Slashdot Mirror
No Windows 8 Plot To Lock Out Linux
First time accepted submitter Bucky24 writes "ZDNet's Ed Bott decided to contact major PC makers to find out the truth about Windows 8 SecureBoot. The responses are encouraging for those of us who run third party operating systems. Dell plans to have a BIOS switch to allow SecureBoot to be disabled, and HP assures us that they will allow consumers to make their own choice as to what operating system to run, though they have not given details as to how."
1. Embrace.
Ed Bott is nothing more than a Microsoft mouthpiece. Not going to RTFA and almost didn't RTFS because of his name. His hobbies are trolling and shilling for Microsoft.
The only difference between him and Robert Enderle is that Robert is a more honest whore.
--
BMO
While nice, if true, to hear that OEMs will be doing (part of) what people would like to see(specifically, having an option to disable 'secure boot' is better than nothing; but what you really want is the option to do a keyfill with trusted keys of your choice: signed boot components make good sense, it's just not being able to choose who is trusted to sign them that is an issue); this article could hardly be any smarmier or less informative.
"In response to the FUD campaign of the freetards, I asked some PR people. Dell said 'yes', HP emitted word salad, AMI said that they would do whatever their customers felt like. Case Solved!" If it weren't for the smirking invective, the whole thing could have been boiled down to a single paragraph(or, heaven forfend, bulked out with technical information...)
After all, when you're simply pushing commodity hardware with no particular value added, adding "can run non-Windows OS" is just another bullet-point feature you can add to your list, and one that even normal people will look for "just in case" they want to try out this Linux thing or whatever. What's the point in locking yourself in if there isn't anything special about the hardware in the first place? Even Apple doesn't limit what its hardware can run, only what its OS will run on.
Besides, there are plenty of enterprise customers running Linux servers and workstations, so making that an option would just add uncertainty to the supply chain and make those customers uncomfortable.
I want to leave secure boot enabled, but put me in charge of the keys. That is, I want to load my own public keys into the system (through a secure channel, such as a bios screen or flipping a physical switch, for example).
They were successfully sued (albeit more of a slap on the wrist) for antitrust violations simply for bundling a browser with an operating system.
Colluding with hardware manufacturers to actually lock out rival operating systems making them an enforced monopoly is several orders of magnitude more severe. Why would they risk that when other operating systems have such a tiny market share anyways? The possible penalties are not worth it for a small increase.
-- Insert witty one-liner here. --
The requirement to disable Secureboot in order to run a non-Windows OS will imply that the other OS is less secure. Just another way for M$ to try and make the hardware pseudo-proprietary. This is not much different than the 'Windows Key'. Ask yourself, Is this an attempt to incorrectly solve a problem that doesn't exist or just another FUD tactic from a behemoth corporation?
Disabling secure boot is not a solution - it's crippling the security, needlessly. I'd love to hear my Dell rep explain to me on my next round of server purchases that I cannot use a fantastic feature to protect the security of my linux servers because they were too lazy/corrupt to enable me to use my own platform key. I will buy from the vendor who allows my to set the PK, and will not from those who refuse. Period.
mov ah, 4ch
int 21h
There's never been any real reason to believe that locking down of this feature would happen, apart from FUD. This whole thing is a tempest in a teapot, and it's frankly sad to see how many members of the community are willing to believe that "on by default" necessarily means "unable to turn off".
"16MB (fuck off, MiB fascists)" - The Mighty Buzzard
If it was something that was really locking linux out in an apparent fashion, matter could be taken into courts.
............ go figure.
But now customer is not prevented from doing it - but, this time will need to be able to get into bios, turn it off, and only after that install linux.
as you can readily agree, vast majority of computer users would not even know what 'bios' was. so, if a non-tech person from idaho was recommended linux, and got ahold of a cd and attempted to install it
This situation will make it slower for linux proliferation in mainstream, due to the tech aptitude threshold. And conveniently too - you cant argue against it because if someone knows what a bios is and what is the setting for allowing other oses, s/he can do it. if not, s/he can not. so convenient.
Read radical news here
As if SecureBoot needs to be off for windows 7 to boot then OEM will be just about forced to have it off or at the very least on the business line.
Even then for home use let's see windows 8 metro ui may be a no go for
*metro app only in metro ui, so no steam, no iTunes, and other apps in metro mode.
*app store lock in and censorship for metro apps.
*no multitasking as it is now in metro mode.
I think people will go back to 7 or say 7 is fine.
Do I have to rip the side of my case off and find a single dip switch between the video card and CPU?
Um nah, that's ok you can keep that.
it is really just a plot to keep my reverse-Hackintosh from coming to market. I cannot see how we will ever have an inexpensive, stand-alone Mac running Windows 8 (ie., free from Bootcamp, VMWare or Parallels) Well played, Microsoft.
