* Posts by Walter Bishop

756 posts • joined 16 Jan 2016

Page:

Network-sniffing, automation, machine learning: How to get better threat intel

Walter Bishop
Bronze badge
Big Brother

Cybersecurity operations still focus on the perimeter?

"The simplest cybersecurity operations still focus on the perimeter, watching who tries to gain entry and blocking unauthorized parties."

The solution being to not have a perimeter, all internal communication is done through end-to-end encrypted and authenticated channels, all users are on the outside and communicate through encrypted channels with authentication done with a hardware dongle .. I rest my case ...

2
0

Target inks $18.5m deal with US states to settle 2013 data breach

Walter Bishop
Bronze badge
Terminator

Target fined $18.5m for data hack

How much were the providers of the software fined for the hack of the POS terminals?

BlackPOS Kaptoxa

0
0

Telecoms fail in UK takes down passport scanners in Australia

Walter Bishop
Bronze badge
Big Brother

Why does antipodean data travel pass outside local jurisdictions

"why on Earth are users in Australia and New Zealand dependent on telecoms in the UK, and does antipodean passport and travel data pass outside local jurisdictions, which sounds a bit naughty!"

Five Eyes, the pasports have to be passed back to GCHQ who passes them back to the NSA in real time. Which doesn't seem to have any adverse impact on the illicit drug trade, the arms trade or the money laundering trade.

4
1

Windows Server's footprint shrunk to reduce Azure bills

Walter Bishop
Bronze badge
Facepalm

Re: Windows can fit onto 32GB

@Anonymous: "Good for you. My Windows nano server can fit into 500mb."

That's an entire application stack that fits onto 6.0 GB. Unlike nano server on which you can't run the GUI or applications and requires the rest of its bits to reside on Azure.

2
2
Walter Bishop
Bronze badge
Linux

Windows can fit onto 32GB

My Linux desktop fits onto 6.0 GB ..

1
2

Dell kills botched BIOS update that murdered punters' PCs

Walter Bishop
Bronze badge
Facepalm

Dell has yet to tell us why this happened

'Dell .. has yet to tell us why this happened'

The Indian Intern misplaced a decimal point?

2
1

What is dead may never die: a new version of OS/2 just arrived

Walter Bishop
Bronze badge
Facepalm

Reasons OS/2 didn't catch on

Computer Chronicles - OS/2 Warp (1995)

"OS/2 .. didn't catch on because of a clunkier GUI and Microsoft's hardball licensing tactics that made it commercially suicidal for PC-makers to offer the OS."

"Joint Development Agreement between International Business Machines and Microsoft" ref

"we need to focus on .. establishing OS/2 as the next standard in personal computing Bill Gates

"I was super enthustiac that we shipped OS/2" Steve Ballmer

"The demos of OS/2 were excellent, crashing the system had the intended effect -- to FUD OS/2 2.0."

'OS/2 "Crush" will focus .. to stop IBM from further successful promotion of OS/2.' ref

'Newspaper exposes “Steve Barkto” as MS agent'

1
0

Kill Google AMP before it KILLS the web

Walter Bishop
Bronze badge
Childcatcher

Liberal left-leaning Russian propagandists

"So, liberal and left-leaning newspaper The Guardian, one of Google AMP’s early adopters, gets to share space with Russian propagandists, as Andrew Betts of Fastly recently pointed out."

Oh come off it. If I wanted to fap off over watching someone go hysterical over 'liberals' I'd go and watch Alex Jones. I suppose as distinct from the fair-and-balanced reporting from Faux News. It wouldn't surprise me if most of the complainants had ties to the Bing propaganda organization. The one that fronted all those ant-trust complaints such a ICOMP, before the EU commission. Why isn't anyone investigating Microsofts close ties with Yahoo and Facebook.

ps: technically does AMP work and can one opt-out?

1
2
Walter Bishop
Bronze badge

A boilerplate redo of the original AMP page

"Pinboard founder Maciej Cegłowski already recreated the Google AMP demo page without the Google AMP JavaScript and, unsurprisingly, it's faster than Google's version."

Can we have a link to the original AMP page ref.

3
0

Dell BIOS update borks PCs

Walter Bishop
Bronze badge
Linux

Dual BIOS is the way to go?

I thing the way to go is to eliminate the BIOS, the Intel x86 architecture and that leaky tub of an Operating System.

> Dual BIOS is the way to go - as you say, some systems do this already. Its not difficult to test in the BIOS if the image is valid before booting it

2
0
Walter Bishop
Bronze badge
Facepalm

Dell BIOS update borks PCs

Who wrote the BIOS update?

