Slashdot Mirror
Adobe Quietly Monitoring Software Use?
henrypijames writes "For months, users of Adobe Creative Suite 3 have been wondering why some of the applications regularly connect to what looks like a private IP address but is actually a public domain address belonging to the web analytics company Omniture. Now allegations of user spying are getting louder, prompting Adobe Photoshop product manager John Nack to respond, though many remain unsatisfied with his explanation."
To clarify the summary, the biggest issue is not the spying on users; the biggest issue is the deceptive server name, 192.168.112.2O7.net. It's at least meant to confuse unwary users, and possibly meant to confuse misconfigured firewalls.
As someone said on a blog I can't find right now, this is not a story about privacy; it's a story about lies.
The United States of America: We do what we must because we can.
So far, i have not yet read anything about the transmitted data. Finding that data one would reasonably expect to be private without explicit release would be a serious problem. However, we don't have that - or its opposite. John Nack has given the best generic response that he is able, and I won't know what to make of Adobe's actions until we learn more about the data transmitted, probably next week.
As Trombone says the misleading server name is the issue. As I perceive it, this smells bad. Microsoft-style bad to be blunt.
..did with XCP, then Adobe doesn't get to claim innocence for whatever the heck the Omniture code is doing.
Simply put, the only things on my machine that should phone out should be voluntarily invoked by me - the user. Namely the web browsers, software update, ssh, etceteras.
.doc files.
Adobe's behavior of late (and it will only get worse) is why applications like Little Snitch exist.
This kind of thing is why I wish The GIMP or similar would get useable* for those of us with hundreds of gigs of Photoshop documents.
* Open, Save, full support for all blending modes, masking modes, layer groups, and fonts/text editing capability up to at least Photoshop CS. I don't need the thing to handle Exactly Like Photoshop, but if it's going to be the "photoshop competitor" every FOSS advocate claims it is (instead of, say, the Paintshop Pro competitor that it actually is), then it ought to at least be able to handle my existing documents as well as OpenOffice handles
There isn't a single firewall that I've ever worked on that could possibly be misconfigured in such a way as to "accidentally" allow traffic to this domain to pass.
Web Proxy? Yeah, OK, maybe, but even then it is a reach...
Clarification: That is ...'2o7.net' as in 'Two-Ocsar-Seven.net' *NOT* 'Two-Zero-Seven.net'
The Opt-Out "Explanation" page is here: http://www.omniture.com/privacy/2o7
Still, the dubious address http://192.168.112.2o7.net/ appears to be some variation of Social Engineering. http://en.wikipedia.org/wiki/Social_engineering_(computer_security)
This might explain some of Adobe's seeming software bloating (like Acrobat Reader, etc...) http://www.google.com/search?hl=en&q=Acrobat+reader+bloat
Here's where I got that "story about lies" quote.
The United States of America: We do what we must because we can.
Until Adobe make a console that's preventing Microsoft from extending their monopoly to another industry, I think we can all give them the benefit of the doubt.
In an updated post:
http://blogs.adobe.com/jnack/2007/12/whats_with_adob.html
the Adobe guy says:
the objections seem to center not so much on whether Adobe apps are contacting a server, but rather that the server is named "192.168.112.2O7.net,"
Note the letter O instead of a zero. 2o7.net is registered to Omniture.
WTF? If Little Snitch told me that some app was trying to connect to 192.168.112.2O7.net I would assume it was compromised, and would be debating a complete clean system reinstall of OSX.
192.168.112.2O7.net? Masquerading as an IP from my home DHCP server? Are they serious? From Nigeria? Romania?
Again, WTF?
P.S. for those of you who have not set up a LAN, 192.168.xxx.xxx is typically an IP address for an internal LAN, not something out on the Web.
__ Someday, but not this morning, I'll finally learn to use the preview button.
It's not necessarily adobe's fault that the address is misleading. Who knows what the code is calling the address, and the filtering application doesn't know either, it just reverse lookups the IP address and gets that answer from DNS. However, the response isn't that reassuring 'why, of course we do it, shut up, big deal, we act just like a web browser does when you connect to our site, so what's the big deal?' ignoring the fact that people aren't explicitly trying to use a web browser, they're rying to use an application.
.net. 192.168 is so small it tends only be used in small environments where technical users have a high chance of understanding the full lay of the land, they'd probably know how licensing is working at the site and the point of all the 'server' role systems. They probably would also wonder why they see an ip address instead of the usual DNS lookup in the dialog, prompting noticing the suffix. 10. might have been a riper target, it's generous address space means it might be used in an environment where a technical user could mistake it for an internal company server (i.e. a license server).