No plots? I'll wait for halloween docs version 2011 to confirm this.
The freedom of choice on what operating system the user wants on his/her computer is like the freedom of every car owner to select which gasoline station he/she wants to fill his/her car.
Correct me if my car analogy is wrong.
So I guess now people will have to figure out what magical key combination gets them into their BIOS/UEFI setup screens and then find some no doubt confusingly named option to toggle, to be able to boot a Linux (or non-Windows) live-CD at all.. This is sad, because distros like Ubuntu were doing a pretty decent job at making installing Linux idiot-proof.
Wether or not this was some evil plan of Microsoft (there are obviously good reasons why one might desire the secure boot feature), I think this little detail can slow Linux adoption on the desktop more then you might think (and you and I may not care about that, but I understand why the EFF and some Linux hackers do). It means anyone not familiar with PC BIOS setup screens will probably need help installing anything non-Windows.
Personally the only reasonable thing I think that can be done to make this secure boot work without overly complicating non-Windows installs and without confusing users too much is perhaps this: when the BIOS is made to boot code it can't verify, it'll simply ask the user something along the lines of: "An unrecognized operating system has tried to boot. If you are installing a new operating system, press F2, otherwise, press any other key to boot securely."
CS degree? try MS CERT to trun on boot os MS old or IT CERT / TECH SCHOOL / IT license to trun on boot Linux.
any ways windows lock in with app store lock in will be a MAJOR Anti trust issue.
Also there are industrial systems ruining old software / hardware that will be need to be on there own and I don't think people will like having to be locked into coding for what even UI MS wants to force on you as part of there locked down app store for your system that is running industrial systems.
What about nuclear plans and other places with systems that don't run windows?
Dell plans to have a BIOS switch to allow SecureBoot to be disabled,
Can you please remind me again... what percentage of the average user population knows how to change a BIOS switch?
Currently they can just pop in their knoppix CD or try Ubuntu with a Live CD; No expertise regarding BIOS settings required (normally).
What we have here is an anti-competitive practice being endorsed by Microsoft in the form of a logo validating "Secure" boot.
This is a low blow, and a shoddy attempt to ward away other OSes, and prevent you from booting your computer to whatever application or OS you want to boot it into.
we are at least a year away from 8 being released. plans change and they might change their minds. it would be pref-able that NO motherboard had this option to start with.
As if SecureBoot needs to be off for windows 7 to boot
Unless Microsoft releases a service pack that adds UEFI Secure Boot support to Windows 7.
*metro app only in metro ui, so no steam, no iTunes, and other apps in metro mode.
Then press the Windows key to bring up the desktop.
You need to get into BIOS to switch from hard drive first to CD first or USB first anyway. What's the big deal from switching from "hard drive first, secure boot on" to "CD first, secure boot off" or "CD first, import new bootloader key from CD"?
Even if it can be disabled, great FUD argument is that all which disables it is UNSAFE!
It's an ongoing turf war.
From the comments at the ZD story:
Where have we heard that before?
Can you believe Microsoft is using the language of Occupy Wall Street to try to position itself as the "masses" fighting the "whiny 1%" of people who prefer OSS?
ZDNet, Ed Bott, and some Microsoft executives all need to burn in hell.
You are welcome on my lawn.
If your computer is going to run consumption-oriented software, then a priori its owner is assumed to be untrustworthy. This is indeed a security engineering problem: they want to prevent a repeat of the CSS key leak, which was only possible because DVD playing software could be examined. If you choose not to forfeit that sort of control over your computer, you will simply not be allowed to play new movies (not immediately; think 20 years into the future).
"If large numbers of people are interested in freedom of speech, there will be freedom of speech, even if the law forbids it; if public opinion is sluggish, inconvenient minorities will be persecuted, even if laws exist to protect them." -- George Orwell
Palm trees and 8
What about license agreement? I remember the whole "Microsoft Tax" issue a few years back, where it was basically determined that if you purchased a computer and did not approve the license, you could get a refund on the operating system software (i.e., Windows).
If I purchase a computer and have no plans to dual-boot Windows and Linux, how is this not forcing an illegal tie-in on the consumer? In that I literally cannot opt out of using a Microsoft product? Didn't they -just- have huge lawsuits about this a decade ago? Would they be so idiotic as to try to require bundled software once again?
I used to dual boot win XP and Ubuntu. Win XP started trashing the file system on the HDD and I tried to run chkdsk to fix it but Grub wouldn't allow chkdsk to run. So the file system kept getting worse and worse and the performance suffered mightily. I finally had to wipe the whole thing and start over.
The best way to run windows in in a virtual machine in the Linux or your choice. Who needs Windows anymore any way? OK, I do- I still need it to run Google Sketchup- and that even requires IE- yuck!
