"Nicola Blackwood, chair of the Human Tissue Authority"
According to wonkypaedia she has a degree in music. Somehow that sounds familiar.
15559 posts • joined 16 Jun 2014
"Nicola Blackwood, chair of the Human Tissue Authority"
According to wonkypaedia she has a degree in music. Somehow that sounds familiar.
"the PR team's irony filters"
An irony filter would get in the way of PR's ability [sic] to do its job [also sic].
The name rang a bell in the headlines - back then it was familiar from the ads in Byte.
S-100 was transformative. Although our 48K box was only about 1/6th of the number of bits on the 1907 at QUB a few years back it was still a table-top box compared to the 6' or thereabouts cabinet holding just the memory of the mainframe. Add in things like an ADC card and there was the capability to build instrumentation that would have cost a fortune to buy from HP or Perkin Elmer even if it had been in their catalogues, which it wasn't.
Not only did the table-top box amount to a sufficient fraction of a mainframe it also had a compiler for the same language, FORTRAN but without the restrictions of punched cards, 100K disk allocations and 3 runs a day. In less than 10 years computing had made a leap forward in accessibility which really hasn't been matched since. The advances in miniaturisation and computing power have all too often been matched by losses in flexibility by way of productisation.
Put me down as another whose life was altered for ever by Bill Godbout and his peers.
"as a professional software developer I feel I have a duty to point out how their crap algorithm is costing them time and money, and they should have an audit immediately with a view to fixing it."
If you did contract work you could offer, as a professional software developer, to fix it for them.
More likely, however, you'll find their algorithm is nothing more than a word search being run by people for whom the words are nothing more than squiggles on a screen, devoid of any meaning.
"In The Good Old Days (tm) we had shelves and shelves full of manuals, with well-thumbed indices."
In the Good Old Days I had a cabinet mounted on my desk partition with the OS & RDBMS manuals in it. I only needed to raise my arm to pick up any of them.
One day some Big Boss came to visit the call centre next door. (It was quite big - the support manager of the database company visited one day so I I gave him the tour and his jaw dropped when we went in there.) Big Boss made some comment about how great it was having everybody able to communicate with the low partitions. Next weekend all our partitions were lowered and my collection of manuals was "over there" beside the window. A few steps away is not the same as within arm's reach; those few steps and the time they take break concentration.
To cap it all there was a bit of a swap around and I also acquired a new team just behind me who, for some reason, had to have a dot-matrix printer on one of their desks.
"luckily I always take a copy of my CV with me"
Luckily? Take several as a matter of policy and hand them to the interviewer(s). Leave luck* out of it.
*Did I spell that right? We're dealing with agencies.
"I fully expect a few million 'give me all the data you have on me and then delete it' requests."
That's going to prove interesting as the report makes quite clear that there's no way to get the telemetry stuff back out and the only way to delete it is to cancel the user ID. Even then individual teams within Microsoft in the US could have made their own copies and there's even less means of knowing about that and getting it deleted. And then there are all the sub-processors such as CDNs.
I can't imagine even IBM in its pomp getting away with this sort of stuff. And it's only because customers won't face up to their responsibilities and walk away.
"which do you think are better paid?"
I spent a lot of time in courts early in my career. I never heard a judge asking each side how much they paid their lawyers and deciding the case on that. Given that these cases will be heard in the EU they will be out of range of the finest government money can buy. Sad to think that from next March we'll not have that protection in the UK; that's what happens when you have a Home Sec resident in No 10.
Following the line of Home Secs, what does the panel think about Rudd going to DWP? Isn't that great for them? They really need someone with such technical nous running things there.
"Easy. 5 months of desperate lobbying and Doublespeak ahoy explaining how _customers_ need slurping, they value our privacy and are always out to listen to customers."
Or simply hoping it will get forgotten. Or it will break several bits of functionality and will have to be removed in order to make everything work properly. It's going to take time to ensure enough functionality gets broken.
"The history of Star Office -> Open Office -> Libre Office suggest that it is a mountain of quick fixes, with zero logical integrity."