Who signed off on the release of the BIOS?

Is the BIOS on Dell PCs socketed or soldered in?

--

NoScript filtered a potential cross-site scripting (XSS) attempt from [https://forums.theregister.co.uk]. Technical details have been logged to the Console.

1
0

Wonky whitelist update blamed for AT&T's nationwide 911 blackout

Walter Bishop
Bronze badge
Facepalm

Troubleshooting the 911 core universal service platform backbone

'The whitelist of IP numbers plays a critical role in AT&T's backend systems, but was listed as containing only "customer" rather than "infrastructure" data and so did not go through vigorous checking before it was sent to the live network'

I smell retrospective ass-covering. Shouldn't they have run a diagnostic script after the upgrade, to verify that the 911 service was actually still working. That's what I would have done, but then what do I know.

'the initial outage was reported first to its 911 troubleshooting team [the] AT&T's voice-over-LTE (VoLTE) team. And then to the Universal Service Platform team. And then to the Core Backbone team'

Who then reported the issue to the Indian intern ..

1
0

Azure users told they're not WannaCrypt-proof

Walter Bishop
Bronze badge
Facepalm

Re: WTF?

Disable SMBv2 or SMBv3 only as a temporary troubleshooting measure .. disabling SMBv2 deactivates the following functionality:

01 Request compounding - allows for sending multiple SMB 2 requests as a single network request

02 Larger reads and writes - better use of faster networks

03 Caching of folder and file properties - clients keep local copies of folders and files

04 Durable handles - allow for connection to transparently reconnect to the server if there is a temporary disconnection

05 Improved message signing - HMAC SHA-256 replaces MD5 as hashing algorithm

06 Improved scalability for file sharing - number of users, shares, and open files per server greatly increased

07 Support for symbolic links

08 Client oplock leasing model - limits the data transferred between the client and server, improving performance on high-latency networks and increasing SMB server scalability

09 Large MTU support - for full use of 10-gigabye (GB) Ethernet

10 Improved energy efficiency - clients that have open files to a server can sleep

11 Transparent Failover - clients reconnect without interruption to cluster nodes during maintenance or failover

12 Scale Out – concurrent access to shared data on all file cluster nodes

13 Multichannel - aggregation of network bandwidth and fault tolerance if multiple paths are available between client and server

14 SMB Direct – adds RDMA networking support for very high performance, with low latency and low CPU utilization

15 Encryption – Provides end-to-end encryption and protects from eavesdropping on untrustworthy networks

16 Directory Leasing - Improves application response times in branch offices through caching

17 Performance Optimizations - optimizations for small random read/write I/O

1
0

Gotcha, Tatcha! Thieves hide in servers to hoover up victims' bank card numbers mid-order

Walter Bishop
Bronze badge
Facepalm

What backend does tatcha.com run on?

Apparently the tatcha.com ecommerce site runs on Magento and ExpressionEngine.

0
0

Clouds' crazy kinks can spin your wheels and lead you to mistakes

Walter Bishop
Bronze badge
IT Angle

Re: Top AWS and Azure IaaS mistakes you'll want to avoid

OK, I'll go again, the short version, move to cloud and eliminate own hardware and networking people and therefore save money. Now I'm given to understand that I need to hire back on programmers who can write IaaS API interfaces, configure virtual interfaces, virtual networks, WANs and peer-to-peer links, configure active directory, load balancing etc. And to monitor the software in the cloud in case it eats up your budget. Just how many businesses has such a skill set on hand. What would it cost to hire in such people. What has any of this got to do with making money? If moving to the cloud won't save me money then what is the point?

elReg, produce a report on a real life medium sized business that made money moving the cloud. Fully document the before and after phases and the cost of designing and implementing the system, including the long term annual costs of maintaining such a service in the cloud.

1
0
Walter Bishop
Bronze badge
Facepalm

Top AWS and Azure IaaS mistakes you'll want to avoid

"there are lots of little limitations to cloud services that vendors hardly shout from the rooftops."

translation: We oversold the benefits and you were foolish enough to believe us.

"Trusting clouds' native file transfer tools is also not advisable, as Hilgendorf said they're not particularly resilient .. Failing to plan a proper backup regime is as dangerous in the cloud as it is anywhere else"

Let me get this straight, the 'cloud' fails at basic file transfer and automatic backups? The entire raison d'être and selling point of moving to the 'cloud.'

Besides and finally, what's any of this got to do with selling stuff? Bottom line, how much money will I save on business processes, salaries and hardware by moving to the cloud?