As to the address, it's certainly suspicious that Omniture chose such a misleading looking domain name for one of their servers. I'm not even sure what they were expecting to pull off. If someone is knowledgeable to recognize that as a private network, they are almost certainly knowledgeable enough to recognize there being no point to connect to such an address (chances are it wouldn't exist), even if they didn't notice the
Any firewalling rules wouldn't be fooled by such a stunt as well, so trying to trick it into one zone versus another seems a stretch..
XML is like violence. If it doesn't solve the problem, use more.
that any application you downloaded and installed calls "home" over the Internet in some way or other without common users even noticing it.
I have an old version of Kerio (very sorry that it vanished) which serves very well in putting every attempt of programs to go out on the network on display.
Recent discoveries: a PDF printer driver "calls home" every time I print a document through it.
Adobe (reader) is pretty bad in checking for updates or whatever it tries to do on the Internet and M$oft of cause always accesses some port 123 when starting XP.
In essence - unless you really are behind every program, you have no privacy!
And - with NTFS allowing stealth handles, who knows what is installed, not even talking about Vista.
FBI now openly talking about a kitchensink database on everyone with everything, I think the game is lost....
should take care of unemployment though - two people necessary to track every "normal" citizen
In OS X, is there an easy way to block all outgoing communication to *.2o7.net? Can I do that on my router (DGL-4300)?
And the men who hold high places must be the ones who start
To mold a new reality... closer to the heart
http://www.omniture.com/privacy/2o7#optout This is the site to install an "opt-out cookie". I'm going to go ahead and guess it might help to visit this site within the embedded Opera browser in CS3. Who knows where that thing keeps it's cookies. Granted, getting this info from a comment on a post to a blog is not the way to have a good opt-out policy. Something in the installer would be nice.
Anyone with a (personal) firewall can control this "phone home" behavior.
Couldn't this just be some new anti-piracy feature similiar to WGA? Adobe's Given that a it is rather easy to download a pirated copy of CS3 and the fact that an actual retail copy costs quite a bit of money I would say that this is a plausible explanation.
# Block access to Omniture -- spyware vendors
block from any to 216.52.17.0/24
Just because you have issues with Microsoft, doesn't mean you give Adobe a free pass.
As for responsibility.
Analogy: If Ford used a third party airbag in their cars that regularly deployed when you hit 70mph, who would be held responsible? Ford, the third party or both?
Bugger off.
The higher the technology, the sharper that two-edged sword.
Now, by "foreseeable consequences" do you mean those that are accurately predicted, or those that can be reasonably expected. If it's the latter, then you're not really a strict consequentialist. If it's the former, then you can hardly make any moral judgments at all (given how indefinite the chain of consequences of a given act is).
Shop as usual. And avoid panic buying.
My point was that hypothetically, a reverse dns lookup for an third party's ip address could be misleading without the knowledge of the first party. You sign up for a service with me, and you use www.analytics.example.com as the calling address. Later on, I decide I want to be sneaky, and the reverse lookup for www.analytics.example.com becomes 10.117.1.2O.example.com. Is it your fault I did that? Not really. This isn't the case in Adobe's example, now that I've looked at it, but it's a plausible scenario.
All that aside, going to www.adobe.com in firefox, then doing a view source, ctrl-f for 192.168 reveals that it appears in that form verbatim in the html served from adobe's website. On the surface it does appear to not be the case I described. The only way they'd be unaware of the misleading address is if they include code verbatim on their site from a third party without even reviewing it, which would be a horrible excuse.
XML is like violence. If it doesn't solve the problem, use more.
GIMP *is* competing primarily with Photoshop. This isn't a matter of which commercial application's feature set it most closely resembles. It's a matter of what users actually USE.
Photoshop is the default application for doing any kind of drawing or photo editing. It might be total overkill, it might not be the best choice or whatever, but that's irrelevant. Ask yourself this instead: How many people do you think PAY hundreds of dollars for Adobe Photoshop for their own personal at-home use?
Face it, Photoshop is the standard because it's pirated so much. This isn't a question of "lost sales", since 90% of Photoshop pirates (and I'm extrapolating from people I know of, so flame away) wouldn't DREAM of laying down that amount of cash. If they were forced to go legal, they would probably buy Paintshop Pro - an application that probably suits their needs much better anyway. (So if anyone is losing sales when Photoshop is pirated, it's probably Corel).
To summarize: GIMP competes primarily with *illegitimate* Photoshop users.
Competition. That's the only solution to this. Adobe has become a very arrogant and supply-side centric company over the past few years. Or rather, an even more arrogant company than it always was.
