* Posts by EnviableOne

246 posts • joined 28 Jan 2016

Page:

Dark web souk AlphaBay shuts for good after police raids

EnviableOne
Bronze badge
Joke

What happend to BetaBay?

I'm sure after alpha should come beta, then gamma, but what do i know, its all greek to me

1
0

Brit military scolded for being too selfish with sexy high-end tech

EnviableOne
Bronze badge

The US are just as bad contracts wise, its just they build enough to keep more players in the game.

The UK's status as a global power is largley now un-deserved and a relic of former glories, it all started with the Washington naval treat, that meant the RN could no longer maintain its 3 fleets (Home Mediterranean, and the Far East) so it cold no longer project the force required to maintain its colonies.

And as it lost the colonies, it had less and less to maintain power for, and now we are a nation of clerks sitting on a rocky island somewhere off europe with two aircraft carriers and no aircraft

0
0

Civil rights warriors file US lawsuit: Let us see Five Eyes agreement

EnviableOne
Bronze badge

Re: Lord Denning once told me; Everyone answers to the Law

read the FOI act 2001, GCHQ are not above the law, they are exempted from it.

See part II section 23 subsection 3

1
0

Sysadmin bloodied by icicle that overheated airport data centre

EnviableOne
Bronze badge

Re: Frozen winter shit.

The key is to make sure the last line of the JD is "and any other reasonable request"

0
0

Why, Robot? Understanding AI ethics

EnviableOne
Bronze badge

Re: The problem with academic exercises in ethics

the problem is that you do not know that you have to hit one of them, but the AI does.

You will blindly hold on to the fact, if i break hard enough and swerve i will not hit anyone, whereas the AI knows it applies x amount of presure it will stop in distance Y, which means it will hit object A with force z or if it makes correction S it will hit object B with force z and based on probabilities hitting object A or B will reult in death.

now it has to make the least bad option, so it has to asign values to object A and B to decide whether it should take option 1 - do nothing hit object A, Option 2 Make adjustment S and hit object B, Option 3, make adjustment T and hit object C, or make adjustment U and Kill the occupant.

0
0

Blighty's Department for Culture, Media & Sport gets 'digital' rebrand

EnviableOne
Bronze badge

Re: Data protection?

see https://www.gov.uk/government/organisations/information-commissioner-s-office

ICO is an executive non-departmental public body, sponsored by the Department for Digital, Culture, Media & Sport.

1
0
EnviableOne
Bronze badge

Re: Thank God it' now Digital...

give it 10 years and it will become the Dept. of Cyber, Culture, Media & Sport

1
0

UK.gov tips £400m into digital investment pot

EnviableOne
Bronze badge

Someone needs to ad DUPs to the units table

0
0

Privacy, consent laws under 'unprecedented strain'. We need a data-watcher watcher

EnviableOne
Bronze badge

Brexit strikes again

This sounds like the EU Article 29 Working party....

0
0

Virus (cough, cough, Petya) goes postal at FedEx, shares halted

EnviableOne
Bronze badge
Boffin

Re: What's in a name?

In the orgional Goldeneye, "Petya" is the admin mode MFT encryption bit, "Mischa" is the user mode ransomware together with mimikatz they make "Goldeneye"

as from the film the two satelites "Petya" and "Mischa" make the Goldeneye weapon

The notPetya, uses mostly Petya code (Modified) for the admin mode bit, and the goldeneye execution/enumerator bit, tacks on a Multi headed Worm Spreader (WMI/PSExec/ETERNALBLUE) depending on privilege and a Whole new usermode ransomware.

Hence this needs a new name, and all the others are wrong Hence notPetya (because its just not)

1
0

What? What? Which? Former broadband minister Ed Vaizey dismisses report

EnviableOne
Bronze badge

Re: FTTP?

It would have been cheaper if BT started it in the 90s! They had the best telecoms network in the world in 1978 and sat on their laurels for 20 yrs, by which time, half the world had overtaken them, a random amount of the network (which bits they don't know) had been replaced by Aluminium alloy, and some lines couldn't even support 250kbps.