I don't see why linux can't adapt to these boot protection schemes. Self-signed or vendor signed, as long as there's a way to import your key information, what's the issue? Frankly, code signing is a good thing, especially if you can perform it from the ground up.
I understand the anxiety, here, especially given that Sinofsky is not a popular figure and nobody wants to trust any initiative he backs. That having been said, MS (and partners) would be opening themselves up to swift antitrust action again if they were to engage in industrywide attempts to lock out OtherOS.
It's also important to recognize that there are deployments out there where people WOULD like systems where you CAN'T disable secure boot, and have really stringent protections around the boot process. It is unlikely that this type of configuration is one that would be used in the general consumer market; there's too much of a need for boot media and utility software. Imagine not being able to run memcheck or a recovery tool, ever.
Now, really, we need to hear this kind of language from BIOS, mobo, and ready-built systems manufacturers. Overall, an initiative like this is a good thing, but everybody needs to be on the same page. Not foaming at the mouth.
The solution is obvious: allow installation of your own root certificate. This is supposed to be for security, not vendor lock-in. Without this option, I simply don't believe their intent.
Of course if some big tech corps, that have lived through a decade and more of Microsoft subject to restrictions for abusing its PC monopoly, tell some journalist that they're not going to help Microsoft compete unfairly with Linux then they must be telling the truth.
Journalists are stupid. Especially when they expect the rest of us to be as gullible as they are for a living.
--
make install -not war
PC Manufacturer: "Sure, we'll provide a utility to disable secure boot! To download it, just enter your serial number. Note that your warranty will now be voided."
The story leaked and PC manufacturers became concerned over public outcry and lost sales. I am not naive enough to believe that the thoughts of a locked down boot loader never was given any serious consideration by MS and the hardware manufacturers.
I have personally seen a gril going and asking the salesman : which of these laptops are available in pink After that she bought the one with the least weight among the pink ones She did not check the config even once
And if she is just going to browse the web, maybe use an email client (more likely web based email) and maybe run the bundled word processor what is the problem? I think we are long past the point where even the most modest computer at the local retailer has performance far beyond the needs of casual users. Hell, a tablet plus a bluetooth keyboard is probably an option for many such users.
No. It's a real attempt to solve a genuine security issue dealing with threats like a boot sector virus. The only security implication is that in this one single way the other OS is less secure, and it will actually be true.
Yeah, that's so comforting because I know when I think Linux experts, I think of HP and Dell machines sitting on their desks. Ask ASUS how their retail boards' BIOS will be configured.
Normal people would not care if the system could run Linux. They don't know how to use Linux, they probably don't even know what it is.
In any case, if the computers found in retail establishments are locked down to run only Windows it hardly matters. Motherboard manufacturers like ASUS, Gigabtye, MSI, etc will surely offer motherboards that are Linux friendly. They already produce motherboards and other products targeting the hobbyist market. Don't want to screw together your own computer? Well there have always been local clone shops and online sites that were happy to build a PC from hobbyist oriented components.
In addition to the hobbyist option above there will likely be professional grade stuff from major vendors. So maybe you have to go to Dell or HP's Small/Home office product line rather than the consumer product line.
Less convenient than what we have today? Sure. You could even say annoying. However it would not be the end of the world for fans of Linux.
This is such a ridiculous conspiracy that only Microsoft haters could have roused up so much in people. Microsoft doesn't have the control over PC manufacturers as people seem to think based on all of this nonsense. And manufacturers aren't idiots; they know that they sell plenty of hardware to corporations, networking/hosting companies, research labs, etc, and they know that those clients need machines which can run alternative operating systems without all of this implied dicking around.
What I think it boils down to to some degree is jealousy that Microsoft has taken security so seriously, and even doing some things that Linux is not, so they can't use that same old FUD/rhetoric about their operating system being the most secure or keep implying that Microsoft doesn't take security seriously. Because let's face it, this has been a big part of the pro-Linux fanboy campaign for years. What have they really got left now? Just the old "Micro$haft is for fags." I guess.
Don't get me wrong though, there's nothing wrong with honest Linux advocacy; I've used the operating system for countless things for over 10 years now, and still on a daily basis. For my particular server management/networking/development tasks, it's the best choice for those jobs, and I'd recommend it any day of the week. But, it's not as the main OS on my primary home PC. Nor do I really want it as such. We're not talking about Windows 95 here, even though that seems to be the last thing a lot of the hater camp has any experience with. Win7 is probably the best operating system that I've ever used, and I know a lot of people who agree. Windows 8 has the potential to be even better. So if they think they can better secure countless peoples' machines with a new technology, preventing them from infections which affects the internet for ALL of us, then for crying out loud let them do it without trying to get in a bunch of childish jabs to take their spotlight away.
