|
This one system runs on servers spread across 3 cities (for technical reasons). We just this month moved 5 racks of data processing from the 3rd floor of this building to a new datacenter on the 2nd floor. This took 2 YEARS of planning. We just finished the move this month (with no loss of service).
|
|
|
|
|
When I worked at DOW Chemical I was introduced, as an intern, to the Disaster Recovery Plan they had.
Their backups go offsite.
They rent a virtual offsite location year round.
Quarterly they test their restore process, and TIME IT. When you are dealing with this much data, and tens of thousands of shipments coming into various ports throughout the world, this gets serious.
They update their documentation on when people have to be on planes to fly to one of the few restore centers, and had fallback plans for emergency leasing of jets, and people driving!!!
My first question, after realizing that MANY companies pay this same company for these services, and access to their mainframes, etc.... "What happens if many companies get hit at the same time?"
The answer was "The risks of that are LOW, but they can handle up to 3 companies at once". Which is incredibly rare. (And the lesson of the last 25 years... UNTIL IT ISNT)
This outbreak brought back those two memories.
Having worked for companies that CANNOT REASONABLY complete a "backup" in 24 hrs, think of your exposure.
Just hope it never spreads through bitcoin
|
|
|
|
|
DVDs and CDs have a shelf life unfortunately.
|
|
|
|
|
I think the news reports were not completely accurate. Big systems were attacked but backups could be restored which took a day or two. That is pretty much what I would expect especially on a weekend.
Peter Wasser
"The whole problem with the world is that fools and fanatics are always so certain of themselves, and wiser people so full of doubts." - Bertrand Russell
|
|
|
|
|
I suppose it makes sense that an IT professional would want the NHS to spend more of its budget on IT professionals.
Me, I want them to spend ALL their money on making people well.
When the people who distributed this malware are caught, let's hope that they are given life sentences for it.
An object lesson needs to be taught: Go ahead and be an @rsehole, but certain things are off-limits.
I wanna be a eunuchs developer! Pass me a bread knife!
|
|
|
|
|
I'd bet that the @rseholes are not that focused, just blast it out there and get anyone, don't care who they are just want their money.
I have sympathy for the NHS, totally overworked health professionals who have to rely on computer systems that they barely understand.
Never underestimate the power of human stupidity
RAH
|
|
|
|
|
Mark_Wallace wrote: When the people who distributed this malware are caught, let's hope that they are given life sentences for it. Hell, NO!
Hacking a system that involves human safety (medical, air traffic control, first-responder communications, and so on) ought to be a felony. If a person dies as a consequence of the hack, it ought to be prosecuted as first-degree murder, with a mandatory maximum possible sentence allowed under the law. If that sentence dictates capital punishment, all the better.
I want their heads mounted on pikes outside the castle walls as a warning to others.
Software Zen: delete this;
|
|
|
|
|
All I can say is that you guys are going easy on them...
the sad part is that this goes back to the NSA!
|
|
|
|
|
The first rule of security is, you don't "talk about it" (your measures).
I use 3 levels:
1) Extra local drive (D)
2) External drive
3) Cloud storage.
Most acquaintenances I steer to cloud storage (PC and Mac) for their photos and the like.
"(I) am amazed to see myself here rather than there ... now rather than then".
― Blaise Pascal
|
|
|
|
|
I remember when well-meaning and trusted IT professionals took rolls of backup-tape home with them for off-site storage because the company WOULDN'T PAY for off-site backup. I don't remember any adverse effects ... and that's not because my memory is shot. Of course, back then people didn't know how to "monetize" other folks' data!
|
|
|
|
|
It seems to me a big part of today's problem is that companies are too stingy to pay for proper backup facilities and procedures (and possibly personnel), to cover the kind of eventuality that we saw this past week. If so, they get what they deserve!
Get me coffee and no one gets hurt!
|
|
|
|
|
I still take my nightly backup on LTO-6 tape each evening. Two weeks of tape on a rotating basis gives me 10 days I can go back in case of infection Stupidity.
|
|
|
|
|
First thing: Minimum budget.
Second thing: Many people who work in medical institutions dont know or dont care about cybernetic security at all.
Last thing: Many people think that they had a paid version of a famous anti virus will help protect them from anything, even electrical leak.
|
|
|
|
|
Simple. Make a backup and place it into a fireproof safe. Then make a second backup in case there is a fire in the fireproof safe. (Source: Hogans Heros.)
|
|
|
|
|
This is so nice.
