secunia.com · Domains · Slashdot Mirror

I can say the same of Linux, via ANDROID... apk by Anonymous Coward · 2012-01-11 11:26 · Score: -1 · on Microsoft Readying Massive Real Time Threat Intelligence Feed

ANDROID's a Linux. How's it doing, now that it's no longer hiding behind "security-by-obscurity" (ie - lack of majority of users on a platform especially amongst 'novices' in said tech)?

Sorry but... truth is, it's being TORN UP on the security/malware/abuse front... badly.

(Too bad too, because they're nice "smartphones" to run nowadays with ANDROID, but I steer clear of them ALL, until "security maturation" happens).

* Funniest part's that I KNEW this was coming, despite all the "Linux = Secure" stuff I heard for YEARS (almost a decade now in fact) on /. here...

So - sure, you can secure a KERNEL all you like (Linux has an outstanding remote bug in it right now, thru the latest/greatest 2.6x mainstream kernel in fact -> http://secunia.com/advisories/47199/ too, so it's FAR from invulnerable)...

However, even in going on nearly decade old 2.6 mainstream core/kernel now? They STILL find issues in security in its core/kernel (this tells you how complex computer programming is, & especially on HUGE programming artifacts, like OS are)

Yes... even to this very day? Bugs in the kernel?? Yes!

Nothing's perfect!

PERFECTION? It's a ROAD, not a destination...

I think all OS exemplify that, yes, even Windows NT-based ones, MacOS X, & others as well.

APK

P.S.=> Anyhow/anyways - That's a pretty simple question to answer, go for it...

Because FINALLY?

Yes, a Linux has some SERIOUS marketshare but that's "backfiring" on those who literally believed the general "Linux=Secure" b.s. that flew around the web, especially around here I have found, bigtime.

NOw, it's a Linux (in ANDROID) that's amongst mostly "tech noobs" & it's going thru EXACTLY what Microsoft's Windows has, due to being the "OS of 'the masses'" & the majority of the masses?

They're NOT server admins/tech gurus (who are NOT as easy to take advantage of, but 'noobs' are) - they get "TARGETTED FOR TERMINATION" by the programmatic work of malware makers, yes, even on a Linux & ANDROID SHOWS US ALL THAT MUCH, easily... apk

Re:Clean up? Start fresh by Anonymous Coward · 2012-01-04 06:55 · Score: 0 · on Cleaning Up the Mess After a Major Hack Attack

I have yet to see a hacker that can infect a machine using an odf file .

How about PDF? SWF? XLS(x)? DOC(x)? Those are never the vector for code injection, right? And as for ODF... gotcha:

How about this one
Or this one

"Executable" ain't just EXE, COM, MSI and DLL anymore.

Re:Hazard by Anonymous Coward · 2012-01-03 10:04 · Score: 0 · on What's Keeping You On XP?

There are known, unpatched vulnerabilities in Windows XP. See Secunia's advisory database for examples.

There are known, unpatched vulnerabilities for every mainstream OS very often.

Re:Hazard by nman64 · 2012-01-03 09:24 · Score: 3, Informative · on What's Keeping You On XP?

That very much depends upon how you define "safe enough". There are known, unpatched vulnerabilities in Windows XP. See Secunia's advisory database for examples. Furthermore, XP's defensive capabilities are outdated. I'm certainly not arguing that newer platforms are invulnerable, but they benefit from technologies and practices that have been created or honed over the last decade. At an even lower level than DEP, ASLR and the like, Windows 7 does a far better job of handling privilege separation, which goes a long way in mitigating risk from vulnerabilities. I personally prefer Linux, but I know better than to advocate switching to everyone. Windows Vista and Windows 7 still represent marked improvements over Windows XP, even now while the patches for XP are still coming.

Re:People w/ money, personal info. & privacy s by Anonymous Coward · 2012-01-01 14:30 · Score: 0 · on Twitter To Open Source Android Security Tech

They're still security problems fir ANDROID no matter what kind of "spin"'s put on the 84 security issues I posted on ANDROID, & they are serious (especially when they involve folks' money, personal info., & even privacy being stolen or compromised).

That's the point I am making on that note (when you stated that those things occurring aren't serious).

That, along with the fact that once a Linux starts to get used (near or as much as Windows is on PC desktops), it too, will be victimized & exploited (as ANDROID, a Linux variant, has been on smartphones).

APK

P.S.=>

"Except windows desktops still have remote code exploits that allow a malicious person to install persistent software simply by having you visit a webpage (or worse, simply sending a malicious packet to an IP address, there's a ton of active worms circulating on windows desktops), a new such hole that is being exploited is plugged every other month." - by mSparks43 (757109) on Sunday January 01, @07:18PM (#38559562) Homepage

There isn't a single one I can't "work-around" easily (& I mean EASILY) in the unpatched security vulnerabilities in Windows 7 here (2 remote unpatched, %environment% var expansion & DAO 3.6 lib):

https://secunia.com/advisories/product/27467/

or Windows Server 2008 here (2 remote unpatched, colorui.dll, & %environment% var expansion):

http://secunia.com/advisories/product/18255/

So, they're NO PROBLEM @ ALL here!