Knowing Slashdot, a "how much is Microsoft paying you" sort of response to a comment like mine won't come as any surprise at all. But I don't need money to see right through this incredulous conspiracy scenario.
It will be true, but not the fault of the OS (rather, an unfair and untrustworthy means of key distribution.)
Windows 7 already supports UEFI boot and I'm sure the bootloader and kernel are already signed. I imagine what they don't have is the tight integration between the boot verification and the DRM subsystems/Bitlocker.
... but if it turns out that way, oops, our bad. (Not really) Sorry about that.
Just the new modern version of the old mafia line...
"That's a really nice libre operating system you've got there. Be a shame if you couldn't install it on any new PCs you buy. A real shame."
Heh, exactly right. It's a farce anyway, because if they were serious about security they wouldn't boot Windows at all.
Am I just out of the loop, or are most people here just talking out of their ass? What is SecureBoot and why is it controversial?
The article assumes you already know what it is. All the highly rated posts assume you already know. Yes, I can pick up some things from context (enough to argue about it even!). No, that does not mean I should post my half-assed opinion as fact.
The fact is, SecureBoot is a hardware manufacturer's issue. If Apple had suggested it, there would be no controversy. And anyway, manufacturers would have to be stupid not to provide an option to disable it / install another OS: it doesn't serve their interests. If Microsoft paid them so that it served their interests, well there's anti-trust for you if I ever saw it. Complete non-issue brought to you by Microsoft Hate (tm).
Well, actually in many ways there IS a grand conspiracy to lock Linux off the PC; luckily for Linux however the conspirators (hardware manufacturers and desktop productivity and gaming software creators, primarily) can't be trusted by their ringleader (Microsoft) any more than the ringleader itself can be trusted.
Anything less than this, is an unacceptable competitive advantage for Microsoft against its closed-source competitors. I'm not even talking about the user's freedom and open source software here.
Note: by "disabling the feature" I actually mean either disabling the feature completely, or allow it to work with other vendors' signatures.
In the CSS case the player / player software needed to have the private decryption key. Thus there was always the potential for reverse engineering.
In the case of integrity protection (Secure Boot), the UEFI firmware needs a public key. The corresponding private keys needed for signing the boot loader will live in FIPS certified hardware security modules deep within Microsoft (and other OS / boot loader vendors). A HSM does not allow any private keys to be retrieved, but it will allow signing code/cabinet files if you present the correct number of hardware (USB) keys and passcodes.
Reading slashdot one-liner: (irm http://rss.slashdot.org/Slashdot/slashdot).rdf.item | fl title,desc*
While I dislike what both Mueller and Bott write, that kind of ad hominem via opinion proxy can be used by anyone.
If you support cause A and someone who is ill perceived, even by yourself, praises you, that doesn't diminish the validity of your cause in any way.
I see this tactic used all too often by mass media to attack people associating them with evil or laughed at characters.
"Science can amuse and fascinate us all, but it is engineering that changes the world. " - Asimov.
Your post was unintelligible because public school didn't help you enough. Please learn to spell and punctuate properly before posting again, so that the rest of us can successfully parse your intended meaning.
This has been a public service announcement, as well as an ad-hominem attack.
Thank you and have a nice day.
This work is licensed under a Creative Commons Attribution 3.0 Unported License.
Is that someone in the community has realized that even with the ability to import your own keys or switch off secure boot, there is probably a license problem with GPLv3 which will set Linux, BSDs etc at a disadvantage.
To distribute a "signed" GRUB you would be required to make the private key available. Which would undermine the security of Secure Boot and thus there is not a chance that the corresponding public keys could be accepted for distribution with UEFI in new systems.
This is a real security feature, one which will prevent boot sector rootkits which is a threat to *any* operating system. The GPLv3 run afoul of this. This is why FSF wants vendors to implement the draconian "setup mode" scheme.
That is the dirty secret, the taboo: Secure Boot will give a closed source system (or at least a system with secret private keys) a clear security advantage. Rather than coming clean, FSF, Red Hat and Linux Foundation has launched a FUD campaign hoping to stir up enough fear to mandate a considerably worse installation experience for *all buyers* of systems.
Reading slashdot one-liner: (irm http://rss.slashdot.org/Slashdot/slashdot).rdf.item | fl title,desc*
If anything, lock out, if it indeed takes place, is more likely to effect prebuilt of-the-shelf OEM craputers, the ones that don't ship with the OS CD, and are filled to the brim with crapware, ie: things nobody in their sane mind, except the tech illiterate would opt buying. The higher end systems, as well as anything someone builds on their own, will likely not be effected by this.
Actually, I find it quite economical to purchase those "craputers" on occasion. No configuration headaches, and with the addition of a decent video card, quite suitable for playing the latest crap games on. Biggest benefit? $400 gaming rig with a 1-year warranty, available immediately (no shipping time, no shipping charge).