I've got some Jasmine JavaScript tests that include NaN for my arrgh.js library, works fine.
Example:
it("should add NaN to the list", function () {
var l = new arrgh.List();
l.add(NaN);
expect(l.toArray()).toEqual([NaN]);
}); No problem at all, even though NaN does not equal NaN.
The alternative is that I manually test the entire array (I've got some other tests involving NaN).
Now I decided to add support for Node.js.
So I install jasmine-node, load my tests using require() , run them and get the following error...
Expected [ NaN ] to equal [ NaN ].
Yes, I know NaN does not equal NaN, I know it's a friggin bitch to work with, that's why I'm specifically testing with NaN!
The browser framework does it right, it treats NaN to be NaN in such cases, or this kind of tests become pretty difficult to test.
So with Node.js support my library becomes a bit more difficult to test I guess
var arr = l.toArray();
expect(arr.length).toBe(1);
expect(arr[0]).toBeNaN(); On to the bigger tests...
|
|
|
|
|
Without knowing the details...
NaN <> NaN for a very good - mathematical reason, so I'm not sure that adding a special case and make it equal you are doing the right thing...
Skipper: We'll fix it.
Alex: Fix it? How you gonna fix this?
Skipper: Grit, spit and a whole lotta duct tape.
|
|
|
|
|
If I'm adding NaN to an array, how else am I going to check if NaN is, indeed, added to the array?
I'm not doing calculations with NaN (not here anyway).
There is always a way to check if some variable is NaN, they just make it difficult.
It seems only the browser library made it easy (as it should, we're making assertions here).
|
|
|
|
|
Explicitely test for NaN-ness, e.g. `isNaN` in Javascript.
(Which, in a IEEE-compliant environment could be approximated by x != x )
I agree with pwasser, adding a special case for toEqual is likely more trouble by confusion than it's worth. In a way, being not equal to itself is the definition of NaN, so to understand your special test correctly I have to know there is special handling for NaN's.
|
|
|
|
|
Yeah, I get that.
Except that it sucks when Jasmine does add a special case and Jasmine-Node doesn't.
You'd expect your tests to run on Node like they do in the browser since it's still Jasmine (and I'm not talking about whether the tests still pass, just that the assertions etc. stay the same).
To be honest, I was surprised that Jasmine could compare [NaN] with [NaN], but it did. And now I had to rewrite my tests. Luckily, only a few of over 700
|
|
|
|
|
Off topic, but similar. I have some simple Python code that implements a 5 line server that receives POST requests with some JSON content. Everything parsed fine, etc. This is on a Window 10 machine.
I ran the same code on my W7 machine, nothing worked. Getting the JSON content becomes a slightly different method call. For some reason, the string doesn't look like JSON (it does on the W10) machine, requiring further massaging. Even the JSON converter needed something slightly different.
WTF? I'm running the exact same Python version and the exact same versions (at least so they tell me) of the dependent packages. Heck, I even had to use Postman instead of Advanced REST Client (Chrome plugins) because ARC didn't seem to respect the JSON content type!
Maybe it's my W7 machine, maybe the package version number is lying, who knows.
Marc
Latest Article - Create a Dockerized Python Fiddle Web App
Learning to code with python is like learning to swim with those little arm floaties. It gives you undeserved confidence and will eventually drown you. - DangerBunny
Artificial intelligence is the only remedy for natural stupidity. - CDP1802
|
|
|
|
|
Crazy sh*t
Try explaining that kind of issue to your manager.
"Why did it take you so long?"
"Because my code doesn't know how to run "
|
|
|
|
|
|
Much of the UK health service has already been shut down as a safety measure.
|
|
|
|
|
Richard MacCutchan wrote: the UK health service has already been shut down as a safety measure.
Considering the number of people they kill, I'm not surprised!
If you have an important point to make, don't try to be subtle or clever. Use a pile driver. Hit the point once. Then come back and hit it again. Then hit it a third time - a tremendous whack.
--Winston Churchill
|
|
|
|
|
There are at least 2 different variants out there. 1 has a hard coded Url and has been "Sink holed". A system may still get infected but if it can find the url it will Exit the Infection process.
|
|
|
|