(E.G.-> On the affected libs - I don't use their functionality here anyhow, & have corrected any environment paths (easy to edit out % ones is why) & if needed, headless mode wouldn't need colorui.dll, & I could unregister colorui.dll & the DAO 3.6 libs (or use a higher version) & be done with those too, easily))...

... apk

Re:People w/ money, personal info. & privacy s by Anonymous Coward · 2012-01-01 14:30 · Score: 0 · on Twitter To Open Source Android Security Tech

They're still security problems fir ANDROID no matter what kind of "spin"'s put on the 84 security issues I posted on ANDROID, & they are serious (especially when they involve folks' money, personal info., & even privacy being stolen or compromised).

That's the point I am making on that note (when you stated that those things occurring aren't serious).

That, along with the fact that once a Linux starts to get used (near or as much as Windows is on PC desktops), it too, will be victimized & exploited (as ANDROID, a Linux variant, has been on smartphones).

APK

P.S.=>

"Except windows desktops still have remote code exploits that allow a malicious person to install persistent software simply by having you visit a webpage (or worse, simply sending a malicious packet to an IP address, there's a ton of active worms circulating on windows desktops), a new such hole that is being exploited is plugged every other month." - by mSparks43 (757109) on Sunday January 01, @07:18PM (#38559562) Homepage

There isn't a single one I can't "work-around" easily (& I mean EASILY) in the unpatched security vulnerabilities in Windows 7 here (2 remote unpatched, %environment% var expansion & DAO 3.6 lib):

https://secunia.com/advisories/product/27467/

or Windows Server 2008 here (2 remote unpatched, colorui.dll, & %environment% var expansion):

http://secunia.com/advisories/product/18255/

So, they're NO PROBLEM @ ALL here!

(E.G.-> On the affected libs - I don't use their functionality here anyhow, & have corrected any environment paths (easy to edit out % ones is why) & if needed, headless mode wouldn't need colorui.dll, & I could unregister colorui.dll & the DAO 3.6 libs (or use a higher version) & be done with those too, easily))...

... apk

Re:Say Whom? by Em+Adespoton · 2011-12-23 07:45 · Score: 1 · on Major Australian Retailer Accused of Selling Infected Hard Drives

http://secunia.com/advisories/43131

Your media player choice doesn't really matter if an exploit exists in the version you're running.

Re:Not for long? by hairyfeet · 2011-12-18 18:42 · Score: 2 · on Canonical To Remove Sun Java From Repositories, Users' Machines

Thank you, but I'm just a humble retailer that got tired of being lied to. I mean if their OS was actually good then why has ASUS has given up on Linux? If it is so stable then why does Dell have to run their own repos even though we are talking a teeny tiny subset of hardware? If it is so secure then

how, do you explain these?

So you see somewhere on the way to be a good OS Linux quit being an OS and became a religion. Admittance of the myriad of problems is NOT allowed, anymore that you could question the Koran or Bible in the home of a fundie. Frankly Canonical could change the default picture to Goatse and we'd see apologists come out of the woodwork to explain that is actually a biting social commentary on our times.

Here are some facts: Fact 1- All the major OEMs frankly ignore Linux not because of some secret M$ Ninja conspiracy, but because its so damned unstable thanks to Torvalds treating the kernel as his own playground. this attitude which is expressed by the man himself right here mean a company either has to do like dell and pay a team to basically run their OWN distro, no small task, or deal with a broken mess when Torvalds goes 'Lol Goatse!" and breaks shit. this is why even Canonical admitted there is a FOUR TIMES higher return rate for Ubuntu netbooks which makes linux a money LOSER for any company foolish enough to try. Walmart, Asus, these companies don't just abandon a product willy nilly you know, they did it because of the reasons i listed.

The sad part? All the basic parts are there, a modern kernel, DEs that with some serious polish could be great, plenty of drivers, but the zealots and itch scratching devs make sure Linux goes exactly nowhere. the ONLY reason it has gotten anywhere on servers is MSFT's frankly ass raping prices on CALs. If MSFT dropped the price of WinServer to $100 and the price of CALs to a buck a pop Linux would dry up and blow away, anybody that was honest would admit this. As a Linux admin i know put it "if you give a Windows and Linux admin the same job that the Linux guy has done repeatedly then the Linux admin WILL win, but if its a completely new task? the windows admin will be home making a sandwich before the Linux admin is done Googling".

But instead of admitting that CLIs are for servers and GUIs for desktops you'll get 300 page treaties on how "CLI is leet!" and how much better the world would be if "They would only embrace the POWER of CLI" like its the god damned force. So instead all you get is flag waving and fangirls. notice how many above me rushed to say "And I'm not a fanboi"? Every time you read that the translation should be "I'm such a fangirl I squee like a tweener at a Beiber concert when i see a Bash prompt!"