Admittedly, if I were going to purchase a PC for "serious" usage, I would build it from carefully selected components, purchased online so as to maximize my bang-per-buck and ensure maximum compatibility and reliability for its intended purpose.
If I just want something to bang on when I'm looking to waste time? Who cares if the power supply won't outlast the warranty? Why worry about a motherboard failing a smoke test 6 months into the purchase? It's cheap enough to replace when the warranty runs out, anyway, so whatever.
Besides, you can always bring it in for warranty work just before the warranty expires, get it running "top-notch" for what it is, then put it in the paper for 75% of what you paid for it and sell it to some other poor schmuck who really doesn't know anything about tech. It boots up, it obviously works just fine.
This work is licensed under a Creative Commons Attribution 3.0 Unported License.
really can't think of us getting screwed you've never gotten a laptop with a VT compatible CPU and the option is disabled in bios...
well just go in a turn it on....
OH WAIT.... THERE IS NO MENU OPTION TO TURN IT BACK ON.... so someone must hack the bios to turn it on...
yes i am using a laptop with just such an issue(never dreamed to check that before buying the laptop)
geek paranoia is because we've been screwed over and over...
and if it's not paranoia it's let's keep watch and make sure it does not happen...
but please explain why how VT option is not an option on some laptops... some OEM decided that i should not be able to run VM's(with cpu acceleration) on my laptop?
Elop chose the best tool for the job, which happened to be WP7, and apart from him being the 8th largest m$ shareholder when he took the job doesn't have any hidden agenda at all. You can trust Microsoft.
That ok Steve?
Canonical (the company behind Ubuntu) and RedHat, as well as a Kernel developper, have published a white-paper regarding the subject. It can be found here http://blog.canonical.com/2011/10/28/white-paper-secure-boot-impact-on-linux/ What they suggest is to let the user manage the keys necessary to allow a secure boot process on any operating system they choose.
And I don't understand why /. users can't see it.
The minute you have to add in extra steps just to install Linux then MS wins. Comparing Windows to Linux for first-time Linux users, they're going to think "Wow, Windows sure is easy to use. Not like this Linux stuff where before you can even put the CD in you have to start changing settings! When are they going to make Linux easy to use?"
And that sad fact is that this is probably just aimed at stopping people downgrading their PCs to older versions of Windows in the future. Linux - and Hackintoshes - are just the icing on the cake. MS' probable goal is to stop future PC buyers from buying a new PC and downgrading from the future Vista lemons that MS will push on everyone to the future XPs.
Kept your Windows 9 Blu-ray disk set from your last PC? Ah, sorry, you can't install it on your new Intel Core 8-64 machine - you have to keep the Windows 11 with the 'Verified User' core. Secure boot won't let you install anything older than Windows 11. Now remember, only you are licensed to use this OS instance, any other user must purchase and install their own license. Now, get ready for biometric verification, or the police will be querying why you have a stolen copy of Windows when the OS phones them...
Work like no one is watching. Dance like you've never been hurt. Make love like you don't need the money.
You have got a win8 machine and win8 is in control of the MBR.
You can always boot a Linux distro using grub4dos. Get 'grldr' from its package und put it in c:\ adding an entry like
C:\grldr="grub"
in boot.ini and also a line for your specific distro in c:\menu.lst.
When the machine starts, you will see the win8 boot menu, you pick grub, you see grub4dos boot menu according to menu.lst, you pick your distro.
You are a complete retard.
"Not a programmable interface" means that the OS or something running in the OS can't change the switch.
Because Secure Boot isn't secure, if the Malware can first turn it off and then restart the system to insert itself into the boot chain.
But if they're selling Windows branded tablets or other hybrid form factors then that's another matter. I would not be surprised if they become contractually obliged to secure the devices given that Microsoft intends them for delivering premium content like apps, videos, music through their own store. It won't be a case of them choosing not to allow rooting but a case of them being unable to allow it.
I think for Microsoft's sake they should back off this since it would end up in the courts and consider another way of securing their content, e.g. a hardware key in the device which is disabled in rooted devices.
Jerry Kaplan's _StartUp_ should be required reading for anyone in the tech industry who has to do business / compete w/ Microsoft.
Short version --- Microsoft initially supported a dual-boot BIOS which allowed pen computers to be built which would run both Windows and PenPoint (and other operating systems), then pulled support after the initial generation.
William
Sphinx of black quartz, judge my vow.
In my workplace we use FOG to image Windows onto the machines. A toggle to turn off Secure Boot would not suffice. We absolutely would have to be able to sign the bootloader we are serving over PXE. Otherwise, we could be faced with imaging machines then having to manually turn on Secure Boot so the Windows machines will start.