It has almost no competition in most markets it trades in. Where it did have competition, it bought it out with the Macromedia purchase. That's a problem. It's not just this privacy/lying issue, it's price fixing, it's bloated features, it's the product delays (the universal binary versions), it's the (a la Microsoft) packaged versions that make it hard to get standalone versions.
I use Adobe Software every day (always firmly controlled by Little Snitch from install I may add). I don't like using it, it is not the best they can do, but it is the best available. I use it, but I will jump ship tomorrow.
I really, really, really want to use products from a better company. Surely there MUST be developers out there who can make better products than Adobe.
I didnt see it posted and I dont read most EULAs, but as long as this has a line about the 'phoning home' process then all is ok. Now if they never post anything in the EULA then that is a big problem! You accept anything the software does when you click I agree. You dont have to agree and use the software. Anytime I think about EULAs, I think they are made to legal like that noone is going to read it and those that do will most likly just say 'yea whatever, i want to use the software'. Which reminds me of the one software that had a written reward in the EULA and after like 5 years (or longer, i dont remember) and a lot of users some guy saw a lil statement that said the the effect 'email us this code and we will send you $5000'
Incorrect.
These are two very different things. Sonys rootkit caused real and lasting damage to users systems and is illegal under the criminal
laws of most nations. This is a common piece of spyware. While morally repugnant it cannot be compared to the act by Sony and causes no damage
(necessary for breach of the Computer Misuse Act 1990 in the UK) - http://en.wikipedia.org/wiki/Computer_Misuse_Act_1990
It's not helpful to conflate this with ordinary spyware - http://en.wikipedia.org/wiki/Spyware
Not defending this behaviour of course, in fact since these companies have elected to break the law I have no moral compunction advocating someone write a DDOS virus to reduce Omnitures servers to a smouldering pile of silicon dioxide. Any corporation attacking public and private computer systems for their own profit motives is entering a battle they will lose.
So basically it's easier to set up this complicated system for tracking mouse clicks and system usage that surreptitiously reports back to home base which I imagine probably looks something like...
1:00pm paintbrush selected
1:03pm eraser selected
1:07pm paintbrush selected
1:08pm save file hm_build_001.psd 9.3mb
1:10pm program idle
2:45pm paintbrush selected
As opposed to going out and saying to the customers
'What do you like about Photoshop? What tools work? What would you change? please limit your responses to 500 words. We appreciate your business and look forward to providing superior digital imaging software till the day god comes down from the heavens and smites you all for making sinful images'
What god damned mook of a market researcher thought a blow by blow report of what a customer clicks on while working on a project is superior to actually talking to the customer?
I have nothing compelling to say
Several points:
1. The user never knew that the application was contacting a remote (and unidentified to the user) server.
2. If you check, the server is obfuscated by a private-IP-like address. Deception is being used.
3. The process to opt out involves A: Figuring out what is happening first, B: knowing to look at the provacy policy page at the server's owner, and C: Allowing the deception-using server to put an opt-out cookie on your computer.
4. Shame, shame, shame on Adobe for employing this deliberately deceptive method of data collection. Shame. Shame.
This seems so simple.
If Adobe and other companies want to retain their paying customers' trust, their applications shouldn't be doing unexplained things behind the user's back.
If they want to pop up a window saying "To insure better product quality, we would like to have this application send information to internet address thus-and-such. To read a detailed description of the information we send and how we use it, press 'details.' To allow us to do this, press 'allow.' If you do not want us to do this, press 'no,'" then everything would be cool.
But if an application does stuff we don't expect it to do, and they don't even mention it in advance, it's not terribly paranoid to assume that the reason is that they're doing something they don't want us to know about.
"How to Do Nothing," kids activities, back in print!
Even having nothing to hide (read: de-centralized backup copies) and using mostly Linux, running a personal firewall that not only controls incoming, but also outgoing software is a total must nowadays. For Windows, there are several, even freeware (e.g. Ashampoo does a pretty good job), or things like Apparmor under Linux ... So with any program suddenly requesting internet connection, just deny it once, or for good ...
... guess one of these days, you won't be allowed to even launch your commercial apps without the software's main server confirming you're not running a pirated copy. Then, if the company dies, all the programs die with it ...
I guess that's the curse of the ever-growing number of always-on internet users
I absolutely agree that the software vendor thinking that they have some right to do this spying is very arrogant and serious. But think about this. The fact that the connection is structured to LOOK like something connecting internally only goes to show that not only are they doing this, but they are doing this with the intent to try to obscure it. It would be one thing if they were on the up and up about it. But they would not need to do this 2o7.net stuff if they were. They could connect to "reg7.adobe.com" or some such name. But no ... they tried to add a layer of obfuscation to it.