Ultimately though their denial can't change reality and the simple fact is their precious awesome OS lower than JavaME , a shitty third rate cellphone OS. Why? If it is sooo good why is it so low? Because it ISN'T good, its a buggy, fiddly, unfriendly, unintuitive, CLI heavy fiddly bitch that is about as far from the level of polish from OSX and Win 7 as it is from here to Europa. If they weren't so busy drooling over bash prompts maybe they'd ask the most important question, which is "What are our competitors doing right that we are doing wrong?' but that would mean admitting 70s terminals are as out as Disco, and they'd rather choke on RMS's sandals that admit that little truth.

Re:Not for long? by hairyfeet · 2011-12-18 18:42 · Score: 2 · on Canonical To Remove Sun Java From Repositories, Users' Machines

Thank you, but I'm just a humble retailer that got tired of being lied to. I mean if their OS was actually good then why has ASUS has given up on Linux? If it is so stable then why does Dell have to run their own repos even though we are talking a teeny tiny subset of hardware? If it is so secure then

how, do you explain these?

So you see somewhere on the way to be a good OS Linux quit being an OS and became a religion. Admittance of the myriad of problems is NOT allowed, anymore that you could question the Koran or Bible in the home of a fundie. Frankly Canonical could change the default picture to Goatse and we'd see apologists come out of the woodwork to explain that is actually a biting social commentary on our times.

Here are some facts: Fact 1- All the major OEMs frankly ignore Linux not because of some secret M$ Ninja conspiracy, but because its so damned unstable thanks to Torvalds treating the kernel as his own playground. this attitude which is expressed by the man himself right here mean a company either has to do like dell and pay a team to basically run their OWN distro, no small task, or deal with a broken mess when Torvalds goes 'Lol Goatse!" and breaks shit. this is why even Canonical admitted there is a FOUR TIMES higher return rate for Ubuntu netbooks which makes linux a money LOSER for any company foolish enough to try. Walmart, Asus, these companies don't just abandon a product willy nilly you know, they did it because of the reasons i listed.

The sad part? All the basic parts are there, a modern kernel, DEs that with some serious polish could be great, plenty of drivers, but the zealots and itch scratching devs make sure Linux goes exactly nowhere. the ONLY reason it has gotten anywhere on servers is MSFT's frankly ass raping prices on CALs. If MSFT dropped the price of WinServer to $100 and the price of CALs to a buck a pop Linux would dry up and blow away, anybody that was honest would admit this. As a Linux admin i know put it "if you give a Windows and Linux admin the same job that the Linux guy has done repeatedly then the Linux admin WILL win, but if its a completely new task? the windows admin will be home making a sandwich before the Linux admin is done Googling".

But instead of admitting that CLIs are for servers and GUIs for desktops you'll get 300 page treaties on how "CLI is leet!" and how much better the world would be if "They would only embrace the POWER of CLI" like its the god damned force. So instead all you get is flag waving and fangirls. notice how many above me rushed to say "And I'm not a fanboi"? Every time you read that the translation should be "I'm such a fangirl I squee like a tweener at a Beiber concert when i see a Bash prompt!"

Ultimately though their denial can't change reality and the simple fact is their precious awesome OS lower than JavaME , a shitty third rate cellphone OS. Why? If it is sooo good why is it so low? Because it ISN'T good, its a buggy, fiddly, unfriendly, unintuitive, CLI heavy fiddly bitch that is about as far from the level of polish from OSX and Win 7 as it is from here to Europa. If they weren't so busy drooling over bash prompts maybe they'd ask the most important question, which is "What are our competitors doing right that we are doing wrong?' but that would mean admitting 70s terminals are as out as Disco, and they'd rather choke on RMS's sandals that admit that little truth.

Re:Not for long? by hairyfeet · 2011-12-18 18:42 · Score: 2 · on Canonical To Remove Sun Java From Repositories, Users' Machines

Thank you, but I'm just a humble retailer that got tired of being lied to. I mean if their OS was actually good then why has ASUS has given up on Linux? If it is so stable then why does Dell have to run their own repos even though we are talking a teeny tiny subset of hardware? If it is so secure then

how, do you explain these?

So you see somewhere on the way to be a good OS Linux quit being an OS and became a religion. Admittance of the myriad of problems is NOT allowed, anymore that you could question the Koran or Bible in the home of a fundie. Frankly Canonical could change the default picture to Goatse and we'd see apologists come out of the woodwork to explain that is actually a biting social commentary on our times.

Here are some facts: Fact 1- All the major OEMs frankly ignore Linux not because of some secret M$ Ninja conspiracy, but because its so damned unstable thanks to Torvalds treating the kernel as his own playground. this attitude which is expressed by the man himself right here mean a company either has to do like dell and pay a team to basically run their OWN distro, no small task, or deal with a broken mess when Torvalds goes 'Lol Goatse!" and breaks shit. this is why even Canonical admitted there is a FOUR TIMES higher return rate for Ubuntu netbooks which makes linux a money LOSER for any company foolish enough to try. Walmart, Asus, these companies don't just abandon a product willy nilly you know, they did it because of the reasons i listed.