1
0

Cisco and McAfee decide users just can't be trusted not to click on dodgy attachments

EnviableOne
Bronze badge

McAfee by Cisco

Is it just me, or is it a distinct posibility the intel orphan McAfee gets swallowed in Switchzilla's attempt to pivot to a Software company

0
0

Microsoft admits to disabling third-party antivirus code if Win 10 doesn't like it

EnviableOne
Bronze badge

Mac is no solution their " it’s been built from the ground up with privacy and security in mind." slogan is a misnomer, it is just a PC with a different OS, that is now numerous enough for people to bother spending time writing or adapting viruses for it.

I have considered the idea of switching the org to Kubuntu Desktop and CentOS/RHEL servers

1
0

Anthem to shell out $115m in largest-ever data theft settlement

EnviableOne
Bronze badge
Boffin

ah but thats the rub, they didnt admit fault

its a no fault settlement, so if your not party to the Class action, you have to go through the whole process again...

0
0

Apple, LG, Huawei, ZTE, HTC accused of pilfering 'find my phone' tech

EnviableOne
Bronze badge

Android Mfrs quote Shaggy

Ok so the android manufactures just say "wasn't Me" and point at google.

After all they didn't write the software

0
0

Tory-commissioned call centres 'might have bent data protection laws'

EnviableOne
Bronze badge

Re: Hmmm

90 % of the time its principle 7: "Appropriate technical and organisational measures shall be taken against unauthorised or unlawful processing of personal data and against accidental loss or destruction of, or damage to, personal data"

in otherwords, they are confirming identity before unlawfully disclosing it to the wrong person.

2
0

UCL ransomware attack traced to malvertising campaign

EnviableOne
Bronze badge
Coat

Re: Not North Korea?

You sure its not Fancy Bear either?

mines the one with "if in doubt, blame the russians" on the back

0
0

Worried about election hacking? There's a technology fix – Helios

EnviableOne
Bronze badge
Boffin

Low turnouts and 2 party systems go hand in hand as a large part of the electorate dont like any of the options presented. and if the ruling party has control of the districting, you get guys called gerry making salamanders and headphones on the map so the opposition supporters waste more votes ....

then you end up with a party in power that less than 10% of the elegable population actually voted for.

if you are going to go to compulsory voting, it has to be acompanied by a change to the voting system and an re-balnacing of the status quo.

the only option is to bring in more proportional voting, I have a method that i think will work for a two house system, it uses single member Instant-runoff voting (IRV) districts for the lower house with direct representation, and simple party list Proportion Representation (PR) for the upper house. So you get to chose the representative you want for local issues, and the party you agree with for wider ones.

districting should be handled by non-partisan independant authorities on a geographic basis taking into account only numbers of elegable voters, not demographics, to ensure equal representation.

If you're gong for a seperate head of state, IRV is not bad, this way most people will end up with someone they can stand.

0
0
EnviableOne
Bronze badge

Re: "Because you can"

Newcastle central and sunderland south would tend to disagree, polls close at 22:00 count done and declared at 23:02 and 23:08

1
0

It's 2017, and UPnP is helping black-hats run banking malware

EnviableOne
Bronze badge

As an ex XBOX support monkey,

that list is a bit on the long side, you will get away with TCP/UDP 3074 and TCP 88.

500 and 4500 are IPSEC over UDP NAT-T (VPN)

3544 is IPv6 over v4 Teredo tunneling

80 is web traffic

53 is DNS

88 is kerberos (authentication)

3074 is the only XBOX specific port the rest you would be using anyway, just by browsing the web

0
0
EnviableOne
Bronze badge

SUPnP

time for a secure version?

verified port mapping sends a permission request to the origonating machine or dedicated management machine, handled in OS to generate a security request for "Program X" (identified by outgoing port) on Machine Y to talk to Internet (on ports)?