The early stages of the move from OpenOffice -> LibreOffice involved paying down a lot of that technical debt. No doubt there's still some way to go but then there always is.
The word "compatible" has a special meaning in the computer industry
It means compatible with the current version of the software and no guarantees about past of future versions.
There is, however, an open standard for word processing, spreadsheets etc. which is well defined and ensures that your future self, or your successors, will be able to open those documents. Because it's an open, well defined document it means that even if your current product is discontinued it will be possible for someone else to write equivalent S/W so that your access to your old documents will not be blocked. That should be a fairly important consideration for governments whose documents might will have legal significance in decades or even centuries to come.
Oddly enough that's not Microsoft Office's format, it's the one used by the software you imply has problems when being exchanged.
The risk of future incompatibility wasn't in the terms of reference of this report and hence is only alluded to in passing. If one were to do a full risk analysis it should be one of the highlights.
Not wishing to exonerate MS in the slightest but don't the Dutch Government have any responsibilities in this? AFAICS it's they who required their employees to work with this. It may well be that MS did this sneakily behind their customer's back but I rather think that if it were any other employer it would be the employer who would be facing charges and taking out civil proceedings against their supplier for breach of contract, always providing that the contract said they wouldn't do such things. And if the contract was silent on such issues then the employer might even lose.
"So how do you transfer things too complex for a human to enter into an airgapped device?"
In the context of my reply about epoxy - which I assume is what you're questioning - the immediate reply is learn to read a statement of requirements which in this case was "So, what actions does a user need to take -- a real user, not a Reg reader, mind-- to protect themselves from nasties on the stick when they plug it in?" No mention of Stuxnet there.
The moral you need to take from my reply is that it's a trade-off. If you want to be secure there are things you shouldn't do, sticking random USB devices into a PC is one of them. Self-discipline would be better but if physically preventing yourself or those around you from doing things is the only way of doing that, take the physical route.
As a free-standing question, however, it deserves an answer and the answer, as with so many things in IT is that you have to analyse each situation as you meet it. If you have to make provision for data from random USB devices or the like for a single air-gapped machine a good starting point might be another air-gapped triage machine. You should be prepared to write that one off on that in the event of the sort of nasties you've mentioned elsewhere and, as several of us have said, a Raspberry Pi is cheap enough to make that painless; you can do it out of petty cash. For an air-gapped network LeeD's approach is the way to go. For a stand-alone machine your triage device could have the further level of protection of burning the data onto a write-once optical drive.
In different circumstances there are other options. For instance in the situation I mentioned elsewhere in the thread the main security concern was confidential information in the production side of the business leaking and there they had a factory network separate from the production network. Data incoming to that from customer sources was carefully routed and checked; e.g. incoming XML data was checked against an agreed schema - any file consisting of anything other than a conforming document was dumped.
To reiterate, you analyse the particular requirements and devise a solution that fits. If you need further help my rates are exceedingly immoderate these days.
"You're the exception"
Actually I have the luxury of not working for anyone these days.
But you may be right in that before I retired my last client had the word "Security" as the first word in the company name and meant it so that helped. Directors would have Richter 8 shouting matches in the open office but not about security. At one time they hired a company to try ringing various members of staff - and freelancers - to try to pry out company information and found we were effective at rebuffing them. Prior to that I worked for a large company that had a major, in PR terms at least, security egg-on-face incident and after that they went on a not entirely security theatre kick so at that time at least they became quite security minded. I don't suppose it lasted when their feet were no longer held to the fire.
When security requirement are imposed externally, and the likes of GDPR can do that, it becomes in the top team's interest to take is seriously.
And while we're calling PayPal out let's not forget they pass on your email address to vendors. That's an email address that's one half of your log-in credentials/ Very likely an email address that you set up for PayPal so you can identify genuine messages from them.
"So, what actions does a user need to take to protect themselves from nasties on the stick when they plug it in? "
Epoxy in USB connector.
"Unless you can prove it's totally lawyer-proof, C-suites can probably just counter they can lawyer their way out of nigh anything."
