Re: Thanks for nothing
Because they don't want to trespass on the CIA's turf?
2546 publicly visible posts • joined 12 Jun 2009
Does that explain the overhang on the old Regent Theatre in Norwich? I've wondered why it was like that. Bit of a problem for the house underneath, if they had had a film fire. Presumably they never did, given that the house is still standing.
You may well struggle, about the only achievement I can see is the Streisand Effect success of the HK Government bringing this to wider attention. This started last November when Glory to Hong Kong was played at the South Korea’s Rugby Sevens, possibly entirely accidentally. The Government and pro-Beijing politicians went ballistic, but mistakes at sporting events kept happening. The sporting teams are being threatened with disbandment if there are further errors. Have sympathy for them. In the latest incident, it appears that the Hong Kong Ice Hockey Association followed the instructions and sent the link provided by the Sports Federation and Olympic Committee of Hong Kong, China but that led to a Constitutional and Mainland Affairs Bureau webpage on National Anthem which only led to the anthem when browsed in Chinese, unfortunately, the Hungarian organisers used the English version of the page and were unable to find the anthem. Perhaps the HK Olympic committee and government departments should be a bit more international in their thinking, or, at least, web-site testing?
However, this isn't a creepy change of "official truth". Hong Kong is not a Nation, so it doesn't have a National Anthem; since 1997, the March of the Volunteers has been played at official events, and that has not been controversial. There have also been various anthems adopted by the people to represent their city and identity unofficially. Glory to Hong Kong is simply the latest of these.
What is creepy is that the government often says HK is, or it wants HK to be, a financial, arts, technology, innovation Hub, but discourages any behaviour that might make it stand out from the Mainland.
I was having difficulty remembering a different password for every site, but then I got an anthill, gave each ant a name and used those as passwords. It even works for frequently-changing passwords, the Queen is always laying new eggs.
For my online banking passwords, I plan to get a beehive, to be more secure.
see this documentary.
@AC - "if you have everything in one building (people, kit, processes and so on) you are a much bigger target...just let people work from home, decentralise your confidential information storing platforms and for fuck sake get rid of the massive buildings"
Yes, send all your workers home, then the attacker doesn't need to invest in a drone, they can sit in the neighbours' garden and launch an attack from there, and with all those workers, there are so many more neighbours to check out. Surely that is a much bigger target?
Isn't the lesson "don't rely on eggshell security"? Kudos to the team that noticed the "unusual activity", none for whoever thought the right MAC address was sufficient to allow sensitive network access.
Is that what they're calling it now? A cruel euphemism.
"We've designated your town a Centre for Industrial Decline."
"WTF - you've closed all the factories and mines, and made everyone unemployed."
"As I said, we've designated your town a Centre for Industrial Decline."
"a future without passwords for authentication. Microsoft is embracing tools like biometrics – including fingerprint and face scans – and device PINs as alternative"
Doesn't Microsoft know that a PIN is a type of password - one that's easier to guess because it uses a much reduced character set? If they said, "we want to move to 2-factor authentication, with a simpler something-you-know factor" it would be more honest than this "passwords BAD, we are doing something DIFFERENT" hype.
@Martin Gregorie - Nice description. Makes it easy to see that from step 5 to step 10 there is only a single copy of F, which is the weakness of the procedure and probably contributed to the snafu. The classic solution would be using a Grandfather-Father-Son rotation (should we call that Grandparent-Parent-Child now?), so there would still be two older copies in the event of any mistakes. Alternatively, use a single scratch disk to make a second copy of F after step 3. Or do both.
But how to justify getting all those extra expensive disk packs? Telling the boss, "it's in case I make a stupid mistake" would probably be career limiting. However, the backup is when the disks are most heavily used, read and written from end to end, and therefore the most likely time for a fault.
"I can't tell the difference unless they are side-by-side"
To be fair, quite a few are the same, there's not much to simplify in 一二三.
"I don't have any hardware suitable for testing handwriting input" How well it copes with the available device(s) would be an important question in itself. I've tried with a mouse before (dreadful) and the most popular Windows-based pen input devices have (or had, maybe it's changed) no Linux drivers. For many people, handwriting input on their phone has become their preferred method, they might respond well to the same experience on a desktop.
@AC
(1) using email as transport doesn't give me any assurance about the identity of the sender. If there is something additional (e.g. a GPG signature) giving that assurance, then that probably relies on published, persistent keys, which you claim are an attack entry point.
(2) no, I'm not. I wouldn't use ordinary email alone for something that sensitive. Your point was?
@Doctor Syntax - "easier than having to worry about whether your printer is local rather than in head office 2000 miles away"
So no worries walking 2000 miles to pick up your printout?
Printing is one of the few tasks where knowing the location of the device serving you is always going to be significant.
icon - I'll just pick on the poorly-chosen example and ignore the significant points.
While I agree simple country filtering can block most miscreant attempts, there is a danger of locking some people out of their accounts permanently. I've recently relocated to a different country, and while I tried to update my address for the most important services before leaving, there are others I didn't get round to. Then there's the accounts where I need to receive an SMS on the old number before I can login to update the details... even with roaming, the message might take longer than the 10-minute window to arrive.
So, make the default safe for most people, but have a fallback mechanism for the edge cases.
@Barry Rueger, SundogUK
What if you're both right? While the vast majority of firearm murders are inner city gang related, they are still outnumbered by accidental shootings by acquaintances and family members using legal weapons.
Is there a name for subtly changing the category of a statistic to claim your debate opponent is wrong?