2
0

It's fluffy bottom line time at Adobe. That's a good thing, if you were wondering

EnviableOne
Bronze badge

just imagine

If they could get rid of the devs writing all those flash patches how much more money theyd be making....

0
1

Numbers war: How Bayesian vs frequentist statistics influence AI

EnviableOne
Bronze badge
Meh

Statistics acan mean whatever you want them to, if you select the right test, right sample size and right sample.

So does it really matter which camp you live in?

1
1

Uber's New York competitor sued over driver equity scheme

EnviableOne
Bronze badge

just a simple cost benefit analysis - FINE from SEC + Bad publicity + cost of litigation > extra income from drivers recruited

1
0

Brit uni blabs students' confidential information to 298 undergrads

EnviableOne
Bronze badge

Recall and spreadsheets not the issue

One little tick box would have solved the issue

In the send messages mail options "Use auto-complete list to suggest names when typing in the to, cc, and bcc lines." - untick this and users have to maually enter each address rather than jsut picking the top from the list, solves this and many accidental addressing issues.

0
0
EnviableOne
Bronze badge

Re: East Anglia also takes a lot of well off students who couldn't get into Oxbridge

They got to Anglia Ruskin University so they can say they are at universaity in Cambridge

or Oxford brookes for those of the other colour blue

0
0

2 kool 4 komputing: Teens' interest in GCSE course totally bombs

EnviableOne
Bronze badge

the only Computing teaching needed is how to use it efficiently as a tool.

Programing is advanced Decision and Descrete mathematics

CompSci is advanced Digital Electronics (part of any physics course)

Information Systems is advance statistics

if all of these (Decision and Descrete mathematics, statistics and Electronics) are taught well, kids will come out of school with the right background to go into specific fields and do well.

there is no need for specifc ICT course at school, it just clouds the issue. You will get better experts if thy are taught from the basics before they apply that skill to a specific field.

0
0

WannaCrypt: Roots, reasons and why scramble patching won't save you now

EnviableOne
Bronze badge
Pint

Risk What risk...

Working in a hospital IT myself, its a nice to see someone with the right mindset for once, but our risk department dont think there is any IT risk. everything on the register is clinical or maybe financial, but nothing from the technology side.

I have been banging my head against a brick wall, and managed to get the two words on the register Cyber security, but it still isnt red yet!

The board still dont understand how important the information systems are to the job in hand, and if they insist on running the patient administration system on a single standalone server, with no support, that it takes days to recover from a lost 15 mins, one day it will go TU and it will days to get it back online!

Beer for someone reconising the problem.....

1
0

Forcing digital forensics to obey 'one size fits all' crime lab standard is 'stupid and expensive'

EnviableOne
Bronze badge

Sounds like a job for the ACPO

oh wait they did that already ( ACPO Good Practice Guide for Digital Evidence (Published March 2012)) and theres ISO27037 with 27041, 27042, 27043 or 27050 that seems to better fit the bill.

As for a proffesional body, take your pick IACIS, ISFCE, DFCSC, CSoFS, (ISC)2, GIAC

0
0

The internet may well be the root cause of today's problems… but not in the way you think

EnviableOne
Bronze badge
Boffin

Fully agree with the sentiment of the article, the internet isnt broken society is.

the uber elites control far to much of the control and deny learning to the and security to those they deem less, this situation is not new, it's what lead to the fall of monarchies and the class system, but has now been replaced by a wealth system. where class used to matter now wealth does.

The only way to solve this is a mass upheaval of the status quo, and a major change in human nature. this will not happen overnight, and will not be without cost, but ultimatley leads to a better world for everyone.

There are visonaries that have realised this, but they are few and far between (e.g. Dan Price, Richard Branson) but as they continue to succeed this will influence others, and monetary wealth becomes less of a measure of success.