They know they are spying on you because they are doing it. But they also know you won't like it. And that is obvious from the effort to hide and obscure it. Doesn't that make it at least twice as bad, if not triple or worse?
now we need to go OSS in diesel cars
Do we now need a firewalling app that accesses a central list of "phone-home" addresses to automatically block similar to the advert lists that AdBlock uses?
Who will be the first to register ad0b3.com? Or maybe 4dobe.com or 4d0be3.com?
now we need to go OSS in diesel cars
Paint Shop Pro 9.0 is much better than the GIMP (which is a total mess if you ask me).
Paint shop Pro 10 was where it all went badly wrong. Corel bought it out - and we all know what happens to things that Corel buys. You think Adobe downloading advertising is bad? Online registration an invasion of privacy...? PSP 10 required you to create a "Corel Web Account" and then "log in" before it would even run.
PSP 9.0 though? A fine piece of software. I'm still using it.
No sig today...
Hello, editors of Slashdot? The faked URL's to Minicity are a continuing problem. Can you arrange to add a new moderation categary of "Minicy", or "fake URL", because they're really a pain.
They can change the IP address since they are using a hostname. You need to also add the domain name "2o7.net" (you know, number two, letter oh, number seven, dot net) as a zone in your resolving/caching DNS server, with a wildcard labeled "A" record pointing to somewhere that will be a dead end under your control, like 127.0.0.1.
now we need to go OSS in diesel cars
You moron. You realize that anyone knows that those [URL] tags will have them set to display, and its just a LITTLE suspicious that there are two of them in that case?
Please do yourself a favour and download this HOSTS file:
http://www.mvps.org/winhelp2002/hosts.htm
And use it. That domain has long since been blocked. Jeez, people. Old news.
Adobe is an evil monopoly just like Microsoft. ...and I will point that out again and again until it finally dawns on the rest of you.
Even if this gets out, they will just move subnets and still catch 90% of the non technical users.
This really should be brought up to the courts.
---- Booth was a patriot ----
This is another reason not to buy Adobe's bloated overpriced software!!!
You might try contacting them directly rather than posting, especially this deep in the thread. Your chances of being noticed are low, I would imagine.
Try "help@slashdot.org" (referenced in the reply page)
I've also seen "pater@slashdot.org" but I think that's taco - wouldn't bother him directly for something like this.
For large sets, this will be our guide even unto death, for the LORD will work for each type of data it is applied to...
The CEO's all read "Virtual Light" by William Gibson, and they ALL want to be Costa Rica.
[End Of Line]
Do the XP/Vista firewalls ask you the first time an app like this tries to make an outbound connection? Can you set them to or do you need to install a 3rd party firewall?
${YEAR+1} is going to be the year of Linux on the desktop!
So, not only users pay for Adobe products, not only these products are closed-source, but the user is also feeding the business of a profit-making analytics company as well as helping some marketing guys in Adobe justify their bonuses without the user getting any payment. User software usage data have value, so why should the user give up their usage data with no payment? Why should Adobe users give all this value for free without something in return? We do this with free software like Gimp (via ingimp), but I see no reason why one should help closed-source shops this way. One could say that users are paid in terms of better software releases, but I call bullshit: if Adobe was so concerned about this they would make their stuff free. We all know very well that there is no business reason (apart from legalities over code copyright belonging to third parties etc) to keep the code hidden, since making money with free software is not only possible but many times easier (and more ethical, since the user is not coerced in any way). This is the best way to conduct business: Create value without coercion. The popularity of a free software package can quickly be monetised, for example soon-to-be-a-Dr Drupal founder recently got $7 million out of the blue. I actually could go on to even say that not making a piece of software free is stupid from all perspectives (business, ethical, etc).
So I write a brief post that says, in essence, that in the face of this and other security threats there is no single "magic" solution, but rather, that good security requires informing yourself and understanding the devices that you work with and it gets modded "Redundant". What a waste of a perfectly good mod point. If it bothers you so, I'll explain that the reason why "I am indifferent to any [grief] that is caused" is because I was not being malicious, cushioning someone else's ego is not my concern, and I was honestly saying how I felt about the matter.
If you don't like what I said, or the tone with which I said it, or the fact that I'll apologize for neither, abusing the moderation system to show your resentment is a poor substitute for actually expressing yourself and telling me why you feel that way. Had you done so, you may have caused me to rethink my previous point or to learn something new, or otherwise accomplished something better than subtracting one point from the post on the grounds of imaginary "redundancy". I wish this point were redundant! If it were, perhaps people would stop looking for band-aid solutions and become more informed about security.
