|
You're paranoid. 
But...yeah. I agree.
TTFN - Kent
|
|
|
|
|
Kent Sharkey wrote: You're paranoid.
Only because I am paranoid it doesn't mean they are not following us... 
M.D.V. 
If something has a solution... Why do we have to worry about?. If it has no solution... For what reason do we have to worry about?
Help me to understand what I'm saying, and I'll explain it better to you
Rating helpful answers is nice, but saying thanks can be even nicer.
|
|
|
|
|
Microsoft comes under blistering criticism for “grossly irresponsible” security | Ars Technica
Quote: “To give you an idea of how bad this is, our team very quickly discovered authentication secrets to a bank,” Yoran wrote. “They were so concerned about the seriousness and the ethics of the issue that we immediately notified Microsoft.” He continued:
Caveat Emptor.
"Progress doesn't come from early risers – progress is made by lazy men looking for easier ways to do things." Lazarus Long
|
|
|
|
|
This is news? This is SOP for Microsoft.
|
|
|
|
|
Dave Kreskowiak wrote: This is SOP for Microsoft.
To be fair, this is probably the case for most companies.
"the debugger doesn't tell me anything because this code compiles just fine" - random QA comment
"Facebook is where you tell lies to your friends. Twitter is where you tell the truth to strangers." - chriselst
"I don't drink any more... then again, I don't drink any less." - Mike Mullikins uncle
|
|
|
|
|
The std::vector is one of those types which is constrained to the point that there’s really only one viable implementation. "This is the way"
|
|
|
|
|
Future Windows releases will no longer support the Transport Layer Security (TLS) 1.0 and TLS 1.1 security protocols, Microsoft announced on Tuesday. Too Light on Security
|
|
|
|
|
I only hope they don't break anything else while removing those...    
M.D.V. 
If something has a solution... Why do we have to worry about?. If it has no solution... For what reason do we have to worry about?
Help me to understand what I'm saying, and I'll explain it better to you
Rating helpful answers is nice, but saying thanks can be even nicer.
|
|
|
|
|
Nothing important; only TLS 2.0+.
Freedom is the freedom to say that two plus two make four. If that is granted, all else follows.
-- 6079 Smith W.
|
|
|
|
|
AWS recently announced that starting from February 2024, they will be charging for public IPv4 addresses. Maybe now we can get moving on IPv6?
|
|
|
|
|
Kent Sharkey wrote: Maybe now we can get moving on IPv6?
I know it is a necessary evil, but I still can't get used to their structure (or lack of)
M.D.V.
If something has a solution... Why do we have to worry about?. If it has no solution... For what reason do we have to worry about?
Help me to understand what I'm saying, and I'll explain it better to you
Rating helpful answers is nice, but saying thanks can be even nicer.
|
|
|
|
|
True. It’s certainly not as easy (for me at least) to figure out how two addresses might route.
TTFN - Kent
|
|
|
|
|
BeyondMath is a Cambridge-based startup training AI models on the laws of physics. One day it might understand the universe better than humans Maybe it can make a better universe next time
|
|
|
|
|
Kent Sharkey wrote: Maybe it can make a better universe next time
Having been programmed by us... do you really are that optimist?
M.D.V.
If something has a solution... Why do we have to worry about?. If it has no solution... For what reason do we have to worry about?
Help me to understand what I'm saying, and I'll explain it better to you
Rating helpful answers is nice, but saying thanks can be even nicer.
|
|
|
|
|
:sucks breath through teeth:
Freedom is the freedom to say that two plus two make four. If that is granted, all else follows.
-- 6079 Smith W.
|
|
|
|
|
why did the apple fall on newtons head
sorry dave
Caveat Emptor.
"Progress doesn't come from early risers – progress is made by lazy men looking for easier ways to do things." Lazarus Long
|
|
|
|
|
Understanding my premise hinges on understanding that someone (a technician, in particular) can simultaneously be a craft professional and a business amateur. What's your hourly rate to discuss this?
|
|
|
|
|
Kent Sharkey wrote: What's your hourly rate to discuss this?
Depends on the clicks he get?
M.D.V.
If something has a solution... Why do we have to worry about?. If it has no solution... For what reason do we have to worry about?
Help me to understand what I'm saying, and I'll explain it better to you
Rating helpful answers is nice, but saying thanks can be even nicer.
|
|
|
|
|
That could work and you could even come out on top.
Let's say a project is ten hours for €90 an hour, that's €900.
However, if the customer asked for a quote you'd charge them €1000, or maybe even more.
That's at least €100 profit!
However, customers rarely know exactly what they want (less even what they need).
So after five hours they call you and they want feature X and of course that's only a small feature so it can be included in the original quote, yes?
But then you deliver it and they forgot feature Y, edge case Z and feature B should be different.
Now you need to talk price again, which also costs time (and someone's money).
The bigger the project the more changes you're going to get and the less accurate your estimate will be (because it'll always be an estimate).
I've once done a six week project that turned into a six month project and basically is still going three years later.
The client simply decided they wanted this and that as well and the new software they bought didn't do everything they thought it would so I had to make that too.
Imagine if I'd quoted them for the original six weeks!
Also, there's the kind of customers that call you once every two or three months (maybe even less) for a quick question or a small change.
Or even the customers that call you daily with short questions and small changes!
For the latter you could have a support contract that covers X hours.
For the former, not only would a quote for anything less than, say, a day be quite inefficient, the customer just wants their fix, not a quote!
So let's say, all in all, I very much disagree with this article.
Only for some projects do I quote up front and make it fixed price and more often than not do I come to regret it.
There's a reason why everyone bills by the hour.
|
|
|
|
|
The report shows SSH is the most commonly targeted service accounting for 68.2 percent of the samples seen, followed by Redis at 27.6 percent, and Log4Shell traffic at a mere 4.3 percent, indicating a shift in threat actor strategy no longer prioritizing the vulnerability as a means of initial access. "But soon again Shhhh, Shhhh Starts another big riot"
|
|
|
|
|
And if it is been the most attacked, I suppose it is because it is the one giving the most "rewards"?
M.D.V.
If something has a solution... Why do we have to worry about?. If it has no solution... For what reason do we have to worry about?
Help me to understand what I'm saying, and I'll explain it better to you
Rating helpful answers is nice, but saying thanks can be even nicer.
|
|
|
|
|
Because there are a zillion IoT devices out there exposing complete control with at most a password.
MY SSH server, on a nonstandard port, allows connection only with a known ED25519 key. There are eight of them, on my other devices.
Yet about 80% of my inbound internet traffic that makes it through the router and firewall is username/password SSH logon attempts. Most of the rest is web crawlers or http(s) probes.
I hate to think what it would look like with an exposed port 22.
Software rusts. Simon Stephenson, ca 1994. So does this signature. me, 2012
|
|
|
|
|
Adversarial attack involves using text strings and may be unstoppable. Because who doesn't want misbehaving AIs?
|
|
|
|
|
It was already clear that it was a question of WHEN and not a question of IF, and to be honest... I thought it would come sooner
M.D.V.
If something has a solution... Why do we have to worry about?. If it has no solution... For what reason do we have to worry about?
Help me to understand what I'm saying, and I'll explain it better to you
Rating helpful answers is nice, but saying thanks can be even nicer.
|
|
|
|
|
Vulkan API support should help systems get the most out of their GPU when running Android apps. Because you need a powerful machine to crush all that candy
|
|
|
|
General 
News 
Suggestion 
Question 
Bug 
Answer 
Joke 
Praise 
Rant 
Admin 
Submit an article or tip
