocol between the client and the director can allow a client to process crafted Smart Install messages as if these messages were from the Smart Install Director. These include the following:

* Change the TFTP server address on Smart Install clients.

* Copy the startup configuration of client switches to the previously-changed and attacker-controlled TFTP server.

* Substitute the startup configuration of clients with a configuration created by the attacker, and forcing a reload of the clients after a configured time interval.

* Upgrade the IOS image on client switches to an image supplied by the attacker.

Execute arbitrary commands on client switches (applicable to Cisco IOS Release 15.2(2)E and later releases and Cisco IOS XE Release 3.6.0E and later releases.)

While designing a Smart Install architecture, care should be taken such that the infrastructure IP address space is not accessible to untrusted parties. Design considerations are listed in the Security Best Practices section of this document.

Let's face it, if you using this feature to provision kit into your network, why would you NOT add the no vstack into the config you push to new device?

0
0
Down not across
Bronze badge

Re: 20 year old PHP implementation?

I have no qualms still using csh on Solaris 2.5(?), which would be about 20 years old by now I'd have thought.

I do. I wouldn't have any issue of using sh though.

Not trying to start one of the oldest flamewars, just that I never liked c-shell.

0
0

FreeNAS sheds storage skin, tries on sexier hyperconverged garb

Down not across
Bronze badge

Re: Increased capability comes at a cost

Extra unneeded capability is not a benefit, no matter what iXSystem's roadmap says.

Quite.

After the splitTM, I was slightly torn as to which one to choose when it was time to upgrade from old trusty freenas 0.7.2. In the end, despite the lure of the plugins, I chose nas4free and it has performed impeccably. My old Microserver with 8GB RAM and intel pcie nic has not missed a beat. To my surprise it even imported old 0.7.2 mirrored volume, now of course long gone and copied over to new ZFS pool.

I think what iXSystems has done with FreeNAS is great and intend to give the new one a whirl to test, but for pure storage purposes nas4free has been flawless and I have no intention to retire that anytime soon.

2
0

Naming computers endangers privacy, say 'Net standards boffins

Down not across
Bronze badge

Re: “Kellyanne's_Microwave_Oven”

Might have to use that as an SSID next time I get bored.

0
0

Monday muster point for storage news. Get in here now if juggling terabytes is your trade

Down not across
Bronze badge
Thumb Up

ioSafe

Colour me impressed. Digging fully working storage (or at least drives) from remains of a burnt down building is impressive.

0
0

Tim Berners-Lee says privacy needs fixing – and calls for 'algorithmic transparency'

Down not across
Bronze badge

Re: "Control of personal data"

And that is as it should be. If you don't like those companies, don't use their services (I only use Uber in that list).

If it only was that simple. However it is not always up to you. For example: I don't use WhatsApp, but if anyone, who has my contact details in their phone does, my information ends up in WhatsApp's trove. I don't get a choice, or get asked if I allow that.

1
0

Family of technician slain by factory robot sues everyone involved

Down not across
Bronze badge
Coat

Who is liable?

The suit marks a grim but potentially important issue that will arise as more workplaces phase out manual labor in favor of robotic workers. When one of those units malfunctions and injures or kills human staff, just who should be considered liable?

Why, you call Elijah Baley of course. He will find out.

14
0
Down not across
Bronze badge

Re: 'Slain'

I clearly didn't have enough coffee yet and parsed the headline as the robot having slain the whole family.

6
0

User lubed PC with butter, because pressing a button didn't work

Down not across
Bronze badge

"Deluxe Paint."

Doesn't it make a mess of the DVD?

Nah. He said Deluxe, not Dulux.

7
1

MAC randomization: A massive failure that leaves iPhones, Android mobes open to tracking

Down not across
Bronze badge

Manufacturers have more than one OUI

For example:

$ grep -i samsung ethercodes.dat | wc -l

463

$ grep -i apple ethercodes.dat | wc -l

531

So just for apple multiply your number by 531 (as of mid February's oui.txt).

Also the uniqueness is only really an issue with regards to the AP you're associating with (ok, yes DHCP server, switch/router comes to play as well)

0
0

Western Digital CTO Martin Fink refused El Reg's questions, but did write this sweet essay

Down not across
Bronze badge

Thanks Martin (and Chris)

I really enjoyed the "essay".