Posted with no "karma bonus" since this isn't directly related to Adobe's software and whether it phones home.
It is a miracle that curiosity survives formal education. - Einstein
Some Internet connections are metered, usually based on the data volume (per kb). If Adobe uses your network connection to transmit data, then this means that some bandwidth (however small) that you pay for is wasted, especially if one is using an Adobe program a lot. Yes, it may be only a few bytes, but the principle holds true: Adobe may be using some of your metered Internet connection. Is this explained in their agreement? There are a lot of reasons why one should dislike this, apart from privacy.
First up, 2-Oscar-7.net
.com and .net domains can now be registered
symbolis@symbolis-desktop:~$ whois -H 2o7.net
Whois Server Version 2.0
Domain names in the
with many different competing registrars. Go to http://www.internic.net/
for detailed information.
Domain Name: 2O7.NET
Registrar: NETWORK SOLUTIONS, LLC.
Whois Server: whois.networksolutions.com
Referral URL: http://www.networksolutions.com/
Name Server: NS1.DAL.OMNITURE.COM
Name Server: NS1.SJ1.OMNITURE.COM
Name Server: NS1.SJ2.OMNITURE.COM
Status: clientTransferProhibited
Updated Date: 27-jun-2006
Creation Date: 29-sep-2000
Expiration Date: 29-sep-2010
>>> Last update of whois database: Sun, 30 Dec 2007 01:07:05 UTC http://www.internic.net/
for detailed information.
Domain Name: 207.NET
Registrar: MARKMONITOR INC.
Whois Server: whois.markmonitor.com
Referral URL: http://www.markmonitor.com/
Name Server: NS1.DAL.OMNITURE.COM
Name Server: NS1.SJ1.OMNITURE.COM
Name Server: NS1.SJ2.OMNITURE.COM
Status: clientDeleteProhibited
Status: clientTransferProhibited
Status: clientUpdateProhibited
Updated Date: 28-dec-2006
Creation Date: 11-jul-1996
Expiration Date: 10-jul-2012
>>> Last update of whois database: Sun, 30 Dec 2007 01:07:05 UTC http://www.markmonitor.com/
Administrative Contact:
Domain Admin (NIC-14522673) Omniture
550 East Timpanogos Circle Orem UT 84097 US
dnsadmin@omniture.com +1.8017227000 Fax- +1.8017227001
Technical Contact, Zone Contact:
Domain Admin (NIC-14522673) Omniture
550 East Timpanogos Circle Orem UT 84097 US
dnsadmin@omniture.com +1.8017227000 Fax- +1.8017227001
Created on..............: 1996-Jul-10.
Expires on..............: 2012-Jul-09.
Record last updated on..: 2006-Dec-30 03:02:52.
Domain servers in listed order:
NS1.SJ1.OMNITURE.COM
NS1.SJ2.OMNITURE.COM
NS1.DAL.OMNITURE.COM
This one really has me pissed off. Especially after spending $1000 for a CS3.
Just go to MSCONFIG and look for ##Id_String1.6844f930_1628_4223_b5cc_5bb94b879762## - as a running process.
No mention of Adobe here, and the first time I saw it, I thought my box was owned. Well come to find out, it was just Adobe spying on me.
!!! And HEY ADOBE !!! STFU - Somehow I missed the small print on page 900 of your EULA saying you could spy on me.
Serves me right for paying for your software.
You had best pray that there is never a good OS alternative.
--------- Maybe I could throw in the new Windows Genuine Advantage that also monitors other software ID's on my box.......
I noticed something odd from the first moment I fired up CS3 and tried to create a new image. It hung for a few moments and then I noticed some heavy network use. This happens every single time I fire up CS3. I knew about this quite a while ago, but never did sniff to see what exactly was happening. I did disable my network connection once to see if it would still allow me to create a new image, which it did.
You're nothing; like me.