The sad part? All the basic parts are there, a modern kernel, DEs that with some serious polish could be great, plenty of drivers, but the zealots and itch scratching devs make sure Linux goes exactly nowhere. the ONLY reason it has gotten anywhere on servers is MSFT's frankly ass raping prices on CALs. If MSFT dropped the price of WinServer to $100 and the price of CALs to a buck a pop Linux would dry up and blow away, anybody that was honest would admit this. As a Linux admin i know put it "if you give a Windows and Linux admin the same job that the Linux guy has done repeatedly then the Linux admin WILL win, but if its a completely new task? the windows admin will be home making a sandwich before the Linux admin is done Googling".

But instead of admitting that CLIs are for servers and GUIs for desktops you'll get 300 page treaties on how "CLI is leet!" and how much better the world would be if "They would only embrace the POWER of CLI" like its the god damned force. So instead all you get is flag waving and fangirls. notice how many above me rushed to say "And I'm not a fanboi"? Every time you read that the translation should be "I'm such a fangirl I squee like a tweener at a Beiber concert when i see a Bash prompt!"

Ultimately though their denial can't change reality and the simple fact is their precious awesome OS lower than JavaME , a shitty third rate cellphone OS. Why? If it is sooo good why is it so low? Because it ISN'T good, its a buggy, fiddly, unfriendly, unintuitive, CLI heavy fiddly bitch that is about as far from the level of polish from OSX and Win 7 as it is from here to Europa. If they weren't so busy drooling over bash prompts maybe they'd ask the most important question, which is "What are our competitors doing right that we are doing wrong?' but that would mean admitting 70s terminals are as out as Disco, and they'd rather choke on RMS's sandals that admit that little truth.

Here's WHY Opera's VERY nice... apk by Anonymous Coward · 2011-12-15 08:57 · Score: -1 · on Microsoft Upgrading Windows Users To Latest Version of MSIE

FOR SPEED OPERA ROCKS! (Especially over time):

B.) For SPEED & Opera leads again there, & CONSISTENTLY + for the LONGEST TIME, yes, even in javascript for the LONGEST time, until FF's new engines took its place, albeit, only TEMPORARILY!

(Until Opera 10.50 @ least, because that's gotten a decent "boost" in that area -> http://tech.slashdot.org/article.pl?sid=09/12/22/1911216 (not that it matters though, speeding up javascript is like asking to get infected by malscripted sites &/or adbanners faster imo @ least - that of a "POV" of PC security, mostly)):

2.) SunSpider tests done here -> http://www.pcpro.co.uk/gallery/features/356350/on-test-the-hidden-seven-browsers-in-the-windows-ballot/145087 WHERE OPERA REGAINS ITS JAVASCRIPT PROCESSING SPEED LEAD OVER FF YET AGAIN!

OLDER DATA (on performance alone):

3.) And this one too last year also -> http://crave.cnet.co.uk/software/0,39029471,49302491,00.htm

4.) AND IT HAS BEEN "BLOWING AWAY" FIREFOX IN HTML PARSING/PROCESSING SPEEDS AS WELL, & FOR YEARS NOW, per this test years ago -> http://www.howtocreate.co.uk/browserSpeed.html#win

5.) Same here -> http://nontroppo.org/timer/kestrel_tests/

6.) Yet again/once more? Same story -> http://tech.slashdot.org/story/09/08/08/1750241/Opera-Dominates-CNET-Survey-of-Underdog-Web-Browsers

(Opera "rocked the planet" in those cases... bigtime (& ESPECIALLY ON THE MOST USED PLATFORM THERE IS, BAR-NONE, FOR PC-COMPUTING: Windows!))

====

ALSO, FOR SECURITY? YES - OPERA ROCKS (as far as unpatched security vulnerabilities):

---

Vulnerability Report: Opera 11.x (12/15/2011):

http://secunia.com/advisories/product/33328/

Unpatched 14% (1 of 7 Secunia advisories)

* Mind you, that over time? From all versions UP TO this current one just released today?? THIS IS USUALLY ZERO% & ZERO UNPATCHED!

---

Vulnerability Report: Microsoft Internet Explorer 9.x (12/15/2011):

http://secunia.com/advisories/product/34591/

Unpatched 17% (1 of 6 Secunia advisories)

---

Vulnerability Report: Google Chrome 15.x (12/15/2011):

http://secunia.com/advisories/product/38537/

Unpatched 25% (1 of 4 Secunia advisories)

---

Vulnerability Report: Mozilla Firefox 8.x (12/15/2011):

http://secunia.com/advisories/product/38734/

Unpatched 100% (1 of 1 Secunia advisories)

---

A.) For SECURITY, OPERA ROCKS & HAS OVER TIME BIG TIME, usually @ ZERO unpatched security vulnerabilities AND zero unpatched sec. vulns counts period!