Some of us work in jurisdictions with better employee rights protection. There'd also be a risk of flagging themselves up to the ICO in which case it'd most likely be settled very quietly out of court.
There's also the fact that some of us work/have worked for businesses that take security very seriously and there it really does start at the top.
a responsible marketroid
I had an email from someone the other day saying he'd had some IT problems and had I received his previous email because I he hadn't had a reply (I'd received it but hadn't got round to sorting out material for the reply). I didn't stick my head above the parapet by asking what his problems were but I noticed his emails have the sig "Sent from Mail for Windows 10."
"Installed 1809 on three laptops - no issues at all so far!"
I'm sure everyone who has this particular problem thought the same thing when they read complaints about the last problem. Don't assume your turn isn't coming.
"I am old enough to remember that Quality used to be something positive."
That was before ISO9000 when quality became something you can define and achieve repeatably, irrespective of how mediocre it is.
"some people talk a load of bullshit"
They do indeed. They're usually salesmen promising delivery before the product's really ready for release.
'It would seem that the old saying "third time is the charm" isn't.'
ISTR that the rule of thumb with Microsoft products was not to buy anything before version 3 and to avoid version 4 at all costs.
"you never leave home without it"
I frequently leave home without it. I also frequently go back home leaving it in the car. It's a phone sufficiently dumb not to give rise to addiction.
"Has anyone seriously suggested this?"
Knowing what management mentality is like I think it highly probably someone has and then struggled with the idea of handing in your pass when you quit.
"Can't do the time?"
He's demonstrated pretty well that he can.
"Could be worse though, at least he's not hiding in the Saudi embassy."
Is Trump friends with the Saudis or not at present (it's hard to keep track)? If so maybe he'll ask them to send a deputation to visit him.
"It can't be any surprise that the USA have an interest in him. He made it his job to annoy them,"
And previously they punished him by ignoring him. Now they're rewarding him by actually paying him attention.
"Wasn't this exactly what he said would happen?"
AFAICR this was his excuse for jumping bail despite the fact that he'd been in the UK for some time and no extradition had been filed. And despite the fact that the US would have found it much easier to file while he was in the UK than Sweden and the latter, because of the EAW, would have had first dibs on him. When exactly were these charges filed? We don't know but if this is a recent typo it's likely that it was recently. Back when he first painted himself into a corner he was far more likely to have been punished by being ignored.
The situation now seems to be that Sweden would have to go through the EAW again if he was to emerge and in the meanwhile he'd presumably be doing time for bail jumping giving the US a chance to get its paperwork finalised for an extradition request. He could, of course, stay put for a bit longer providing he avoids giving Ecuador reason to shove him out and just hope that the next POTUS decides to simply treat him as a non-entity.
"Don't discount something because evidence is lacking"
But if evidence is lacking don't claim something, especially something as way out as this.
"said he'd get the maintenance crew to make something more permanent"
Did they ever get a round tuit?
"I debated between upvote for the sentiment and downvote for the grocer's apostrophe"
Maybe the manager had to go to a grocer to buy buy the coffee so it fits.
"My dad once ground down the edge of a SIP memory chip"
My MythTV box is in one of those really low profile mini-ITX boxes you used ot be able to get. There's no provision for the tuner card to sit upright in the box but there's a mounting bracket for one to fit horizontally if you can get the appropriate right angle adapter for the PCI slot. The nearest adapter I could get is still a bit on the tall side. Cue Dremel and a grinding disk. Like old SIP units PCI connectors were simple single layer boards so no problems.
"Of course that would require committing to brexit"
What sort of Brexit? Jumping off the cliff? A Brexit that might salvage something for the economy? Hoping for magic? Whatever your choice was it's unlikely that all those who voted like you actually had the same thing in mind.
You call yourself a code junky. OK, here's a challenge. Your employer tells you to prepare the S/W for a new project. Sorry, we can't tell you what it is because we don't know. Just do it. That's what DEFRA and everyone else has been lumbered with.
Brexit is something Dibert's PHB would have come up with.
"The last 5% also takes 95% of the time."
Or 95% of the last 5%.