Martin was quite clear, and explained, why the questions were wrong whilst answering to the extent it made sense to. Interesting way to look at things.

To get an idea where this is heding just think of a simplistic step like Oracle's Exadata where the controllers on disk have understanding of where clauses and how that benefits performance. SCM of course would take it to another level entirely.

0
0

Tesla 'API crashes' after update, angry rich bods complain

Down not across
Bronze badge

Pissed in CA

“I get concerned when there are server-side problems like this that go on for multiple days. I would be really pissed if I were on a road trip,” Made in CA added.

Why? AFAIK the car functions normally. Do you really need the app to use the car?

I'd be pissed off if the car depended on some flaky phone app to work.

<ObBritishEnglish>

I think highway patrol would be bit miffed is he was pissed while driving

</ObBritishEnglish>

0
0

Huawei's just changed the way you'll use Android

Down not across
Bronze badge

Re: "There's no way to customise this in current software builds: you get what you're given."

So to put it another way: If the built in storage on phones was priced the same as an SD card, would there still be the same demand for an SD card slot?

Yes.

If phone makers didn't charge a mark-up on bigger built in storage, is there still any advantage to an SD card slot?

Yes.

1
0

Spies do spying, part 97: Shock horror as CIA turn phones, TVs, computers into surveillance bugs

Down not across
Bronze badge

Re: @ Palpy: I think we speak of different things??

From a page in the Libreboot project:

"ME firmware versions 6.0 and later, which are found on all systems with an Intel Core i3/i5/i7 CPU and a PCH, include 'ME Ignition' firmware that performs some hardware initialization and power management. ... Due to the signature verification, developing free replacement firmware for the ME is basically impossible.

Since you quote Libreboot (as I have myself done in several posts), don't forget that Intel is not alone. AMD is equally evil with its equivalent PSP.

0
0

Linus Torvalds lashes devs who 'screw all the rules and processes' and send him 'crap'

Down not across
Bronze badge

I had a gigabyte mother board with an on board NIC that hated Ubuntu. It would disconnect and reconnect to the network every 30 seconds.

Sounds like what the usual Realtek crap ones do if you actually try to push any real traffic through them. I've given up on them and always install intel NIC. They just work. The Realtek is fine for emergency ssh, bit of SNMP,etc but trying any heavier traffic locks (at least some of) the RTL NICs up.

Not to mention dual/quad Intel NICs are dirt cheap on tat bazaar so it is not worth fighting with the Realteks.

5
0

Euro Patent Office puts itself on Interpol's level, demands access to staff phones and laptops

Down not across
Bronze badge

EPO must be paying ridiculously high wages

Why else would anyone still be working there?

Mind boggles that anyone would still be working for Battistelli.

1
0

Cisco says Smart Install is not a bug, not a vuln, releases blocker anyway

Down not across
Bronze badge

Re: Not good

I'm sorry, but I don't see this as a vulnerability. It is well documented, and Cisco even warns about it in their documentation.Yes it could've been designed to be more secure, and yes perhaps IOS should automatically turn it off after having fetched initial config, but these are not consumer devices so it is not unreasonable to expect some competence of RTFM and configuration from the staff deploying the kit.

If this is being successfully exploited, then some network "admins/engineers" aren't up to their job. What else is wrong in their configs and ACLs?

0
0
Down not across
Bronze badge

Storm in a teacup, mountain out of a molehill

I think this has been blown out of proportion. Yes, while the feature is intended for initial install, it could be used for re-install. Forgetting to turn it off sounds like someone not doing their job. Not to mention why on earth wouldn't the fetched configuration turn SMI off?

0
0

Wearables aren't dead but apps on wearables might be

Down not across
Bronze badge

Re: Withings

It's got notifications for calls and texts which is handier than you'd think (phone in pocket on vibrate and coat is on the back of a chair at work, for example).

I second that. Getting notification on calls and texts is the most useful feature. Obviously it also needs to be able to tell the time or it wouldn't be much of a watch.

0
0

I can DB clearly now the clouds are gone: Oracle 12c on-premises for Linux, SPARC

Down not across
Bronze badge

Is this new in 12cR2 or what ? My understanding was that this was already the case with 12c, has anything changed ?

Your understanding is correct. That is not new in 12cR2. That was there already in 12cR1.