(& Opera leads there for the LONGEST TIME, yes, even in least security vulnerabilities found over time, typically of the "big 3" webbrowsers):

1.) iPhone, IE, Firefox, Safari get stomped at hacker contest -> (No Opera noted as "hosed" though, lol) http://www.theregister.co.uk/2010/03/25/pwn2own_2010_day_one/

B.) AND, WHAT DOES A "HACKER/CRACKER"-SECURITY RESEARCHER TYPE CURRENTLY SAY, ABOUT OPERA (per Opera's showing in #1 above)?

OK:

----

Here's WHY Opera's VERY nice... apk by Anonymous Coward · 2011-12-15 08:57 · Score: -1 · on Microsoft Upgrading Windows Users To Latest Version of MSIE

FOR SPEED OPERA ROCKS! (Especially over time):

B.) For SPEED & Opera leads again there, & CONSISTENTLY + for the LONGEST TIME, yes, even in javascript for the LONGEST time, until FF's new engines took its place, albeit, only TEMPORARILY!

(Until Opera 10.50 @ least, because that's gotten a decent "boost" in that area -> http://tech.slashdot.org/article.pl?sid=09/12/22/1911216 (not that it matters though, speeding up javascript is like asking to get infected by malscripted sites &/or adbanners faster imo @ least - that of a "POV" of PC security, mostly)):

2.) SunSpider tests done here -> http://www.pcpro.co.uk/gallery/features/356350/on-test-the-hidden-seven-browsers-in-the-windows-ballot/145087 WHERE OPERA REGAINS ITS JAVASCRIPT PROCESSING SPEED LEAD OVER FF YET AGAIN!

OLDER DATA (on performance alone):

3.) And this one too last year also -> http://crave.cnet.co.uk/software/0,39029471,49302491,00.htm

4.) AND IT HAS BEEN "BLOWING AWAY" FIREFOX IN HTML PARSING/PROCESSING SPEEDS AS WELL, & FOR YEARS NOW, per this test years ago -> http://www.howtocreate.co.uk/browserSpeed.html#win

5.) Same here -> http://nontroppo.org/timer/kestrel_tests/

6.) Yet again/once more? Same story -> http://tech.slashdot.org/story/09/08/08/1750241/Opera-Dominates-CNET-Survey-of-Underdog-Web-Browsers

(Opera "rocked the planet" in those cases... bigtime (& ESPECIALLY ON THE MOST USED PLATFORM THERE IS, BAR-NONE, FOR PC-COMPUTING: Windows!))

====

ALSO, FOR SECURITY? YES - OPERA ROCKS (as far as unpatched security vulnerabilities):

---

Vulnerability Report: Opera 11.x (12/15/2011):

http://secunia.com/advisories/product/33328/

Unpatched 14% (1 of 7 Secunia advisories)

* Mind you, that over time? From all versions UP TO this current one just released today?? THIS IS USUALLY ZERO% & ZERO UNPATCHED!

---

Vulnerability Report: Microsoft Internet Explorer 9.x (12/15/2011):

http://secunia.com/advisories/product/34591/

Unpatched 17% (1 of 6 Secunia advisories)

---

Vulnerability Report: Google Chrome 15.x (12/15/2011):

http://secunia.com/advisories/product/38537/

Unpatched 25% (1 of 4 Secunia advisories)

---

Vulnerability Report: Mozilla Firefox 8.x (12/15/2011):

http://secunia.com/advisories/product/38734/

Unpatched 100% (1 of 1 Secunia advisories)

---

A.) For SECURITY, OPERA ROCKS & HAS OVER TIME BIG TIME, usually @ ZERO unpatched security vulnerabilities AND zero unpatched sec. vulns counts period!

(& Opera leads there for the LONGEST TIME, yes, even in least security vulnerabilities found over time, typically of the "big 3" webbrowsers):

1.) iPhone, IE, Firefox, Safari get stomped at hacker contest -> (No Opera noted as "hosed" though, lol) http://www.theregister.co.uk/2010/03/25/pwn2own_2010_day_one/

B.) AND, WHAT DOES A "HACKER/CRACKER"-SECURITY RESEARCHER TYPE CURRENTLY SAY, ABOUT OPERA (per Opera's showing in #1 above)?

OK:

----

Here's WHY Opera's VERY nice... apk by Anonymous Coward · 2011-12-15 08:57 · Score: -1 · on Microsoft Upgrading Windows Users To Latest Version of MSIE

FOR SPEED OPERA ROCKS! (Especially over time):

B.) For SPEED & Opera leads again there, & CONSISTENTLY + for the LONGEST TIME, yes, even in javascript for the LONGEST time, until FF's new engines took its place, albeit, only TEMPORARILY!