This isn't just about Linux desktops. Many shops use Linux a LOT to make managing Windows easier. I do not fancy having to shell out for a proprietary solution that probably won't work as well as what I downloaded for free.
It would be difficult to have a meaningful signature on the bootloader right now, given that its the first OS component that is loaded during boot. You need some sort f root of trust that is loaded before the OS, which basically means it needs to be in the BIOS. The bootloader would need to be signed using a private key corresponding to a public key that is loaded on the Windows 8 logo PCs. Since Microsoft probably hasn't even completely gotten that UEFI secure boot signing service up yet, I doubt that the bootloader is signed in a way that is compatible with UEFI secure boot.
Though you're right, Windows 7 already supports UEFI boot. For Windows 7 itself to support secure boot you would probably just need a fairly simple OS update.
But, the bigger problem for existing systems is option ROMs. I doubt Nvidia has released a UEFI device driver for their cards. Secure boot probably forces you down a UEFI-only boot path, meaning you can't execute legacy option ROMs. That might not be a problem for some, except that you probably want to initialize your video card at boot so you can see what's going on.
If you bought your computer from Dell or HP you have failed a test and should go back to sitting in front of the TV.
If Microsoft had any minerals in their management they would've put an end to all the crap that gets loaded on these Dell's and HP's so that their OS would actually run correctly.
9 times out of ten when i help someone with their computer I advised formatting and installing only the OS, then add only what you need, the rest is bloat and crapware.
"If any question why we died, Tell them because our fathers lied."
Build your own....
"If any question why we died, Tell them because our fathers lied."
Hey APK, there is a reason why everyone hates you.
Take a wild guess as to what it is.
--
BMO
Wait, you're implying that Ziff-Davis isn't a Windows centric shill shop?
It's difficult to interpret your comment, however it sounds as if you are familiar enough with Ed Bott to make statements for him about people who use operating systems that aren't Windows.
Perhaps you are part of some fan club. That's great. However, comparing the situation with Windows and that of Linux is ironic considering that remote exploits in Windows have been responsible for countless problems in the past, and even though Windows Server 2008 may (at this time) have fewer vulnerabilities that will change I'm sure.
Anyway, why do you assume I am a fan of Linux anyway? Is it because I won't swallow the poison pill from Microsoft any more?
I don't use a "third party" operating system, unless you're referring to Windows?
The Linux folks are talking DISABLING SECURITY here? They're essentially asking a great security feature BE STOPPED on secure boot!
(Gosh, why's that? So they can continue to hack Windows perhaps??
Yeah, because Linux should just say, "Well, it looks like they finally did us in...time to just roll over and die," after 20 years of offering an alternative to the proprietary OS's. Guess somebody should call up Linus and let him know that Linux is completely pointless now and he should find something else to do. Not to mention, claiming that the only reason Linux exists is to "hack Windows" is incredibly dismissive and insulting 1) to the history of UNIX-based/-like operating systems and 2) to pretty much anybody who's ever contributed anything to Linux.
I take it by "4x++" you mean "5x?" Otherwise how about we cut the inflammatory bull and just leave it at "4x+."
Finally, please stop using bold all over the place. It's almost as bad as all-caps.
That Guy Who Signs In
...tango
Unity? Screw that: XFCE. Slashdot Beta? Screw that: SoylentNews. Australis? Screw that: Pale Moon. UX developers DIAF
I'm pretty sure this is some kind of troll-bot.
Your post was unintelligible because public school didn't help you enough. Please learn to spell and punctuate properly before posting again, so that the rest of us can successfully parse your intended meaning.
This has been a public service announcement, as well as an ad-hominem attack.
No, that was not an ad hominem attack. No attempt was made to sully the person or their character; only their language skills were criticised.
Please learn to reason before posting again, so that the rest of us no longer need to correct your logic.
This has been a public service announcement, as well as a satirical reminder that taking a holier-than-thou tone often redounds against the author.
(I humbly await the next installment in this series....)
Crumb's Corollary: Never bring a knife to a bun fight.
Manufactures have lead times to make new computers. Courts take time to process a suit or probably even rule and enforce an injunction. The rulings will presumably need to be made in each country: US, EU, Canada, Japan, etc.
Let's say this is a Microsoft conspiracy to lock out any OS other than Windows 8 onwards from booting on a brand new PC and court finds them guilty just before or after Wndows 8 launches. If not MS is guilty then some HW manufacturer or the OEM.
There's going to be a boatload of inventory piling up and nowhere to ship and sell it. The market will still end up getting flooded with several million PCs in various countries both for Corporate desktop and consumer. The OEMs are going to complain about stock piling up and needing to sell it. And people already bought PC will keep it. One way or another MS will end up winning with millions of PCs that cannot install anything other than Windows 8.