0
0

Cisco warns: Some products might have WannaCrypt vuln

Walter Bishop
Bronze badge
Terminator

Other vendors to blame for WannaCrypt

"Cisco warns: Some products might have WannaCrypt vuln

The title erroneously implies that a Cisco software product is vulnerable to WannaCrypt. It's interesting watching the media deflect blame from Microsoft for the WannaCrypt disaster.

0
0

Police anti-ransomware warning is hotlinked to 'ransomware.pdf'

Walter Bishop
Bronze badge
Terminator

Watching this whole WannaCrypt debacle, it's like being stuck in the bubonic plague epidemic in the Dark Ages armed with a supply of antibiotics. All the while the natives wilfully ignore the cure and keep trying the old ineffective remedies, such as rubbing chopped-up onions on the infections. But it's a bacterium you cry and there is a cure. Not so says the natives, it's the wrath of God because we're not been saying our prayers.

11
1
Walter Bishop
Bronze badge
Linux

We chose not to open the PDF file

Have you tried booting from a Linux CD and then opening the file?

--

Microsoft, the company that made letters and numbers dangerous

7
0

Made for each other! IBM awarded $700m outsourcing gig to cut costs at transport giant

Walter Bishop
Bronze badge
Facepalm

Outsourcing management waffle

"The tech deal includes IBM Services and IBM Cloud management"

'Cloud management services', the same project management applications re-gigged to run on a remote virtual machine .. in the 'cloud' 'cloud' 'cloud' ..

'"As part of our turnaround plan, Bombardier is working to improve productivity, reduce costs and grow earnings," said CIO Sean Terrain. The company said it expected "recurring cost savings" but didn't qualify them.'

We're going to fire 14,000 staff, the reduction in payroll will artificially and temporarily boost revenue. Using this as evidence of innovative management, we then take the salaries and pay ourselves a big bonus. By the time the accounts stagnate we're be long gone.

10
0

Blighty bloke: PC World lost my Mac Mini – and trolled my blog!

Walter Bishop
Bronze badge
Linux

Open-source techie Darren Moore

Do please define what an Open-source techie is, as compared to any other kind.

0
0

Mimosa spiked! Wireless kit has multiple security holes

Walter Bishop
Bronze badge
Facepalm

Mimosa: reimagining amazing internet for the wireless generation

Just who was it that signed off on this code?

0
0

Intel's Management Engine is a security hazard, and users need a way to disable it

Walter Bishop
Bronze badge
Big Brother

Intel's Management Engine is a security hazard, and users need a way to disable it

Intel’s CPUs have another Intel inside.

0
0

QNAP users: It's your turn to patch in a hurry

Walter Bishop
Bronze badge
Facepalm

Malware discovered on QTS devices

"malware has been discovered on devices that downloads and installs a vulnerable version of the firmware, QTS 4.2.5."

What I want to know is how did the malware get onto the devices in the firstplace?

1
0

74 countries hit by NSA-powered WannaCrypt ransomware backdoor: Emergency fixes emitted by Microsoft for WinXP+

Walter Bishop
Bronze badge
Linux

How to survive the WannaCrypt ransomware backdoor

DistroWatch.com: 'Put the fun back into computing.'

7
2

Continuous Lifecycle: Just 30 conference tickets left

Walter Bishop
Bronze badge
Devil

Re: 30 conference seats left at Continuous Lifecycle

"Sounds a bit waterfall, shouldn't you have a more agile seating capacity"

Reg readers are a cynical and jaded bunch ..

2
0

Dude hit with $300K bill for faking his hours, hacking boss's website

Walter Bishop
Bronze badge
Facepalm

Security Specialists hacked by securitty guard

Does anyone else see the irony in a company called 'Security Specialists' being hacked by a security guard?

20
1

It's 2017 and Windows PCs are being owned by EPS files, webpages

Walter Bishop
Bronze badge
Facepalm

Re: It's 2017 and software companies still write business software for Windows only

"Good UI design is an art, and it needs true experts with extensive knowledge in design, besides programming."

Do you seriously call this an example of 'Good UI design':

image image image

2
1
Walter Bishop
Bronze badge
Linux

Re: It's 2017 and software companies still write business software for Windows only

"Every time I run a Linux desktop manager I have a feeling of being transported back in time at least ten years"

It's obvious you're using ten year old FUD.

KDE Plasma 5.8

XFCE vs MATE vs KDE

Ubuntu GNOME 16.04 LTS

13
4
Walter Bishop
Bronze badge

Re: Why does Microsoft still try and integrate applications into core OS

"There is no such integration. All the apps you mention are user-space and no more privileged than anything you can buy from third parties"

OK, show me how to totally uninstall IE and Edge without breaking the system and I'll believe you.