(Until Opera 10.50 @ least, because that's gotten a decent "boost" in that area -> http://tech.slashdot.org/article.pl?sid=09/12/22/1911216 (not that it matters though, speeding up javascript is like asking to get infected by malscripted sites &/or adbanners faster imo @ least - that of a "POV" of PC security, mostly)):

2.) SunSpider tests done here -> http://www.pcpro.co.uk/gallery/features/356350/on-test-the-hidden-seven-browsers-in-the-windows-ballot/145087 WHERE OPERA REGAINS ITS JAVASCRIPT PROCESSING SPEED LEAD OVER FF YET AGAIN!

OLDER DATA (on performance alone):

3.) And this one too last year also -> http://crave.cnet.co.uk/software/0,39029471,49302491,00.htm

4.) AND IT HAS BEEN "BLOWING AWAY" FIREFOX IN HTML PARSING/PROCESSING SPEEDS AS WELL, & FOR YEARS NOW, per this test years ago -> http://www.howtocreate.co.uk/browserSpeed.html#win

5.) Same here -> http://nontroppo.org/timer/kestrel_tests/

6.) Yet again/once more? Same story -> http://tech.slashdot.org/story/09/08/08/1750241/Opera-Dominates-CNET-Survey-of-Underdog-Web-Browsers

(Opera "rocked the planet" in those cases... bigtime (& ESPECIALLY ON THE MOST USED PLATFORM THERE IS, BAR-NONE, FOR PC-COMPUTING: Windows!))

====

ALSO, FOR SECURITY? YES - OPERA ROCKS (as far as unpatched security vulnerabilities):

---

Vulnerability Report: Opera 11.x (12/15/2011):

http://secunia.com/advisories/product/33328/

Unpatched 14% (1 of 7 Secunia advisories)

* Mind you, that over time? From all versions UP TO this current one just released today?? THIS IS USUALLY ZERO% & ZERO UNPATCHED!

---

Vulnerability Report: Microsoft Internet Explorer 9.x (12/15/2011):

http://secunia.com/advisories/product/34591/

Unpatched 17% (1 of 6 Secunia advisories)

---

Vulnerability Report: Google Chrome 15.x (12/15/2011):

http://secunia.com/advisories/product/38537/

Unpatched 25% (1 of 4 Secunia advisories)

---

Vulnerability Report: Mozilla Firefox 8.x (12/15/2011):

http://secunia.com/advisories/product/38734/

Unpatched 100% (1 of 1 Secunia advisories)

---

A.) For SECURITY, OPERA ROCKS & HAS OVER TIME BIG TIME, usually @ ZERO unpatched security vulnerabilities AND zero unpatched sec. vulns counts period!

(& Opera leads there for the LONGEST TIME, yes, even in least security vulnerabilities found over time, typically of the "big 3" webbrowsers):

1.) iPhone, IE, Firefox, Safari get stomped at hacker contest -> (No Opera noted as "hosed" though, lol) http://www.theregister.co.uk/2010/03/25/pwn2own_2010_day_one/

B.) AND, WHAT DOES A "HACKER/CRACKER"-SECURITY RESEARCHER TYPE CURRENTLY SAY, ABOUT OPERA (per Opera's showing in #1 above)?

OK:

----

Here's WHY Opera's VERY nice... apk by Anonymous Coward · 2011-12-15 08:57 · Score: -1 · on Microsoft Upgrading Windows Users To Latest Version of MSIE

FOR SPEED OPERA ROCKS! (Especially over time):

B.) For SPEED & Opera leads again there, & CONSISTENTLY + for the LONGEST TIME, yes, even in javascript for the LONGEST time, until FF's new engines took its place, albeit, only TEMPORARILY!

(Until Opera 10.50 @ least, because that's gotten a decent "boost" in that area -> http://tech.slashdot.org/article.pl?sid=09/12/22/1911216 (not that it matters though, speeding up javascript is like asking to get infected by malscripted sites &/or adbanners faster imo @ least - that of a "POV" of PC security, mostly)):

2.) SunSpider tests done here -> http://www.pcpro.co.uk/gallery/features/356350/on-test-the-hidden-seven-browsers-in-the-windows-ballot/145087 WHERE OPERA REGAINS ITS JAVASCRIPT PROCESSING SPEED LEAD OVER FF YET AGAIN!

OLDER DATA (on performance alone):

3.) And this one too last year also -> http://crave.cnet.co.uk/software/0,39029471,49302491,00.htm

4.) AND IT HAS BEEN "BLOWING AWAY" FIREFOX IN HTML PARSING/PROCESSING SPEEDS AS WELL, & FOR YEARS NOW, per this test years ago -> http://www.howtocreate.co.uk/browserSpeed.html#win

5.) Same here -> http://nontroppo.org/timer/kestrel_tests/

6.) Yet again/once more? Same story -> http://tech.slashdot.org/story/09/08/08/1750241/Opera-Dominates-CNET-Survey-of-Underdog-Web-Browsers

(Opera "rocked the planet" in those cases... bigtime (& ESPECIALLY ON THE MOST USED PLATFORM THERE IS, BAR-NONE, FOR PC-COMPUTING: Windows!))