So sorry, I understand your sensitivity to being a third-grade dropout. We'll dumb down so you can feel better about yourself.
has less drivers of high quality (makes sense, PC makers & parts makers KNOW what drives the PC world is why)
Granted. Linux has drivers for a bunch of other platforms Windows has never touched, though, obviously.
NOW - Thing is?
Well - Neither DELL nor HP is doing that... lol! Show me where they said they are "locking out Linux" (especially intentionally), ok??
1) They're obviously never going to admit to doing it, regardless of whether they are or not.
2) The people the guy talked to were not really in a position to be knowledgeable about this stuff, from the sounds of it.
3) The general consensus from the posts here is that article author is hardly an unbiased, reliable source himself. Quite the opposite.
That ALL said & aside:
Linux folks asking vendors TURN OFF a VALUABLE & EFFECTIVE security measure, especially for layered security
Yeah, why would Linux want to turn off a "VALUABLE & EFFECTIVE security measure" that prevents it categorically from being booted? Linux people have no problem with the security itself, just that Linux is probably going to be "coincidentally" left out in the cold by it.
It really sounds like a terrible idea to begin with. If they won't give customers the keys to sign the stuff with (which seems to be the whole point of the system in the first place), either 1) Linux booting is disallowed, or 2) they make the secure boot disable-able, which completely defeats the whole purpose of it to begin with if all anybody has to do to bypass it is toggle an option in the BIOS (well, I suppose you could lock down your BIOS so maybe not). Sure, it's great if all you care about is running Windows...at least until a bug creeps in and Windows accidentally its own signature...or the first h/cr/acker figures out how to invalidate the signature...
(which I am QUITE expert on, see here http://www.google.com/search?sclient=psy-ab&hl=en&site=&source=hp&q=%22HOW+TO+SECURE+Windows+2000/XP%22&btnG=Search&gbv=1&ei=UA-zTsH5GqrX0QGV8L3TBA , OR here http://www.bing.com/search?q=HOW+TO+SECURE+Windows+2000%2FXP&go=&qs=ns&form=QBLH ... I practically "wrote the book" on how to do that & have since 1997... )
Well, you wrote *a* book. Damn, dude: nobody's ever going to accuse you of being terse! As for being an expert, I guess I'll just have to take your word on that one.
Why don't they adapt for it? Nobody's stopping them!
Um, yeah, that's kind of the point...
Perhaps they are unable to??
They may eventually, yeah, but it'll suck in the short term if it goes the way it looks like it's going to.
Again - I didn't see vendors STATE they were locking out Linux! Show me where they have... ok?
See above.
APK
P.S.=> As far as "hack Windows", & it being done by Penguins? Yes, I said it - what BETTER WAY for they to discredit MS!
Yay stereotyping. Like I said, this is about being able to boot Linux, period. Yes, there are some people who may use that ability maliciously, but there's also a hell of a lot of people who don't.
& judging by the "anti-microsoft/anti-windows" sentiments around here
Okay, yes, I'll give you that one. Diversity of opinions and plenty of people on both sides, etc., etc....but yeah.
Yea, I'll stand by it.
Yes - I'm fairly sure that "goes on" from the "penguins" even here too
Unity? Screw that: XFCE. Slashdot Beta? Screw that: SoylentNews. Australis? Screw that: Pale Moon. UX developers DIAF
Just observing the large number of formulaic posts, often with little or no bearing on the parent post, made by an AC, apparently signing at the end as apk. The posts are long, rambling, bizarrely formatted, with lots of pointless bolding and capitalization as well as excessive punctuation. Forgive me if the posts aren't being generated by some sort of near random content generator, but they really look like they are.
I think calling me a Linux "groupie", I think that's going a bit far. It is certainly true that I primarily use Linux. I got used to a Unix environment early on, so Linux was a natural progression for me. I think it would be fair to say I'm a fan. "groupie" is unfair, especially with the snide, condescending tone you seem to have intended. As for FUD, I don't think I was intending to spread fear, but I supposed I did have uncertainty and doubt about whether the spam-like flood of those posts came from a real human being. My reply was also no more off topic than the reply to my reply was. I admit I wasn't adding any new information or arguments to the conversation. I was providing a critique of someone else's "contribution", however, and I believe that still qualifies as on topic.
I dont suppose for any minute that the number of mother boards out there serving as process controllers for numerical machines, etc, are trivial in number.
These organizations will need to either rework their software at great cost for redeployment, (If the source even exists), or force the vendor to sell a board with a legacy bios.
I also read where RedHat was as much prepared as MS for UEFI, so that the linux community will be able to integrate their software with it.
It will or may cause a problem for VM software, but I expect that with human intelligence, which we all have, that problem will be resolved.
I thought that one could always write a Bios in the middle software that would understand UEFI, but provide the classical bios for legacy systems.