0
0
Down not across
Bronze badge

Re: Patch weekend

I can also bitterly complain about how terrible the encryption tools are for TNS. It is *so much easier* to bolt an stunnel instance in front of the listener and never, ever, ever use an Oracle wallet - and safer too, since stunnel can sink itself into a chroot().

Wallet? Why are you still using COST instead of VNCR?

Oracle databases - wonderful software, until it's not.

That would be most of the time. It may have brief moments of something akin to wonderfulness, but they are very fleeting and definitely will not last.

0
0

One IP address, multiple SSL sites? Beating the great IPv4 squeeze

Down not across
Bronze badge

Re: Simple answer

They supply a media converter. I build my router out of an Atom and CentOS. :)

Ok, I'm curious. Did you try pfsense, and if you did what made you choose the way you did?

(yes, I'm aware Linux network stack has improved a lot and does support more obscure hardware better than FreeBSD)

0
0

Samsung phones, Apple's iPhones are 'overpriced', says top Huawei exec

Down not across
Bronze badge

Re: "Samsung. They spend a lot on marketing"

Do they think everyone has forgotten the Note 7 already...?

Of course they don't. Why do you think they're running that advert?

They'll bang that drum for a month or so at least until the Unpacked 2017.

0
0

Prisoners' 'innovative' anti-IMSI catcher defence was ... er, tinfoil

Down not across
Bronze badge

Re: Ambulance

I think prisons have fixed lines, just a guess. You know the world did function prior to the introduction of the mobile phone.

The OP listed more places than just prison. And you picked the only one where it would be expected not to have mobile phone coverage or where use would be prohibited even if turned silent.

1
0

AWS's S3 outage was so bad Amazon couldn't get into its own dashboard to warn the world

Down not across
Bronze badge

Re: Cant change mouse sensitivity?

Can't speak for mice, but Logitech Harmony remotes are apparently only configurable via cloudy stuff. Shame really as I would've purchased some. Ah well I'll stick with my old Marantz RC 5000.

1
0

BlackBerry's comeback: El Reg gets its claws on the QWERTY KEYone

Down not across
Bronze badge

Re: Nokia Communicator?

Personally I'd want EPOC (ie. Symbian) based communicator (if Nokia decided to go there after 3110) or at least with just Linux without the Android crud on top. Or a choice, which brings us to your second wish. You may be able to get modern version of Psion 5.

1
0

The Psion returns! Meet Gemini, the 21st century pocket computer

Down not across
Bronze badge

Re: Well hello...

Well well. Rather interesting. Ticks all the boxes. Except EPOC and stylus.

Even with 8Ah battery I have doubts about the standby time with Android. I guess if you slimmed down all the extras (as most vendors bundle in tons of bloatware (often a full suite of apps competing with Google) it might be possible. Standby clearly mean display-off, as 5.7" QHD screen is likely to be thirsty.

As for pricing. Backer prices on indiegogo look very tempting.

2
0

Bring it BACK... with MODs! Psion 5 storms great tech revival poll

Down not across
Bronze badge

All it would need is an alternative connection to the proprietary one, so WiFi probably, rather than via IR to a modem.

Bluetooth. You're bound to have a phone with bluetooth anyway and would be more frugal on battery than running WiFi. If you were in a situation where you did need WiFi, then maybe if it supported something like this. Oh, and keep the IR, it has its uses.

1
0

UPS & drones: Delivery company launches UAV from truck

Down not across
Bronze badge

Re: Sorry You Were Out

Delivery companies would be far better off either committing to specific delivery in a one hour time slot (or less) one or several days ahead with, much as supermarkets book their deliveries.

DPD seems to manage that fine. Usually get first an SMS confirming delivery day, and in the morning of delivery day another SMS confirming one hour timeslot.

Agreed, you don't know the timeslot until on the day, unlike supermarkets where you book a specific slot. It's still excellent and means you can nip out knowing the driver is not hiding around the corner to rush to slip "Sorry we missed you" card (if they bother even that) when you step out for a minute.

0
0

Researchers offer simple scheme to stop the next Stuxnet

Down not across
Bronze badge

Re: And now the bad news

Great, the worst of both worlds for no benefit at all.

They can be useful for design/debug purposes with simulated I/O. Having actual I/O would enable verifying if everything really works in real life as it does in simulation. After all not everything works to the specs in the datasheets all of the time. Some never do.

To actually use it to really run something instead of a PLC, shudder at the thought.

0
0

Dying for Windows 10 Creators Update? But wait, there's more!