5
0

Opposable thumbs make tablets more useful says Microsoft Research

Walter Bishop
Bronze badge

Microsoft worked this out nearly 20 years ago?

"The original Microsoft Tablet PC team worked this out nearly 20 years ago, but because other OEMs were making the devices, these ideas were never implemented."

Do you have any verifiable citations for that, that MS invented the thumb-plus-stylus interface and the OEMs failed or refused to implement it.

0
1

Hackers emit 9GB of stolen Macron 'emails' two days before French presidential election

Walter Bishop
Bronze badge

Marine Le Pen and the pro-Russian hackers

"No one has claimed responsibility for the data dump, but it's widely thought to be the work of pro-Russian hackers seeking to influence the election in Le Pen's favor."

What evidence is there that 'pro-Russian hackers' did the leaking? Why would the Russians be in favor of Marine Le Pen? Isn't it more likley the leak was done by Frence nationalists seeking to dilute the influence the multinationals and NATO has over France.

1
0

Industrial plant robots frequently connected to the 'net without authentication

Walter Bishop
Bronze badge
Terminator

Security risks of connecting your industrial facilities to the Internet

"Industrial robots are frequently exposed to the internet, creating a security risk .. a hacker might be able to alter the control system .. Five years ago all this would have come as a nasty shock"

Only if you've been in a coma since 2003 or 1997.

"There is simply no way, as this report shows, to stop cybercriminals from finding ways into manufacturing plants and other industrial facilities via the Internet.

There is you fucking retard, don't connect your industrial facilities to the Internet.

0
0

Debenhams Flowers shoppers stung by bank card-stealing tech pest

Walter Bishop
Bronze badge
Terminator

Compliant to security standard

"Often it is believed that if third-party suppliers and contractors are compliant to one security standard or another, they can be trusted with sensitive data. But being compliant at one point in time is not a true indication of security posture, as it doesn't take into account any changes in the company's infrastructure or advancements in attack techniques"

In the real world, compliant is as much use as use toiletpaper. Do you have any ideas as to the ecommerce platform Debenhams runs on and the technical nature of the attack?

Magento Integration with Debenhams

1
0

324 typo-squat domains found impersonating Natwest, HSBC and co

Walter Bishop
Bronze badge
Linux

Re: Inspect every domain that are clicked on

Clicking on a dodgy URL won't lead to a remote executable running on your computer and permanently installing itself as a root process.

0
1
Walter Bishop
Bronze badge
Linux

Inspect every domain that are clicked on

Wouldn't it be simplar to use the punycode hack to spoof domain names.

"Users should remember to carefully inspect every domain they are clicking on or entering in their browser"

Or else use a distro that can't be hijacked by clicking on a weblink ..

0
1

Leaked: The UK's secret blueprint with telcos for mass spying on internet, phones – and backdoors

Walter Bishop
Bronze badge
Big Brother

It's game over for democracy

It quite frankly puzzles me that with the surveillance capability available to the state security apparatus, there hasn't been an decrease in the availability of illicit drugs, black-market arms sales and the vast sums of money made from such trade. Which begs the question as to the real purpose of such legislation. Which if I have to spell it out for you is this. This is really about suppressing political dissent within the population.

The politicians won't oppose this, they can't, the spooks have the photos. I mean the spooks even have IMSI catchers installed around the parliament building and the MPs phones and emails are recorded and not a whisper of this from the MPs or the so-called free press. What we have here is what was once described as corporatism, that is the total union of the corporations and the state, what's that word, it's on the tip of my tongue, anyone.

19
1

S is for Sandbox: The logic behind Microsoft's new lockdown Windows gambit

Walter Bishop
Bronze badge
Terminator

Windows decoupling from the Intel instruction set

"Over several years, the PC has been taking its long, sad journey into becoming a niche .. What a long, strange journey it has been getting to the point where Windows was decoupled from the Intel instruction set – and we're not even there yet."

Possibly MS is treading water on the PC until the entire ms ecosystem moves to ms Hardware on the ms Cloud, at which point Intel and the OEMs will surly be decoupled and rendered nich players.

0
1

ATM security devs rush out patch after boffins deliver knockout blow

Walter Bishop
Bronze badge
IT Angle

Security product designed to protect ATMs is not secure

I don't suppose you would favor us with the Windows OS version that this product runs on? Security cannot be tacked on as an after thought but must be baked into the product. Regardless of how PCI-DSS compliant it is certified as. In the old days updating the software on an ATM required the visit of two technicians with a hardware dongle that they plugged into the ATM. The technicians typed in two unique serial numbers that were used to generate a unique encryption key and used to update the device. Once this was done any future attempt to overwrite the firmware would fail. All such security mitigation devices are rendered useless since the banks moved their ATMs to a toy of an Operating System.

