Posts by Martin hepworth

show how hard this is

Given the fact thats was 2 years in the planning and they got found in less than a month I think this also highlights how actually hard this sort of thing is.

It didn't help the mitm portion consumed enough extra cpu to make it noticable, even on modern hardware/vm's.

Overheating

Lets not forget the heat issues and he numbers of us that replaced the heat sink and dropped in a larger transisor

exchange extended update

seems if you're running in hybrid mode youre into some fun https://microsoft.github.io/CSS-Exchange/Security/Extended-Protection/

moving to Atlanta

From what I see of friends that work in ARM they are heavily recruiting in Atlanta , seems more of a geographic 'rebalance' to me

Digital and Systime

Reminds me of the fun Systime has reselling badged Digital VAX's and then having to source them on the grey market.

Open on failure

Would love to see ANY other cloud provider be this open this quick....

Stuff happens it's how you handle it that matters. Come on Azure/GCP we're looking at you

across all Liberty Media in Europe

It was more than just Uk and Eire VM, this was across all the Libery Media ISPs in Europe by the look of information passing around the NoGs etc

why is this an issue

They cant get at my password vault, it's secured by my master password.

Why is the sale a security risk? The legislation under which they operate doesnt change that much given US law, unless they move the State they are HQ-ed in

Workstation maintenance

If you've you workstation licence on maintenance/support you the updated included so.....

pipex

Given they've only recently dropped the pipex address I've had for many years it's about time tbh

Motorways

Already on motorway signage......

Verizon customer leakage

This isnt Cloudfares stuff up,but a Verizon customer leaking routes from info on Nanog

https://mailman.nanog.org/pipermail/nanog/2019-June/101577.html

737max

Sounds horribly similar to the error on the 737max computer systems - bad sensors confusing the computer

USS Enterprise similar

The USA are having similar issues with the nuclear fleet..

https://www.popularmechanics.com/military/navy-ships/a22690208/us-navy-dismantling-uss-enterprise-nuclear-disposal/

WSUS/SCCM

So that fact they pushed it out to WSUS in November doesnt count then?

IR response

was awesome

they had PR out in a few hours including notice to the local stock exchange

regular updates from a dedicated press room via trained folks

How much of this could we do?

time to fess up...

yup it take a couple of hours for the intern to alter the status in Frontpage... this time lag hasnt changed for years, no idea why they cant update their status update process

3 root causes???

No.. a single root cause of an overloading of the service which wasnt gracefully handled by separate cascading systems....

was always the risk

Since they retired the Shuttle without it's replacement in place...

Says a Brit who's govmt retired all the aircraft carriers well before the replacements where built, never mind operational

blame

"The worst part is them trying to blame the user for issues on their end."

This is a common issue with Azure support - your app isnt cloud ready , it not our fault the underlying OS/hardware failed and took a bunch of data with it...is a common retort from MS support.

happy for adverts if....

They didnt send me malware, werent overly intrusive and didnt generally get in the way of a fast browser experirence - cf lot of US news sites post GDPR stripped all the adverts and they run at 10% of the download size and page load many many time faster

But the malware is the real issue. Sort out the security, stop reselling the ad platforms 6 layers deep and dont take 20 seconds to page load.....

DR

yup DR is a still a requirement across data centres.....'the cloud' isnt magic and neither is bog standard hosting

Person of Internest

Someone's been watch the Person of Interest re-runs...

Patch availablity

Patching my Andriod device, yeah right.

It's getting better with any Oreo or later devices ,but even Oneplus have been really lax in getting these out, so I dont expect any big improvement soon unless you're dropping big ££$$ on Google's native kit

Built buy??

Alot of the fabrication has been done by the UK military Engineer regiments.

Designed my volunteers certainly.

weapons system

Neither has it weapons system and wont have for another couple of years to replace the Lynx's Sea Skewer

extension

Just an extension of the existing deal between Virgin and EE..

test case?

Probably a test case before they start on others as D-Link are no worse or better than many other manufacturers in my experience

DR

No DR/BC in place then - I wonder how'd they cope of they lost the entire buildling like Vale-of-White-Horse/South-Oxfordshire did?

gerenic issue not just BT/Plusnet

https://tech.slashdot.org/story/16/12/10/014231/new-bug-in-windows-10-anniversary-update-brings-wi-fi-disconnects

happening to many win10 AU and started before some fix came out on Friday.

malware

Well if the ad networks were malware free I'd be more than happy to see the adverts

following Brexit????

Following the Brexit vote - surely

No one's pulled the trigger on this yet, so we have no Brexit just yet, merely the threat of it.

Daily reports

So they just send a report out the next day for you to check where all your money went! good, so I know where it went yesterday, so I'll found out perhaps quicker I've been stung

Breach notification

Well given the most orgs in the UK (SMBs etc) dont HAVE to submit a breach notification to the ICO where as healthcare (NHS at least) does.

This will change when GDPR come into force so we'll get a better view of sector views.

No Unsubscribe?

Hmm no unsubscribe huh - will be interesting to see how the Can-Spam, CASL and the various EU based legislations stack up against this.

stay inside your vehicle?

Not the advice from the UK traffic folks - if you get hit by someone verring onto the hard shoulder you're pretty much dead, Much better to be out of the car

They fought the cloud..

So a case of..

They fought the cloud and the cloud won

sorry couldnt resist

Heal...

I read that as Heal Thinners, so was about to grab a doughnut...but off to specsavers now.

It's in the cloud

I pay money, they must be backing stuff up... did you actually check?

DR/BC

yeah cos all the big folks like Netflix dont need multiple redundant instant DR setup to cope with AWS etc falling over.

Action Fraud

AF would be alot more useful if you could put in actual details of the (attempted) fraud sich as email headers, caller-id info for Smishing stuff etc rather than just aggregating the info

HR 1428 and US Freedom Act

Seems these covers only US "agencies" (HR 1428) or Intellignce Agencies (US freefom Act) not companies who hold data in general so how does this provide better protect than us Europeans already have when what have covers everyone!