What is 2o7.net? 2o7.net is a domain used by Omniture to help provide portions of its Omniture SiteCatalyst and Omniture SearchCenter products. Specifically, this domain is used by Omniture to place cookies, on behalf of its customers, on the computers of visitors to customers' selected websites. Omniture Acts on Behalf of our Customers Omniture acts as a limited agent to each of its Customers only for the purpose of providing Internet data hosting Web and optimization products and services. Any information obtained by Omniture from the customer's websites is and will remain customer property, and will be treated by Omniture as proprietary and confidential information of the customer. As such, Omniture will not disclose such information to any third party, unless specifically and rightfully instructed to do so by the customer. Omniture will not review, share, distribute, print, or reference any session data of visitors to the customer websites except as requested by the customer or as may be required by law. Individual records may at times be viewed or accessed only for the purpose of resolving a problem, support issue, billing, or as may be required by law. Customers are responsible for maintaining the confidentiality and security of their usernames and passwords to log into their accounts. It is very important that you review the respective privacy policy of each website that you visit, because such privacy policies govern the use of information on those websites, including our customer's use of Omniture products and services where applicable. If you would like more information about Omniture and our privacy practices, please visit our Privacy Center. Opt-out Method We offer visitors to certain of our customers' websites a means for controlling the use of session information with respect to the Omniture SiteCatalyst, Omniture DataWarehouse, Omniture Discover and Omniture SearchCenter products using cookies set from Omniture's 2o7.net domain (i.e. that use the 2o7.net cookie to facilitate data collection). If, at any time a customer's website visitor does not wish to allow his/her session visitation information to be aggregated and analyzed by Omniture on such customer sites, he/she may utilize the following opt out mechanism. For customers that use non-Omniture cookies to collect data on their websites, please review the privacy disclosures of such customers for specific details on any and all applicable opt outs on such sites. Click Here To Opt-Out of 2o7.net Cookie Tracking Now.
Just because it works, Doesn't make it right. - JTM
if you use closed source software, I don't care if it's from Microsoft, Apple, nvidia, ATI, Real, etc., if the software is closed source (as most commercial software continues to be today) and you can't obtain the source and compile the program yourself YOU ARE FUCKED. You don't know what the program is capable of, no matter how hard the creators of the program stroke their e-penis about how they care about security and privacy. Do you want freedom and security? Go open source where you can audit the programs you use or pay someone to do it for you. Support the FSF and put yourself in control. Stop using these closed source programs, REFUSE to buy from them.
I won't speak in the name of others, but clearly The Gimp is not a competitor to photoshop. If PS was to be competing against The Gimp, Adobe would have to release native file format information, plus access to the code. For those among FOSS supporters like me, failing on both counts is a total show stopper for even considering a switch, much like the burden of your previous work is to you.
The Gimp is like the plank cabin you build on your grounds : there might be holes, it might not be completely comfortable, and the roof might even leak, but nevertheless, you're the king in your own private kingdom, because you're considered to be the owner of the place. PS is more like a rented flat : nice view, good furnitures, central heating, but if your landlord happens to be a complete moron, and suddenly decides to lock all the doors at 9 pm, you're fscked, and either you're in by the curfew, or you're homeless for the night.
You decide what's acceptable to you.
I thought that this was common knowledge, too bad, I could have broke the story the day I got CS3. Is everyone here really surprised that their computer software is trying to spy on them? Use little snitch or something similar on windows if you don't want to do the configuration manually. But seriously, stop giving these companies access to your bandwidth! They don't need it and are probably just using it to do something you don't want them to do anyway.
Not all life is cyber. Extra Income
The biggest issue here is the lack of software freedom Adobe's users have to suffer from, and how any questionable activity of Adobe's proprietary software is a direct result of that lack of freedom.
With free software one doesn't have to trust that the software does the right thing. If one wants, one can inspect the software themselves or get someone else to do that job for them. If one finds that the software does something besides what the user wants, that user is allowed to change the program (or get someone else to change it for them) and make the program work as desired. Proprietary software is licensed so that users are denied any freedom to inspect or modify the program. If you figure out how to modify the program so it won't misbehave anymore, you can't legally help your community by sharing a copy of that modified program.
Proprietary software is untrustworthy by default and it is the lack of software freedom that is the main issue here.
Digital Citizen
Preferences -> Comments -> Display Link Domains? -> Always show link domains
Problem solved.
FC Closer
Perhaps you should consider not making more documents you can't use fully in freedom. It will never be easier to do this than it is right now. Also, instead of contributing more money to Adobe (who apparently doesn't deserve your loyalty or money), you could give The GIMP's developers some money and help justify their time spent on making The GIMP more compatible with Photoshop documents.
It would seem that the proprietary software in question isn't doing anything now it didn't do months ago. This is not a recent change in the proprietary software, only our collective discovery of this questionable contact with an outside computer is new.
Also, your recommendation of "Little Snitch" is unwise because that program is proprietary. You identify the root problem correctly—a lack of software freedom (hence recommending free software such as The GIMP makes sense). Adding another black box to the mix won't help. There's no way to know that Little Snitch isn't problematic in its own way; there's no reason why users deserve less freedom with Little Snitch than with any other program they run on their computers. For all we know Little Snitch communicates something without user consent, or introduces problems all its own (security holes of various sorts, keylogging, etc.) which essentially allow a different proprietor to spy on the user or collect information that would be useful in gaining access to their accounts (thus becoming impostors).
