|
klosterdev posted:Florida user forgot their login, ignored I.T.'s attempts to follow up on the ticket, nobody got background checked on a gun for a year The real problem is that 291/365 (might be slightly off, cause this is from memory) applications were rejected retroactively now.
|
# ? Jun 11, 2018 11:24 |
|
|
# ? May 23, 2024 11:34 |
|
Someone’s gonna get guns taken from their cold dead hands
|
# ? Jun 11, 2018 16:22 |
|
ChickenOfTomorrow posted:Someone’s gonna get guns taken from their cold dead hands And the nice user lady who just wasn't good with computers is going to cop some really heinous federal charges for failing to follow federal firearms laws.
|
# ? Jun 11, 2018 19:17 |
|
Methylethylaldehyde posted:And the nice user lady who just wasn't good with computers is going to cop some really heinous federal charges for failing to follow federal firearms laws. Can't log in, better just not do my job for a year.
|
# ? Jun 11, 2018 19:28 |
|
MF_James posted:Can't log in, better just not do my job for a year. Where do I sign up?
|
# ? Jun 11, 2018 19:40 |
|
FW: Your Office 365 password is expiring posted:On June 11, 2018 @ 12:25 pm, Sales Guy wrote: At least he asked, I guess.
|
# ? Jun 11, 2018 20:23 |
|
They only use that email address during leap years.
|
# ? Jun 11, 2018 20:49 |
|
PirateDentist posted:Our 9 year old Cisco switch stacks started to develop... issues. POE disabling, not able to SSH into them... Just not providing network to certain ports... Turns out their uptime was 8.5 years, and so when powered off today, they did not turn back on. For nothing else it is worth watching EoS dates on these things and doing periodic reboots / upgrades/ power cycles so you can weed out failures and get them RMAd before you can’t. FWIW when I started my job I did replacements including repatching and repunching for tens of thousands of ports and hundreds of switches. Tends to suck unless the janitors have invaded the room and put a chair or fan in it or something.
|
# ? Jun 12, 2018 11:55 |
|
A ticket came in: "Remove pregnancy for user." Fortunately that's shorthand for a course on processing pregnancy tests. Aborting anything more than processes is way out of scope.
|
# ? Jun 12, 2018 15:54 |
|
Something something loss joke
|
# ? Jun 12, 2018 15:56 |
|
https://twitter.com/vmyths/status/1005213135353999361 https://twitter.com/vmyths/status/1005264927710437377
|
# ? Jun 12, 2018 16:06 |
|
Of course they've just bcrypted each character with a salt, so they can tell, right?
|
# ? Jun 12, 2018 16:32 |
|
Jaded Burnout posted:Of course they've just bcrypted each character with a salt, so they can tell, right? What does your heart tell you?
|
# ? Jun 12, 2018 16:33 |
|
iospace posted:https://twitter.com/vmyths/status/1005213135353999361 We all know the answer to this question.
|
# ? Jun 12, 2018 16:33 |
|
Zil posted:What does your heart tell you? To stop eating so many sausages.
|
# ? Jun 12, 2018 16:34 |
|
But think of all the taxpayer money we saved by going with the lowest bidder!
|
# ? Jun 12, 2018 16:50 |
|
Renegret posted:But think of all the taxpayer money we saved by going with the lowest bidder! My experience has been that the amount bid in a government contract is inversely proportional to the quality of the product.
|
# ? Jun 12, 2018 16:54 |
|
Jaded Burnout posted:To stop eating so many sausages. My heart tells me to eat more sausages. Gotta die young so I don't need to worry about saving for retirement.