====

ALSO, FOR SECURITY? YES - OPERA ROCKS (as far as unpatched security vulnerabilities):

---

Vulnerability Report: Opera 11.x (12/15/2011):

http://secunia.com/advisories/product/33328/

Unpatched 14% (1 of 7 Secunia advisories)

* Mind you, that over time? From all versions UP TO this current one just released today?? THIS IS USUALLY ZERO% & ZERO UNPATCHED!

---

Vulnerability Report: Microsoft Internet Explorer 9.x (12/15/2011):

http://secunia.com/advisories/product/34591/

Unpatched 17% (1 of 6 Secunia advisories)

---

Vulnerability Report: Google Chrome 15.x (12/15/2011):

http://secunia.com/advisories/product/38537/

Unpatched 25% (1 of 4 Secunia advisories)

---

Vulnerability Report: Mozilla Firefox 8.x (12/15/2011):

http://secunia.com/advisories/product/38734/

Unpatched 100% (1 of 1 Secunia advisories)

---

A.) For SECURITY, OPERA ROCKS & HAS OVER TIME BIG TIME, usually @ ZERO unpatched security vulnerabilities AND zero unpatched sec. vulns counts period!

(& Opera leads there for the LONGEST TIME, yes, even in least security vulnerabilities found over time, typically of the "big 3" webbrowsers):

1.) iPhone, IE, Firefox, Safari get stomped at hacker contest -> (No Opera noted as "hosed" though, lol) http://www.theregister.co.uk/2010/03/25/pwn2own_2010_day_one/

B.) AND, WHAT DOES A "HACKER/CRACKER"-SECURITY RESEARCHER TYPE CURRENTLY SAY, ABOUT OPERA (per Opera's showing in #1 above)?

OK:

----

Re:Less more "biased" than Google's by swillden · 2011-12-11 10:10 · Score: 1 · on Google Demonstrates Chrome Native Client With Bastion

THUS, it wouldn't matter WHERE THE ERRORS COME FROM, they cause hassles for END USERS... period!

The subject of the discussion was whether or not sandboxes work. Programming errors in code running in the sandbox are irrelevant to that topic; what matters is whether or not malicious software can break out of the sandbox.

This is as "real" as it gets (though I prefer posting real-world practice findings as I did above & in my initial post you replied to) -> http://secunia.com/advisories/product/12878/ [secunia.com]

Wow a total of four vulnerabilities discovered in 2011. Thank you for making my point.

Re:GF by hairyfeet · 2011-12-11 05:16 · Score: 1 · on PC Makers Run Short of Popular Drives

Safe huh? Get ready to be slapped by some facts friend,

Get ready, here they come! Kinda makes that koolaid just a little bitter now, don't it? I believe in using the best tool for the job, but to say Linux is secure or better than any other complex OS is frankly bullshit. Hell I was talking to a 15 year Linux admin on one of the other sites that had gotten so sick of Linux fuckups they were going to BSD and if THAT didn't "just work" they were gonna wash their hands of FLOSS on the desktop and just go Mac.

BTW if you'd like a little more food for thought, what OS was 3 of the 4 CAs running that were compromised? take a look and see. Maybe they just had bad configs? Surely someone with knowledge would be safe right? Guess again and its not a fluke by any means.

As for an application? How about the fucking OS? If that shits itself and dies, like what happened here (read the final straw by a 15 year plus Linux admin who just dumped your OS) I'd call THAT a problem, wouldn't you?

But it doesn't matter what I say, it doesn't matter if I wallpaper this page with links backing everything i say up 100%, because you are a FOSSie. A FOSSie refuses to believe reality and instead screams "Nigger faggot jew!" or "FUD shill astroturfer!" to all that do not bow before the bullshit effigy made in the likeness of RMS. I'm sure now instead of answering all this evidence and citations you'll just call me some names, like a frightened child who just got told Santa wasn't real. Sorry friend but i happen to live in the real world and out here? Linux works about as reliably as Windows 95.

Re:GF by hairyfeet · 2011-12-11 05:16 · Score: 1 · on PC Makers Run Short of Popular Drives

Safe huh? Get ready to be slapped by some facts friend,

Get ready, here they come! Kinda makes that koolaid just a little bitter now, don't it? I believe in using the best tool for the job, but to say Linux is secure or better than any other complex OS is frankly bullshit. Hell I was talking to a 15 year Linux admin on one of the other sites that had gotten so sick of Linux fuckups they were going to BSD and if THAT didn't "just work" they were gonna wash their hands of FLOSS on the desktop and just go Mac.

BTW if you'd like a little more food for thought, what OS was 3 of the 4 CAs running that were compromised? take a look and see. Maybe they just had bad configs? Surely someone with knowledge would be safe right? Guess again and its not a fluke by any means.

As for an application? How about the fucking OS? If that shits itself and dies, like what happened here (read the final straw by a 15 year plus Linux admin who just dumped your OS) I'd call THAT a problem, wouldn't you?