Every person should be valued for there particualr skillset and everyone should have the opportunity to do everything. But also people need to realise that not everyones skillset is built or enabled in the same way, some are good at logic, some good at analysis, some fast, some strong, some resilient, some empathetic, but all these are valued and all have value.

there is no difference between a time served bricklayer and a degree certified chemist, each in theirown field is qualified and capable, and each capable of amazing the other eith their specific skill.

if we can get to a point where this is the default, then people will feel valued and empowered and will be lees prone to adopting extreme views for a sense of belonging.

0
0

Enterprise patching... is patchy, survey finds

EnviableOne
Bronze badge

out of date flash

Flash updates come like monthly (5 already this year, and another probably on tuesday) and all have cruitical security patches, and with the exception of a handfull of tools, must be updated manually.

If anyone can keep up with that on their whole estate, they either have too little estate or too much time on their hands....

Thumbs up for actualy releasing good code in the first place ...

0
0

Samsung's Bixby assistant fails English, gets held back a month

EnviableOne
Bronze badge

Wait for the OnePlus 5, its shaping up to be quite fancy, and they are fixing a lot of the issues.

or go for the S7 its still a couple of generations ahead of the iPhone and has 2x2 wifi

Or there are plenty other options, Pixel, Experia XZ, Moto Z, HTC 10, LG G6 or even the Nokia 9.

ATM My S7 is probably going to become the OnePlus or the Nokia

0
0

Goodness gracious, great Chinese 'Fireball' malware infects 250m systems worldwide

EnviableOne
Bronze badge

anyone think this is a ploy to hype the Lets keep personalinfo behind the great firewall agenda

0
0

China cyber-security law will keep citizens' data within the Great Firewall

EnviableOne
Bronze badge

Makes GDPR sound sane

its like an extreme version of GDPR, where the EU get to say, you can only send personal info out of europe where we tell you its safe to do so...

0
0

Trident nuke subs are hackable, thunders Wikipedia-based report

EnviableOne
Bronze badge

Re: The weakest point ... ?

Crimson Tide anyone .....

As far as I am aware the C&C system for trident requires a go code that can only be transmited from PJHQ at Norwood on authorisation from the head of state.

Plus Sub-Systems are configured simmilar to those on airplanes, there is a lot of isolation, interference reduction and segregation.

0
0

Security company finds unsecured bucket of US military images on AWS

EnviableOne
Bronze badge

Re: "Booz Allen Hamilton "

Methinks their US.gov security contracts should all be reviewed and the entire organisation should be audited from top to bottom by the DoH/NSA/DoD and the rest of the alphabet. will probably stop them getting any new contracts before the next millenium.

1
0

Extreme Networks confirms it's buying Avaya's network biz

EnviableOne
Bronze badge
Gimp

Avaya switching is great, usually half the price of cisco, the stacking and redundancy are better, the managment tools are a lot better and cheaper, oh and the lifetime nextday waranty is free

there new wireless is great, their Identity Engines IAM is excelent (cisco used to use it before avaya purchased it,) their switches out perform most in the pure speeds and feeds, oh and the VPS series fabric switches are excellent, they have run the last couple of winter olympics and are pushing cisco hard for the summer ones too.

I just hope they don't go purple.

0
0

Healthcare tops UK data breach chart – but it's not what you're thinking

EnviableOne
Bronze badge

Direct quote from NHS Regulations that all organisations are held to:

"Since June 2013 all NHS organisations processing health and adult social care personal data must use the IG Toolkit Incident Reporting Tool to report level 2 IG Serious Incidents Requiring Investigation (SIRI) to the Department of Health (DH), NHS England and the Information Commissioner’s Office (ICO). IG SIRI functionality was extended in early 2015 to enable capture of cyber related incidents."

the NHS are the only organisation required to report every breach, this skews figures based on those reported to the ICO, once GDPR comes in and all organisations are required to report, there will be a big skew from healthcare towards finance and technology

3
0

UK biz: Oh (yawn) GDPR? Was that *next* May? – survey

EnviableOne
Bronze badge
Stop

Its already law

It Law now, and has been for a year, its just not being enforced untill May 2018, and the Brexit process AKA Article 50 doesnt finish untill May 2019.