|
# ? Jun 12, 2018 16:55 |
|
Jaded Burnout posted:My experience has been that the amount bid in a government contract is inversely proportional to the quality of the product. I read an article a few years ago about the NYC Transit system that amounted to this. They wanted to upgrade a portion of the rail system and gave the contract job to the lowest bidder. The short version is that the project ended up seriously late and horribly over budget as a result of the lowest bidder being the lowest bidder because they had no idea how to actually do the job. Then the MTA said, hey we learned our lesson so NEXT TIME we're gonna do better. So they went into the next phase of the project, and awarded the bid to the same company who hosed it up the last time, because they were the lowest bidder again. https://www.theatlantic.com/technology/archive/2015/11/why-dont-we-know-where-all-the-trains-are/415152/ Renegret fucked around with this message at 17:03 on Jun 12, 2018 |
# ? Jun 12, 2018 17:01 |
|
Renegret posted:I read an article a few years ago about the NYC Transit system that amounted to this. They wanted to upgrade a portion of the rail system and gave the contract job to the lowest bidder. america needs to ban the lowest bidder practice, and go with best value, ie cheapest + history of getting poo poo done right.
|
# ? Jun 12, 2018 18:11 |
|
wargames posted:america needs to ban the lowest bidder practice, and go with best value, ie cheapest + history of getting poo poo done right. iirc we (meaning the US gov't) used to write huge penalties into contracts if dates were missed and other stuff like that.
|
# ? Jun 12, 2018 18:24 |
|
In the UK they get a tech architect to draw four big boxes on a whiteboard with component names on and write "IBM, £100m", "Capita, £300m" next to them, job done.
|
# ? Jun 12, 2018 18:25 |
|
This is a tangled web because harsh penalties or huge bonds push business toward a few large firms that can afford them. That in turn creates a situation where you only have a couple megacontractors. Those large contractors can afford to eat small penalties, and nobody has the will to impose large ones, because you might put one of your 2-3 megacontractors out of business, and then you've just made the oligopoly worse. Off the top of my head, the solution that suggests itself is to add a third party responsible for auditing progress and ensuring the success of the contract. They'd need to be well capitalized and to understand the subject matter, but they wouldn't be involved in actual service delivery. They'd rate the proposals and the bidders themselves and provide quotes for insuring the success of each bid. Those insurance costs could then be added to the actual bid costs to come up with a final price. Large companies with bad practices would still be in the running so long as they could afford insurance rates, but smaller and/or newer players could compete fairly for business provided they could demonstrate competence to the insurers. I have no idea how you could get that off the ground, though.
|
# ? Jun 12, 2018 19:16 |
|
iospace posted:https://twitter.com/vmyths/status/1005213135353999361 When I complained about my previous employer requiring a change in at least one of the first six characters of the password, this whole thread was falling over itself to say it was fine and no of course the password wasn't stored in plaintext.
|
# ? Jun 12, 2018 19:19 |
|
Zorak of Michigan posted:This is a tangled web because harsh penalties or huge bonds push business toward a few large firms that can afford them. That in turn creates a situation where you only have a couple megacontractors. Those large contractors can afford to eat small penalties, and nobody has the will to impose large ones, because you might put one of your 2-3 megacontractors out of business, and then you've just made the oligopoly worse. https://www.gov.uk/service-manual/agile-delivery/apply-for-approval-to-spend-money-on-a-service
|
# ? Jun 12, 2018 19:39 |
|
Jaded Burnout posted:Of course they've just bcrypted each character with a salt, so they can tell, right? That would still be a very bad idea.
|
# ? Jun 12, 2018 19:44 |
|
Jaded Burnout posted:https://www.gov.uk/service-manual/agile-delivery/apply-for-approval-to-spend-money-on-a-service Didn't the GDS start off as a good idea and then got hosed over a few years back? Something along the lines of wanting to go with small UK startups for web services that needed developing but ending up being pushed towards the normal Capita, Atos etc. I need my memory jogging.
|
# ? Jun 12, 2018 19:56 |
|
Geemer posted:When I complained about my previous employer requiring a change in at least one of the first six characters of the password, this whole thread was falling over itself to say it was fine and no of course the password wasn't stored in plaintext. I don't remember your specific incident, but most password change forms require you to also type in your current password, which is what allows the system to test that criteria. The example in the tweet does not do this.