As I said the government lied again.
The lies were coming from Leave. It was supposed to have been about as easy as winnign trade wars according to Trump (and about as easy in reality, for some negative value of easy).
Exactly what was the pig that was supposed to have been in the poke at that referendum? Complete Brexit taking down a good chunk of the UK economy and the Good Friday Agreement with it in the hope of eventually building trade agreements with the rest of the world that would rebuild the economy in about a decade's time? More or less what we have now? Some fantasy agreement with the EU in which we keep all the good bits but ditch the bits BoJo etc don't like? Magic happens?
AFAICS the immediate prospect, short of exiting the back stop, is about as good as it was ever likely to get - stay in some sort of customs union without being in the decision making in the name of taking back control. Of the others one would be a disaster and the other two never were going to happen.
"IIRC we also need a written constitution before we can apply to rejoin."
People keep saying we haven't a written constitution. We do. It's just not written in one place and some of it was written such a long time ago people forget it. The Constitutions of Clarendon would be a good place to start, proceed via Magna Carta and the Bill of Rights to the Representation of the People Act and beyond.
"You might think it would be in their interest to be in possession of all the facts"
They never wanted that. They didn't even want to establish the correct procedure for invoking it until it went before the courts.
Looking at it in one way it's a pity that it actually did go before the courts then; now would have been a superb time for the court to come up with the verdict that the invocation hadn't been approved by Parliament and was invalid if May had gone on with her original idea.
"it does not specify a procedure to stop the leave procedure"
It doesn't say it can't be done either.
"Don't be dissing Strictly"
What else should one do with it? Watching it's out of the question of course.
Do we really need "notifications to manage food imports"?
Tinned stuff, maybe not. Fresh, yes. Fresh food can bring in pests that can then run rife through UK agriculture were they to get in. One of the advantages of being an island is that biosecurity is a tad easier to manage.
Isn't this BaU for DEFRA?
"Despite that, just a third thought their employers' compliance was good."
The breakdown is likely to be a third good now, a third good once they've seen a few others get big fines and a third good after they've had fines.
One thing AI might be better at: believing Road Closed signs. We have a road closure on the corner next to us. Before they get there drivers have to pass two Road Closed Ahead signs. Just now the latest bright spark - Land Rover pulling a trailer loaded with one of those big round hay bales - stopped just outside the hose when the actual closure came into view. Then pulled ahead until he could see round the corner that it really was closed. Then started snaking back until he managed to turn in my drive like all the other bastards who don't believe it's closed.
I want them to channel Spike Milligan and change the sign to read "We told you it was closed".
"there is nothing stopping good, safety critical code being developed in an agile manner, as long as the constraints are known up front."
I thought the whole point of Agile was that you didn't need to know about such things up front, you just dealt with them as you discovered them.
"They don't understand the world"
This is the crux of it. Way before we ever get into a driving seat, way, even, before we stand up we have gained an understanding of what solid objects are. We come to understand that breaking things isn't good and what actions might break them. We understand what it's like to get hurt - we'll do it to ourselves - and mostly understand that hurting other people is bad. It's understanding that comes from being material objects ourselves interacting with other material objects. Software is not a material object.
"I agree that cycling can be risky given the number of utter morons daydreaming in their steel cages whilst (erroneously) imagining that they own the road"
What I see as a driver and a long-ago cyclist are numerous cyclists who seem to have abdicated all responsibility for their own safety to others. If such cyclists are going to rely on telepathy and miraculous braking and steering to keep them safe then it's not surprising there are so many accidents.
"However OTA updtaes does mean that you don't have to do as much testing knowing (traditionally there would be a big cost to recall a car for software changes at the dealership)."
I'm not sure what this means but if you're trying to say that testing doesn't matter because you can push bug fixes that might be true but the bug fix doesn't get installed on the cars which crashed, killing all occupants and a few innocent bystanders before the the fix got pushed.
"Don't let small minded idiots and clickbaiters tell you otherwise."
If it's all open and above board why has oversight been cancelled?
Biting the hand that feeds IT © 1998–2018