But it doesn't matter what I say, it doesn't matter if I wallpaper this page with links backing everything i say up 100%, because you are a FOSSie. A FOSSie refuses to believe reality and instead screams "Nigger faggot jew!" or "FUD shill astroturfer!" to all that do not bow before the bullshit effigy made in the likeness of RMS. I'm sure now instead of answering all this evidence and citations you'll just call me some names, like a frightened child who just got told Santa wasn't real. Sorry friend but i happen to live in the real world and out here? Linux works about as reliably as Windows 95.

Re:GF by hairyfeet · 2011-12-11 05:16 · Score: 1 · on PC Makers Run Short of Popular Drives

Safe huh? Get ready to be slapped by some facts friend,

Get ready, here they come! Kinda makes that koolaid just a little bitter now, don't it? I believe in using the best tool for the job, but to say Linux is secure or better than any other complex OS is frankly bullshit. Hell I was talking to a 15 year Linux admin on one of the other sites that had gotten so sick of Linux fuckups they were going to BSD and if THAT didn't "just work" they were gonna wash their hands of FLOSS on the desktop and just go Mac.

BTW if you'd like a little more food for thought, what OS was 3 of the 4 CAs running that were compromised? take a look and see. Maybe they just had bad configs? Surely someone with knowledge would be safe right? Guess again and its not a fluke by any means.

As for an application? How about the fucking OS? If that shits itself and dies, like what happened here (read the final straw by a 15 year plus Linux admin who just dumped your OS) I'd call THAT a problem, wouldn't you?

But it doesn't matter what I say, it doesn't matter if I wallpaper this page with links backing everything i say up 100%, because you are a FOSSie. A FOSSie refuses to believe reality and instead screams "Nigger faggot jew!" or "FUD shill astroturfer!" to all that do not bow before the bullshit effigy made in the likeness of RMS. I'm sure now instead of answering all this evidence and citations you'll just call me some names, like a frightened child who just got told Santa wasn't real. Sorry friend but i happen to live in the real world and out here? Linux works about as reliably as Windows 95.

Less more "biased" than Google's by Anonymous Coward · 2011-12-11 03:53 · Score: 0 · on Google Demonstrates Chrome Native Client With Bastion

"Umm, yeah, like there's no bias there. Find me a reputable source for those statements." - by swillden (191260) on Saturday December 10, @10:09AM (#38325754) Homepage

Security study of FireFox -> http://news.slashdot.org/story/11/12/10/1349212/google-funded-study-knocks-firefox-security except that MS' study uses a program to perform its checks... rather than just make statements.

PLUS: The test was done by a PROGRAM testing for flaws, & whatever results it put out, should be laid to blame as the "biased" tool, not Microsoft (who are pretty reputable after all, being one of the largest software oem's in existence).

---

"Complete red herring. That article isn't about security flaws in the JVM, it's about programmer errors in apps written in Java. It's also a really, really poorly done study." - by swillden (191260) on Saturday December 10, @10:09AM (#38325754) Homepage

You missed this portion of that article regarding the JVM itself, here's the "pertinent quote":

---

"The JRE contained some of the most common exploits, he said. Vulnerabilities in the Java Virtual Machine (JVM) and Java Development Kit (JDK) for Java SE were also popular targets. Between a third to a half of all exploits detected by Microsoft's anti-malware were Java exploits."

---

Also - Does it MATTER where the flaws come from?

Flaws are flaws, be they in SUN Java's VM, or in the code written that is interepreted by the Virtual Machine...

THUS, it wouldn't matter WHERE THE ERRORS COME FROM, they cause hassles for END USERS... period!

---

"Nope. Try again. But see if you can find something *real* this time (you can't)." - by swillden (191260) on Saturday December 10, @10:09AM (#38325754) Homepage

This is as "real" as it gets (though I prefer posting real-world practice findings as I did above & in my initial post you replied to) -> http://secunia.com/advisories/product/12878/ & you can check NISTS' National Vulnerabilities Database for the same type of information if you wish...

APK

P.S.=> I posted the last link, since it seems you're more of a "statistics man" apparently, & because you wish "unbiased sources"...

So, the last link above is exactly that (SECUNIA's db for unpatched security vulnerabilities & specifically for JAVA)...

... apk

Re:GF by hairyfeet · 2011-12-10 14:42 · Score: 1 · on PC Makers Run Short of Popular Drives

So in other words you answer is "Linux is magical and never gets bugs so don't update it" correct? care to

explain these my friend? protip: NO OS is secure without being patched NONE.I'd also point out the KDELook bug of year before last, oh and here is a nice little how to for writing Linux bugs.

But thank you for posting, yours is a PERFECT example of why linux on the desktop is as dead as disco. When pointed out the myriad of problems the community simply sticks their fingers in their ears and goes "La la la, CLI is leet! You don't know, you are noob, you are not leet! You must be a M$ Ninja dirty poo poo head!". would you like me to link to the OEMs that have abandoned Linux, including Asus which started the whole netbook craze? just ask and its yours, maybe you can explain how the ENTIRE PLANET is wrong and you're right.