Down not across
Bronze badge

Shutdown (or not as it may be)

I quite like Windows 10 as it loads quicker and is more responsive for me than Windows 7 was, ignoring privacy concerns for a moment.

Are you sure about that? You do realise that "Shutdown" in 10 by default just hibernates it and doesn't actually shutdown properly.

Here is just one of many references to that.

1
1

EU privacy gurus peer at Windows 10, still don't like what they see

Down not across
Bronze badge

Re: What information does Win 10 slurp?

During the process I was confronted with Cortana, which I attempted to remove or at least disable, only to find that in Win10 'Home' this is all but impossible.

I got a laptop which came with Win10 on it. I thought I'd take the opportunity to see what it was like before proceeding to wipe it (and enable to use it at least for some browsing while I work out which distro works best on it).

Cortana (and most of the bundled basic apps) seem to take a dim view to the fact that I have not supplied it with a Microsoft account. About 80-90% of the pre-installed stuff refuse to work without MS Account. Cortana occasionally whimpers but has so far suggested nothing.

So it appears that if you don't provide MS account and install applications the normal way (ie none of the MS cloudy stuff) it may hamper what they get. Don't use Edge either as I prefer Firefox and/or Palemoon.

Should probably have a look with wireshark to see how much it phones home, although I suspect the contents are likely to be encrypted.

1
0

BS Detection 101 becomes actual University subject

Down not across
Bronze badge

I was wondering if it was still in print. Good to see that it it - why would it ever not be.

Why not indeed. I think I read it some decades ago. The basic principals are still just as valid.

0
0

Nokia's 3310 revival – what's NEXT? Vote now

Down not across
Bronze badge

Re: Yes, definitely the Psion Series 5...

I'd like to see a proper Linux on there. Perhaps MeeGo or one of its successors.

I am quite partial to EPOC, not least because it undoubtedly contributed to the frugal power consumption of the device. If the OS had to be anything else then perhaps MeeGo or something similar would work fairly well too.

1
0
Down not across
Bronze badge

Re: Series 5

I'm a bit worried about what you could do with the software as 50% of the brilliance of the original device was the OS and built-in apps (worried an updated model might have to run Android)

Android? No. Just no.

It has to be EPOC (guess I should call it Symbian now). Can't speak for others, but personally I don't need yet another Android device. EPOC/Symbian is perfect for the Psion 5.

And of course OPL. I whiled away many boring train journeys/flights by writing stuff in OPL (either on Psion 3 or 5 or Nokia Communicator).

3
0

Did Oracle just sign tape's death warrant? Depends what 'no comment' means

Down not across
Bronze badge

Re: Will we never learn

"What do you think of 'Brand X' DAT?" - The response was brilliant - "Great for Backups - terrible for restores".

I concur. I've never had any issues, apart from occasional dirty heads, with QIC (the proper ones, not MC or Travan), 8mm (Exabyte) or LTO (or even old DECtape) tapes. DAT has always been lottery (about same chance of winning too...). Can't say the same for DAT at all, which is a lottery (and about same chance of winning) suggesting the 4mm tape being inadequate for the job.

1
0

A webcam is not so much a leering eye as the barrel of a gun

Down not across
Bronze badge

Re: What works, what doesn't?

Intel is not alone with its IME. AMD has equivalent PSP which is just as evil.

Libreboot FAQ is an interesting read. No, you don't really have much control over any recent technology and are at the mercy of the vendor.

(Yes I have posted this link before in another thread sometime ago.)

3
0

Global IPv4 address drought: Seriously, we're done now. We're done

Down not across
Bronze badge

Re: Address allocated but not live

Ignoring the really obvious problem of being expected to unnecessarily translate between IPv6 and IPv4 on your network boundaries, why are IPv4 private address ranges preferable? The answer is they aren't.

I don't think you can speak for everyone on what is preferable to them.

I certainly would take issue if anyone felt they could decide what is preferable to me.

5
1

Verizon! surprisingly! OK! with! Yahoo! despite! mega-hack!

Down not across
Bronze badge

Re: Sad me

There is a lot you can do with dozens of connected, worldwide data centers without ever calling them an AOL or Yahoo! property again. It stands to reason. What say you?

Why would they want more datacenters when they've been busy selling them off as it is?

1
0

Page:

Forums

Biting the hand that feeds IT © 1998–2017