* Posts by jon909

13 posts • joined 20 Apr 2016

Those darn users don't know what they're doing (not like us, of course)

jon909

Re: Documentation

Also a good nickname for the comms guy that likes to lay cables.

Anytime, anyplace, anywhere...

Phisher folk reel in Computacenter security vetting mailbox packed with sensitive staff data

jon909

I'd bet money on this "mailbox" being a free Gmail or Outlook.com account. Compliant my arse!

Cloudflare gives websites their marching orders to hasten page rendering automatically

jon909

Re: Re: Errr

And you beat me to saying you beat me to it. Its like 1996 all over again. What next, co-operative multi-tasking?

Who pwns the watchmen? Maybe Russians selling the source code for three US antivirus vendors

jon909

Mcafee, Symantec but who else?!?

Trend Micro? Are they still considered American now their HQ is in Japan?

Trend Micro antivirus fails to stop measles carrier rubbing against firm's Ottawa offices

jon909

What next?

Someone at Intel gets burnt cooking chips? My coat is already on...

Q. What do you call an IT admin for 20-plus young children? A. A teacher

jon909

Re: It's horrendous out there in local Ed IT

re "2 digit number"- that is horrendous! if they can't afford something like Duo, the could just do a TOTP or even just a client side certificate.

Western Digital: And when I pull the covers off, behold as NAND becomes virtual DRAM

jon909

Ooooh yes, the oxford comma. I believe there's a funny sketch by Mitchell and Webb on that old chesnut.

Junior dev decides to clear space for brewing boss, doesn't know what 'LDF' is, sooo...

jon909

Re "meet “Bert”, who was working at a large brewing firm":

Anyone remember the game Beer Belly Bert's brew Biz?

Post-silly season blues leave me bereft of autonomous robot limbs

jon909

Foodvisor's crap AI

The App is a cover for a company wanting to tune its AI algorithms by getting end users to correct its mistakes. CAPCHAs have been doing this for years.

There is no perceived IT generation gap: Young people really are thick

jon909

https://dogs.lovetoknow.com/dog-health/what-causes-white-dog-poo

Commodore 64 makes a half-sized comeback

jon909

I wonder what they're doing to emulate the SID chip.

City of Moscow to ditch 600k Exchange and Outlook licences

jon909

http://www.geek.com/microsoft/10-years-later-munich-may-dump-linux-for-windows-1602234/

VXers pass stolen card data over DNS

jon909

Hackers only need to look up an A record to a (sub)domain they control. The victim's IP and credit card(s) can be encrypted and encoded into an ASCII DNS name eg ip.creditcard.comprimised.dyndns.org

The lookup might fail but the hackers' DNS server would have a log of the lookup or they could just reply with whatever data they want ie an IP thats really a fragment of remote command data.

Therefore remote command requests and replies wouldn't even need to rely on TXT records and any usual proxying and UDP/TCP filtering of port 53 would not help.

I guess the thing to look out for is to be suspicious of A records that aren't the root or www AND to clamp down on excessive lookups on the same domain.

Practical solution? Get payment service providers to host "secure DNS".

Biting the hand that feeds IT © 1998–2019