Digital Citizen
(I'm not the AC to which you responded. That said...)
GIMP was funny when Spencer Kimball and Peter Mattis named it, haw haw. If they'd imagined even for a moment that their school project would ever reach the point where non-geeks would be using free software they would have called it 'the General Image Manipulator' (later 'GNU Image Manipulator') and pronounced it 'jim'. Then self-respecting professionals in the design industry wouldn't gag on their own vomit every time they said "I really wish I could use the gimp and free myself from adobe's shackles."
See, to most adults gimp has the admittedly slang meaning (and connotation) of either a cripple (a limping limper), or the object of a masochist's pleasure (i.e., they've at least seen Pulp Fiction).
"I'd rather not use gimped software 60 hours a weeks to do my job."
"Uh-oh, management is looking for a gimp to blame this death-march on."
Limping and ass-rape don't warrant serious consideration to professionals. If GIMP had a moniker that didn't embarrass CTOs, we might see the sort of progress that industrial adoption has brought us in the kernel, Apache, etc.
Read Heinlein's 1953 Revolt in 2100, now more than ever.
Read Heinlein's 1953 Revolt in 2100, now more than ever.
I didn't mean to come across as saying that rootkits (personally I don't consider that SONY thing a rootkit, but I can see how it can certainly aid building actual rootkits via simple viruses/trojans. Then again, if you get one of those, you're mostly screwed anyway.). All I meant was that no company should be able to claim innocence / hide behind a third party software provider's code. They choose to use that code; be it in binary form or otherwise, and thus they should be the ones responsible.
Form my logs, here's how others use 2o7.net:
msnbc.com - msnbcom.112.2o7.net (notice the prefix)
cnn.com - cnn.122.2o7.net (notice 122)
So, why not adobe.112.2o7.net? What's there to hide?
it's illegal to go 70 mph; nobody would ever find out about it if Ford did that since we all would obey the law.
A good one. Asking someone to describe their experiences with software will give you some useful high-level information, like "I want a feature that does this", or perhaps "I don't find such-and-such intuitive". However, if you want to know things like "which tools do people actually use, and how often", or "do people often look in menu X for something we put in menu Y", or "do people do a multi-step task by hand that we could make easier", or "which tools should we put on the toolbar by default and which should we stick in menus", watching real usage could provide you with data that you can't get from a survey.
(This ignores for the moment the ethical issue at hand. If you want this kind of data, do an opt-in usability study, or get people to use the software in a controlled environment.)
So Adobe counts how many times you start your program. Wow, that must really help them figure out how to make starting the program a better experience for the user.
"It's the height of ridiculousness to say for those 9 lines you get hundreds of millions."
http://www.gimpshop.com/
Call me old fashioned, but I like a dump to be as memorable as it is devastating - Bender
Software companies are now clearly overstepping the boundaries of acceptability. This has behavior subtly creeping it's way into applications in recent years. They start with the "do you want to this application to check for updates automatically"? Then comes "activation", then 3rd party bundled toolbars - Acrobat reader, among many other non-Adobe apps come with opt-in 3rd party toolbars which you can opt out of but WTF is it doing there in the 1st place? I won't install any app that has such software bundled in for fear that it's doing something despite my opting out of the toolbar.
These companies will not learn their lesson and back off until we have sufficiently voted with our wallets. I will say that Adobe will never again get a dollar out of my wallet.
Illustrator 6 on the Mac used to probe your Mac network for duplicate instances of itself. I'd rather an application on someone else's computer on the network not try to find out what software I'm using on my machine, but then, MacOS was such crap that it allowed applications to do such things in the first place.
This is also why I don't like the idea of "always on" broadband connections. I shouldn't need a full firewall to shut off net access to a specific program.
He may be a great program manager but if I were Adobe I would stop him from blogging as quickly as I could. Here are some choice quotes from his responses to user comments. With responses like these I wouldn't believe anything he has to say:
[Are you saying you can't figure out how to remove applications? That's really saying something. --J.]
[You're a complete moron, and I don't have time to bother poking holes in your litany of ridiculous assertions. --J.]
[Sorry to hear that things aren't going well, Ryan. Have you called tech support? If not, why not? --J.]
[What sucks is how gullible, lazy, and reckless people prove to be. --J.]
And on and on it goes...