3
1

Windows 10 S: Good, bad, and how this could get ugly for PC makers

Walter Bishop
Bronze badge
IT Angle

Windows 10 S and Microsoft’s ongoing efforts to hit Google

"Tuesday’s launch of Windows 10 S .. has raised some interesting questions about Microsoft’s ongoing efforts to hit Google and Apple where it hurts."

How about making Edge the default browser and hacking Windows 10 S such that the default browser cannot be changed. Then making the false claim that doing so would break cloud apps.

1
0

Microsoft Edge is the default web browser on Microsoft 10 S

Walter Bishop
Bronze badge

Microsoft Edge is the default web browser on Microsoft 10 S

Are there any defaults that I cannot change on my Windows 10 S PC?

"Yes, Microsoft Edge is the default web browser on Microsoft 10 S. You are able to download another browser that might be available from the Windows Store, but Microsoft Edge will remain the default if, for example, you open an .htm file. Additionally, the default search provider in Microsoft Edge and Internet Explorer cannot be changed."

0
0

What is this bullsh*t, Google? Nexus phones starved of security fixes after just three years

Walter Bishop
Bronze badge
Linux

Google to drop security fixes for old version of Android

What's preventing you from upgrading to the latest Android?

0
4

Jenkins admin? Get buzzy patching, says Cloudbees

Walter Bishop
Bronze badge
Mushroom

Java deserialisation vulnerability

I have to ask, but when whoever invented deserialisation, did he give no thought as to the security implications of being able to alter or swap out the object/file in transit. What the frag are they teaching them in computer security.

1
1

More fun in the sandbox: Experts praise security improvements to Edge

Walter Bishop
Bronze badge

Microsoft gives own browser an Edge up on the competition.

A browser can only be as secure as the underlying platform. When will ACG1 and CIG2 be availabe for third parties browser. Or is this yet another case of Microsoft keeping the best features undocumented to give it and Edge up on the competition.

0
1

Red alert! Intel patches remote execution hole that's been hidden in chips since 2010

Walter Bishop
Bronze badge
Terminator

Intel 2^63™ not equal to 2^63 ..

"These are the same people who said the the F00F bug would only affect scientific computation users."

'The x87 FPU specs say that FSIN and FCOS can compute any angle in the range \\pm 2^63, which is roughly \\pm 1E18. My tests showed that even for smaller arguments, say in the order of 1E10, they produce results that are correct only for the first 10 digits and the rest are all wrong.' ref

'The products described may contain design defects or errors known as errata which may cause the product to deviate from published specifications. Current characterized errata are available on request.'

5
1
Walter Bishop
Bronze badge
Terminator

Re: Removing the driver doesn't affect the vulnerability

'The vulnerability is not in the OS'

Do you think this was no accident. Who would want a backdoor into all Intel hardware. As for AMT, I've seen on certain corporate 'secured' devices, once AMT is triggered and it detects you've removed the monitoring app from Windows, it downloads and executes a binary blob from an unsecured embedded URL. A poisoned local DNS server could bypass the security. In this case more security is less security :)

8
3
Walter Bishop
Bronze badge
Linux

Vuln reported over five years ago and totally ignored by Intel

"SemiAccurate has known about this vulnerability for literally years now, it came up in research we were doing on hardware backdoors over five years ago." link

10
1

Rejoice, for Linux 4.11 has been delivered!

Walter Bishop
Bronze badge
Linux

Re: Real changes to the Linux Kernel ?

"Anyone know where one can find out about .. the actual kernel"

Linux Kernel Mailing List ..

1
1

Secure Boot booted from Debian 9 'Stretch'

Walter Bishop
Bronze badge
Linux

Linux uses an outdated architecture :)

"nobody would have used it - because it uses an outdated architecture and is full of usability issues" .. unquote ...

Ubuntu 3D Desktop

Best Linux Distros for Gaming in 2017

SteamOS vs Windows - Gameplay Shoot-Out

Top 10 Most Awesome Linux Games

1
1
Walter Bishop
Bronze badge
Linux

Re: Most Linux distros are such flimsy OSes..

That must be the reason, most of the worlds mobile devices run on Android. The same Android that Microsoft is extorting revenue from the Android handset makers and after the failure of it's own mobile business, develop apps for Android devices. Without their monopoly on the desktop, you literally couldn't give VistaXP away.

Is this you link

20
3

Page:

Forums

Biting the hand that feeds IT © 1998–2017