* Posts by sebbb

14 posts • joined 30 Jun 2017

Oh dear. Secret Huawei enterprise router snoop 'backdoor' was Telnet service, sighs Vodafone


Re: OMG!!!!!!!!!!!!

And what about ISP routers being accessible from their network for "troubleshooting purposes" and then some random support guy trying to solve my connection falling every 10 minutes decides to change my WiFi net name from the call centre? Big Red does this all the time.

Easter is approaching – and British pr0n watchers still don't know how long before age-gates come into force


Re: Don't worry

Oh... you forgot to put "wait" at the end. It's going to be an endless wait.


Re: how about a simpler system

But with a PAYG SIM I can fire up a VPN/use a proxy and say goodbye to provider's restrictions. C'mon, teens nowadays do these things like breathing.

Who had 'one week in' for a Making Tax Digital c0ckup? Well done, you win... absolutely nothing



So you're telling me that mandatory B2B electronic invoicing imposed in Italy since this January actually works better than this?

This must be some kind of mistake. IT managers axed, CEO and others' wallets lightened in patient hack aftermath


Re: Seems legit

And to answer with a practical example, have a look at the costs of BT-ran N3 national private network for the NHS.

You were told to clean up our systems, not delete 8,000 crucial files


Re: Users do what works for them

Oh I tried so hard to change people's mind in my old IT job in NHS, you really get the best: PSTs on network drives, size about 10-12GB each, people systematically "deleting" e-mails once needed to be archived, e-mails with gross, giant .doc and .xls monsters... and then the best part: SMB2 for remote access over VPN. I don't miss that job.

You can blame laziness as much as greed for Apple's New Year shock


Same here, in my family my first computer was a Macintosh Performa (oh that ugly, hideous beige box with the robotic floppy). Now I have a MacBook Pro from 2012 that still rocks, but for the price I paid that year now I can't even imagine having discrete graphics, compared to the Nvidia I have now.

Reason being I probably won't get a new Apple and/or stick with the current one until it really falls apart.

Plus I have my work laptop (a Dell XPS) where I can basically do everything else.

NHS supplier that holds 40 million UK patient records: AWS is our new cloud-based platform


Re: Shifting patient records to the cloud requires approval from NHS Digital

It depends, because although lots of GPs are private businesses, they are often fed IT by a CCG/CSU, which are quite rubbish in some things (just to mention, Wannacry problem was that there was no firewalling on the private network routers between WAN and GPs LAN, i.e. tcp/139 and 445 open for fun!)


Re: Interoperability be damned

What if I tell you that SystmOne ship with its own "hidden" JRE version 1.6.0_04?

And there is no other clinical software out there that's less crap than these four.

Microsoft Azure: It's getting hot in here, so shut down all your cores


What about boffins complaining though?

I mean, I'm amazed about how people are shouting at Azure Support on twitter like "It is unacceptable!!!" "Our production system has been down for 10 hrs!!".

Did you not think that you should have had redundancy across multiple regions for your production systems (I'm talking about self-engineered solutions of course)? Anything can fail anytime, spend that money or keep off those "clouds".

NHS could have 'fended off' WannaCry by taking 'simple steps' – report


The big thing on the spreading of malware is not really servers facing internet, but the N3.

You see, N3 is a giant private WAN with 10/8 addressing with a whole bunch of ports wide open between NHS bodies (including SMB 139). Private companies (like the one I'm working for) connecting to N3 must have separate firewalling in place. In fact, we were not affected at all and were still able to access data on the ERS just fine.

Google slaps a suit on beefed up Chrome OS, offers Enterprise version for business


Re: The devil IS always in the details

- "Does it require me to rebuild all of my users applications from scratch?"

-- Only if they were written in the pre-internet era. If so, about time.

Oh, how I wish it would be possible in the NHS... No, I have instead to force users on IE11 cause of that Java crapware and a shitload of Windows-only applications. So for me either, it's "keep buying those £300 Dells and join them to the domain"

Microsoft won't patch SMB flaw that only an idiot would expose


Re: Enough said

"No one should ever have any SMB shares on the Internet."

Not really on the internet, but guess what caused the so-damn-fast spread of the wannacry in the NHS... the nationwide private WAN has SMB wide open to and from basically anything. And it is still open now.

Ubuntu 'weaponised' to cure NHS of its addiction to Microsoft Windows


damn java devs...

Have you ever tried SystmOne? It is used in community outpatients clinics.

A Java software which runs on Windows only, not being updated since ages, to print a stupid patient letter you MUST have MS Word on it (it calls directly the .exe with some parameters), it is a hassle to troubleshoot when has problems connecting to the Spine, it uses its own JRE hidden in some folder inside the installation (1.6.0) regardless of what you install on the machine... It's simply a nightmare to support.

Not to mention 99% of browser applications use still Java applets for smartcard integration.

Biting the hand that feeds IT © 1998–2019