GDPR in terms of its rights and responsibilities is not so different to DPA, its just that yo need to prove your compliance with GDPR and that of your subcontractors who can be sued jointly or severably (rather than just you taking the can)

The other changes bring in some interveening regulations like the right to be forgotten and data portability

Even post brexit its likley to be kept as the ICO wrote a lot of it. there may be some issues with enforcement thought as ICO dont really have the staff to handle the mount of work involved. (i've heard from reputable sources they need approx 10x the staff and DCMS wont stump up the cash)

On top of all this, we are still waiting for how the national derogations will pan out, so nothing has really changed since may last year, and a lot of things still need ironed out.

1
0

'Major incident' at Capita data centre: Multiple services still knackered

EnviableOne
Bronze badge

ON the other hand the cost nutral runway option at Gatwick is starting to look attractive, cos even BA can take off from there

0
0

NHS Digital stopped short of advising against paying off WannaCrypt

EnviableOne
Bronze badge

Re: However, a total of

and all three Bitcoin wallets are being watched, so they cant access any of it without fear of being caught, so effectivley they made nothing

0
0
EnviableOne
Bronze badge

Re: Anyone-

Thumbs up for that!

Say Cyber Security and everyone pays attention - say Informtion Security and they all fall asleep.

Boards tend to speak buzzwords and are more likley to fund a cyber security initiative

0
0

Info commish: One year to go and businesses still not ready for GDPR

EnviableOne
Bronze badge

Re: The problem is...

Based on 2016 figures max fine for the following (millions of US$)

Apple 8,625

Amazon 5,439

Google 3,578

Facebook 1,105

Uber 260

Which is the sort of figure that makes boards pay attention, and if they want to do business in the EU they will make consessions

0
1

Democracy-minded DEF CON hackers promise punishing probe on US election computers

EnviableOne
Bronze badge

Re: Won't they get sued?

Its a red team exercise and they will have permission and proof of findings...

0
0

Republicans' net neutrality attack written by… you guessed it, the cable lobby

EnviableOne
Bronze badge

the issue is not that the GOP were lobbied or copied ideas from lobists, the issue is they just wholesale took their opinon and changed the name on the top.

Anyone knows you fact check things if the source has a vested intrest, but US Politicians dont really care they will do anything as long as the campaign contributions are enough....

0
0

Russian raids sweep up 20 malware scum

EnviableOne
Bronze badge

I'm sure the FSB put the fancy bear on it ...... (if it wasn't them in the first place.)

1
0

New York Attorney General settles with Bluetooth lock maker over insecurity claims

EnviableOne
Bronze badge
Coat

Intresting name

You think he was Dr. Jekyll before his locks got hacked?

Mines the one with the bluetooth sniffer in the pocket .....

1
0

Sophos waters down 'NHS is totally protected' by us boast

EnviableOne
Bronze badge

1. XP infection rate from wanna Cry is minimal

2. if NHS had it resource to patch, it wouldn't have mattered

3. Sopos Intercept X and Exploit Provention (EXP) have been out for 6 months and Have yet to be beaten

4. Intercept X is exploit based and signatureless

5. No-one woth Intercepet X or EXP got WannaCry

6. Sophos are prevelent in the NHS.

7. We had neither patched or Intercept X and did not get Wanna Cry

0
0

US spymasters trash Kaspersky: AV tools can't be trusted, we've stuck a probe in them

EnviableOne
Bronze badge

Re: I'll chance it....

At least US have a secret court, FSB just turn up and demand and Eugine has to comply.

I work with patching from denmark, and detection from UK

3
0

Capita's huge role in UK government should go under the spotlight

EnviableOne
Bronze badge

Re: TV Licenses

or do like they did on alderny and when they try to bring a detector van on the island, they "accidentally" dropped it in the harbour, twice.

What's wrong with directly funding the BBC through the dpt. of Fun, thats the way C4 is funded.

1
0

Page:

Forums

Biting the hand that feeds IT © 1998–2017