Bug? Liking a root post in the boing group collapses it and makes it unreadable

We still have to keep VMs of ancient build environments around on the off chance that we need to service a really old version of something we ship (and certifying it on a newer build kit would be entirely too much effort) so I feel ya.

On the plus side one of the big pushes from security happening when I got laid off was to either get off the old stuff learn to deal with them being very locked down, isolated and audited like every 3 months.

These guys easily have the money to rebuild an open source app that’s been abandoned by a vendor, but they don’t have the technical or legal resources to reverse-engineer a closed source app tied to specific hardware & build it over again from scratch, &etc.

Um that is if I actually did know of any huge metropolitan hospitals still totally reliant on old versions of IE and Windows. Because I totally don’t, of course. Totally. If I did, the NDAs and BAs I am signatory to would totally prevent me from naming names or even talking about any such thing other than totally hypothetically. This is all just rumors, yeah, rumors I heard, that’s all. I’m sure there’s no truth in it whatsoever.

Up here, anyway, the problem in the medical arena tends to be that only specific versions are certified, so you can’t change it without recertification. Open source or otherwise.

HIPAA/HiTech regulations, in the US, pretty much makes using unsupported software illegal, but that only applies to the management of Legally Protected Health Care Information.

So I can’t use OpenBSD to host your health insurance or treatment data* but I can use Uncle Joe’s Fly-By-Night Heart Surgery Software from 1987, no problem!

I guess we really can’t expect sane regulation from an industrialized nation that adamantly refuses to allow single-payer health care,** though.

* unless I contract or build a maintenance organization to provide OS support for it.

** apparently because it’s just too cheap, reliable and simple for massive insurance company profiteering.

For a mobile device and particularly an Apple device, definitely. They
update aggressively which is also why every IT security professional I know
carries a modern iOS device.

To be 100% clear – is it happening after you like a post? Because that’s what I fixed and the code is still there to check for that case.

I’m wondering if it’s something else that is refreshing the top post.

Interesting! Every security professional I know wouldn’t touch one with a ten foot pole. They mostly run heavily customized android loads.

They’re probably not very good, then:

https://twitter.com/4Dgifts/status/793554938844643328

Android is a disaster, security-wise. It’s ok-ish if you have a new device you bought directly from Google and thus gets official updates fast from the source, but far from great.

The login page is borked for iOS 9.3.5 so I can’t even enter my password on the iPad II

Can you screenshot it? I’m curious what the “borked” means.

When I try to enter the username or password the login dialog disappears off the bottom of the screen … might be able to use a saved password via iCloud but can’t enter anything … is there a video capture app for iOS? I could video it but not screenshot it

You’re willing to judge people you don’t know (who are running custom OSes) based on the twits of other people you don’t know talking about non-customized OSes, and also you prefer to trust people who are running Apple OSes with built-in back doors? To each his own, I guess.

I personally run straight android straight from Google on my tablet, but then again I don’t put anything I care about on my tablet… :shrug:

It’s happening when I reply to a post. I haven’t tried liking.

So it is a separate bug then. I’m trying to reproduce it but I can’t seem to do it. Does it happen every time you reply? Is it immediately after the reply, or like 30 seconds later?

[quote=“Medievalist, post:55, topic:86506, full:true”]
You’re willing to judge people you don’t know (who are running custom OSes) based on the twits of other people you don’t know talking about non-customized OSes, and also you prefer to trust people who are running Apple OSes with built-in back doors? To each his own, I guess. [/quote]

As someone who does security for a living, I advocate that people who really want secure to use client-side encryption (like iPGMail), don’t use iCloud, backup to an encrypted removable drive, don’t use biometrics, use two-factor auth, don’t display mesages in the lock screen, and use third-party apps as little as possible.

Most people don’t need to be that careful. 2FA, don’t display messages, no iCloud, and local backups is enough for most people.

If you need a cloud storage option, I’ll trust Apple (who make $0 off of your personal details) over someone like Google who still make the vast majority of their income from mining personal data and details for advertising any day. It doesn’t make them inherently bad actors, but they have a MUCH greater incentive to do things like mine your email, photos and whatnot for marketable data than a company who derives no revenue from such practices.

Good advice, and you’ve touched the critical principle - data security is fundamentally an economic and psychological problem.

You have to make it more economically and psychologically attractive for people to not hack your systems, because all security can be defeated by the $5 wrench method. If it’s possible for someone to make eleventy million dollars by hacking my phone, then the costs of hacking my phone need to cause more harm to them than eleventy million dollars is worth.

Security’s one of my professional hats, too.

We need a new thread if we’re going to keep this up, but I’m out for the weekend. Gotta put a new roof on the house and no, that is not a euphemism!

It’s happened to me once, as well. When it did, it was the first reply to a fresh topic.

so, I’ve seen this happen too, especially the dreaded “GET THE BOING BOING NEWSLETTER” problem where the post text disappears completely. I wish I could find a pattern, though - I’m not sure what’s causing it. But it is happening.

Next time I see it I’ll pay close attention to browser and application states and report more details.

Not every time I reply, but it’s immediate. Unlike @nimelennar my replies weren’t to fresh topics, though.