For those that may be running Windows 2000, there’s some things you need to know.
With the change in DST taking effect March 2nd, your Windows 2000 boxes may see some odd behavior. There won’t be Windows Update patch or hot-fix released for this (unless you have an extended support agreement); so there’s some work ahead to keep things running smoothly.
Microsoft has released (read more) a fair bit of information (complete with sample scripts) that can be used to update any 2000 boxes you may have lying around. Those of us that keep 2000 boxes around for testing or even production use will need to make sure they are updated. I can only imagine the odd errors this will cause if these changes aren’t put in place.
This is a bit of an annoyance, I really wish Microsoft would have released this in the form of a Windows Update, though I guess this will probably help drive home the reality that it’s time to upgrade for many users.
During a recent discussion about the DarkMatter CA on a Mozilla mailing list, it was found that their 64-bit serial numbers weren’t actually 64 bits, and it opened a can of worms. It turns out that the serial number was effectively 63 bits, which is a violation of the CA/B Forum Baseline Requirements that state it must contain 64 bits of output from a secure random number generator (CSPRNG). As a result of this finding, 2,000,000 certificates or more may need to be replaced by Google, Apple, GoDaddy and various others.
Recently a programmer I know decided that it was time for a career change, leaving the IT field entirely. This gave me cause to think; what does it take to be a great developer. Many people go through school believing they have what it takes, only to receive a rude awaking once they enter the real world.
Before I go on, I think it’s important to define what I mean by developer, and the differences between a developer and a programmer.
Piracy is bad, right? Maybe not, and it seems Microsoft figured it out. Piracy can be indirectly profitable, both by giving you additional customers that you may collect from at some future point, and it also serves to reduce or limit the market share of rivals. Microsoft chairman, Bill Gates, acknowledged this back in 1998 while speaking at the University of Washington, saying:
Although about 3 million computers get sold every year in China, people don’t pay for the software.
The definition of a data breach seems to be reasonably straightforward and easy to understand — but that isn’t always the case. LinkedIn is back in the news thanks to a dataset containing profile information for 700 million records being traded among the darker actors on the internet. But LinkedIn is very clear about how they view this situation:
This was not a LinkedIn data breach and our investigation has determined that no private LinkedIn member data was exposed.
The last release of YAWAST was on January 1, 2020; while the release history was sometimes unpredictable, the goal was a new release each month with new features and bug fixes. I intentionally took January off from the project. In February, I left the company I was at; the team of penetration testers there had helped to inspire new features while looking for ways to make them more productive. But something else happened in February, an issue was opened – something that appeared to be simple, but in fact, made me realize that the entire project was in doubt.