|
# ? Jun 12, 2018 19:56 |
|
Thanks Ants posted:Didn't the GDS start off as a good idea and then got hosed over a few years back? Something along the lines of wanting to go with small UK startups for web services that needed developing but ending up being pushed towards the normal Capita, Atos etc. I need my memory jogging. They're being slowly dismantled to the gloating of The Register, yes. Usual Whitehall power struggles; the departments don't want central government controlling them. The Digital Marketplace is still a thing allowing smaller companies to bid for jobs and the in-house staff are still scrappy, but the writing's been on the wall for a while since Home Office, DWP and HMRC are standing around with knives and forks. DCMS used to stand for "Department of Culture, Media, and Sport", but what a surprise after their former director took over GDS the D suddenly stood for "Digital".
|
# ? Jun 12, 2018 20:04 |
|
The Fool posted:I don't remember your specific incident, but most password change forms require you to also type in your current password, which is what allows the system to test that criteria. Pretty much this, if the user provides the password in plaintext in the PW change form, you can trivially validate it against the salted hashed stored password, then do all your rule checking using the plaintext copy of new and old password. If it doesn't ask for old password, then yeah password is probably plaintext somewhere.
|
# ? Jun 12, 2018 20:17 |
|
At my job there's a couple websites that all use the same username and password. On one site, the password must be at least 8 characters but on the other, it can be at most 8 characters. However, if the user has a password longer than 8 characters, they can just type in the first 8 characters and get into the second site. Also, though I've never personally confirmed this, I have it on good authority that on the second site the password field is not case sensitive, but the username field is. Finance!
|
# ? Jun 12, 2018 21:40 |
|
I guess as long as you can just buy insurance against hideously insecure security practises there will always be people who see that as the easier/cheaper option
|
# ? Jun 12, 2018 21:44 |
|
wargames posted:america needs to ban the lowest bidder practice, and go with best value, ie cheapest + history of getting poo poo done right. This is a misnomer really. Especially in New York. You have to write criteria to your RFP and weight the response categories so the cost isn’t necessarily overriding. However , if you write the RFP like a dope using the copy and paste method or don’t understand what you’re writing it for, then the cost category can effectively drive selection. tl;dr: don’t hate the game hate the player
|
# ? Jun 12, 2018 22:53 |
|
Thanks Ants posted:Didn't the GDS start off as a good idea and then got hosed over a few years back? Something along the lines of wanting to go with small UK startups for web services that needed developing but ending up being pushed towards the normal Capita, Atos etc. I need my memory jogging. Nah it was always run by a bunch of Nathan Barley types fixated on the idea that no one outside Shoreditch "gets" the web.
|
# ? Jun 13, 2018 00:42 |
|
ookiimarukochan posted:Nah it was always run by a bunch of Nathan Barley types fixated on the idea that no one outside Shoreditch "gets" the web.
|
# ? Jun 13, 2018 00:54 |
|
Aunt Beth posted:American translation much appreciated, please and thank you.
|
# ? Jun 13, 2018 00:57 |
|
Nathan Barley is an uncomfortably true portrayal of the worst of the East London startup personality. I think it's on Amazon Prime in the US, only 6x 30 minute episodes. Written by Charlie Brooker of Black Mirror fame, and Chris Morris who did Four Lions.
|
# ? Jun 13, 2018 01:02 |
|
Thanks Ants posted:Nathan Barley is an uncomfortably true portrayal of the worst of the East London startup personality. I think it's on Amazon Prime in the US, only 6x 30 minute episodes. Written by Charlie Brooker of Black Mirror fame, and Chris Morris who did Four Lions. Sounds like a British Silicon Valley.
|
# ? Jun 13, 2018 01:39 |
|
Partycat posted:This is a misnomer really. Especially in New York. You have to write criteria to your RFP and weight the response categories so the cost isn’t necessarily overriding.
|
# ? Jun 13, 2018 05:47 |
|
|
# ? May 23, 2024 11:34 |
|
Thanks Ants posted:Nathan Barley is an uncomfortably true portrayal of the worst of the East London startup personality. I think it's on Amazon Prime in the US, only 6x 30 minute episodes. Written by Charlie Brooker of Black Mirror fame, and Chris Morris who did Four Lions. But back in the day when phones still had buttons
|
# ? Jun 13, 2018 09:15 |