The other day I closed a Firefox tab with a PDF in it and half an hour later I found out acroread was still running and holding my CPU at 100% utilization and 91 degrees C instead of 51
so beware
"No Internet Connection. Please check your internet settings and or firewall."
I just click "Cancel" and it goes away.
Adobe sucks.
RS
Shoes for Industry. Shoes for the Dead.
A. Don't use Adobe.
B. If you do use Adobe, use a good firewall like Zone Alarm set to its highest security level.
For those stuck on Windows, dump Acrobat and use Foxit's PDF software.
I finally stopped the "install new Adobe, spend minutes ripping out tons of useless, bloated plugins and turning off stupid options" routine after that last PDF vuln that Adobe's crap automatically trashed your machine over, but Foxit at least had the good sense to ask 'trash machine? y/n'.
This is why I only use cracked software. Even if I purchase the software, which all of mine actually is, i run it cracked with lot of firewall rules.
I have never trusted any software company that attempts to make an outbound connection for ANY reason. Certain programs being an obvious exception like web browsers.
The fact that behavior like this is now coming from Adobe provably, is no surprise to me at all. Adobe has been almost militant in it's defense against piracy. If they had their way, all computers would be hooked up to a central database and run only authorized code decided by a "high council" of software developers.
I know some may say that the "jury is still out", but I don't believe that any of this was done without Adobe's knowledge or consent. After all, any software developer would be stupid and negligent if it subbed out development work or services to a 3rd party without verifying the functionality of the code or auditing the services.
In any case, for a company with Adobe's reputation, this is very damaging.
This is a CONSPIRACY! They are deliberately writing software code to do this! It's a graphics package not a piece of spyware. That is the suxx0rz.
I'll take the roof that doesn't drop cold water on me throughout the night.
Let me know when I can be master of a kingdom with a roof that doesn't leak.
paintball
I have the definite impression that after installing CS3 trial, other related softwares started behaving differently: Flash asked my firewall access permissions, Dreamweaver stopped remembering my sites' keys, etc. I'm I alone and paranoid? Why did Macromedia sell their souls (and ours) to Adobe in the first place?
Works for redirection services like TinyURL, eh? That's not problem solved, that's problem whuh?
You have some very good points! There are several plugins that provide CMYK support for the Gimp, like this one: http://cue.yellowmagic.info/softwares/separate.html I don't know how good they are, since I don't use the Gimp on a regular basis. But it might be worth looking into, if that's what you're needing.
As a user of Adobe's suite, my personal problem is that I have tried to track weird network access on my computer. Also, although the applications have become more stable, I get plenty of strange behavior and lock-ups due to the network closing a connection.
This becomes about productivity and the software messing up my computer as much as the resources used to connect. Some people were dismissing Apple's authentication system rumors, and as a person who does purchase the software I use, I would love nothing more than for this crap to be relegated to history. Do I trust Apple more than some of these small companies, may be a question implying the lesser of two evils, but the choice in this instance would be nice.
I ditched Quark because of their annoying authentication practices, but am stuck with this crapware now!
The biggest issue is them deceiving the user by not being open about the monitoring and giving us an option to opt out (or opt in by default), seriously, no wonder you people are losing your rights, you do not know what they are in the first place.
http://www.rense.com/general79/wdx1.htm
[Be sure to thank your mother for the continued use of her basement. -J]
He spent quite a bit of time answering people on his blog, in his own way. That's either commendable, or reckless; I haven't quite figured out which yet.
Adobe's big mistake was using an opt-out instead of an opt-in. You can go into Prefs and make the splash screen not load, among disabling the other Internet-using functions. But those are only pseudo-"opt-out" measures. On initial program start (right after install), it should say "We're going to use the Internet for X, Y, and Z, please click Yes or No if you want us to do that. You can always change it in Preferences. Here's the list of features that will not work if you click No:..."
Whatever their slip-ups end up being, I can tell you for sure that the execs from Omniture will be called onto Adobe's carpet Monday morning.
"Who is General Failure, and why is he reading my hard drive?"
But when you move out you've got to leave all of your books, movies, records, and business records behind.
(You've got to complete the analogy.)
I think we've pushed this "anyone can grow up to be president" thing too far.
I'm not sure you all are aware, but Slashdot is a big analytics user as well. Ask the marketing guys at SourceForge, Inc. if, money being no object, they'd want to use Omniture's service instead of Google's.
<script src="http://www.google-analytics.com/urchin.js" type="text/javascript"></script>
<script type="text/javascript">
_uacct = "UA-32013-5";
_udn = "slashdot.org";
urchinTracker();
</script>
http://kb.adobe.com/selfservice/viewContent.do?externalId=kb402251 mac & win