Leslie Satenstein Montreal Quebec Canada
Have you ever been diagnosed with a mental illness? Seriously, your posts come across like something from the time cube guy. You can call my post an "illogical off topic ad hominum attack", but it was the nature of your numerous posts I was attacking, not really you, per se. You yourself seem to have no trouble getting personal with attacks on people, I notice. The majority of your posts in this article seem to be repetitive rants. You gloat over imagined victories. I didn't address your so-called points because they were, for the most part, off topic. For some reason being off topic isn't such a sin when you do it. Also, I really honestly wasn't sure at first if your posts weren't coming from some sort of wacky content generator. I'm reminded of early print advertising, with its inexplicable font shifts, underlining, size changes, etc. My comments were not illogical. Your comments simply struck me as bizarre and I said so. Logic didn't really enter into it on way or another.
Seriously, your reply that "THE TRUTH COMES OUT" to my statement that I do, in fact, use Linux is bizarre. Linux users aren't exactly unusual on this site, much less in the comments of articles regarding Linux specifically. I'm not a member of some cult, I just use a particular operating system and you've apparently already pegged all Linux users into some particular niche in your mind and hold yourself up as superior to them. From my perspective, it looks like some sort of childlike egomania on your part.
Folks in the Linux world don't want useful security features stopped. What they want is for them to be implemented in such a way that the hardware still belongs to the person who paid good money for it and not to the original hardware manufacturer or their financial partners. There's nothing wrong with the concept of secure booting, but, if I'm buying a walled garden, I want the keys as well. The kind of people who are enthusiasts for free software tend to be the kind of people who don't like to be locked out of the things they own. I feel the same way about phones, and music players, and cars. You can imagine how I feel about laws that make it illegal to hack your own hardware, repair your own car, etc.
As for security of Linux vs. Windows in general, I don't think we're going to agree on those ever. I've used MS Windows since 2.0.3 I believe. Before I used Linux or it even existed. I also used various Unix variants before Linux. My personal computer for most of high school was a Silicon Graphics machine running Irix. When I first heard about Linux, I actually bought into some of the things people were saying comparing it to so called "real" Unix systems, and I didn't try it for a while. Since then, however, I've mostly been a Linux person. I mean, let's face it, Windows 95, 98, and ME were junk compared to Linux (Windows ME was junk compared to 98 and even 95, of course). Windows NT and its descendants were more impressive, but if we're talking about security, Microsoft never managed to impress me. The tight integration of the security hole otherwise known as Internet Explorer into Windows. Autorun, for crying out loud. I've just seen Microsoft do too many security brain dead things to take them seriously on the security front. Linux isn't some shining panacea, but it's what I use. It's given me plenty of problems over the years, but never as many as Windows.
As for disproving the points in the post you provided the link to. What points? You mentioned 3 remote unpatched vulnerabilities in the latest Linux kernel, but didn't say what they were. Then you went on about some Windows vulnerabilities and how to work around them. I haven't read anything I can think of by Ed Bott, and I don't know if he's a liar or not. He's a writer for a periodical who has managed to keep his job in this day and age, so that pretty much automatically makes him a shill. My mother has a newspaper reporter friend, and I was quite impressed by the multiple Pulitzer prizes he had on his wall when I met him, but, despite that I saw articles writt
In your first link, 8 of the 10 problems listed are listed as fixed (most of them only apply to alpha CPUs anyway). The remaining two only affect 2.6 series kernels. One of them requires an application or user with special networking privileges to exploit and the other is patched.
Your second link also only applies to 2.6 series kernels and is listed as fixed as of 2.6.16.1
Your third link is just under six years out of date and doesn't include any remote exploits in any case.
In regards to your postscript, I'd like to re-iterate that Linux users have a genuine concern about being locked out of their own hardware. As I've already stated, journalists like Ed Botts have massive conflicts of interest that we take into account. Dell and HP don't need to be part of a conspiracy to lock out Linux users to carelessly and lazily kludge their UEFI implementation just to the point where Windows boots, but other Operating systems run into problems. We've seen that sort of thing often enough in the past.
P.S. What reprehensible lengths ("LENGTHS", no less) are Linux folks going to in order to avoid extinction? Also, how do you reconcile saying that Linux users are in danger of extinction with your claims that Linux users concerns about implementations of secure boot are unfounded?
"Guys, listen - they ALL need work on the security front, every OS there is! However, the Penguins saying to turn the secure boot feature off? It's NEGATING a good security feature, one hacker/cracker types take advantage of!" Have you actually read the Linux foundations recommendations? If actually followed it would allow every operating system to use Secure boot in a sane way. One interesting recomendation was to have a CA that would KEK public-private pair to validate a wide variety of things including periphrial devices and open source distributions. Secure boot is set up in such a way that it doesn't require any changes to the underlying OS at all so long as platform owners can modify the keys during the firmware setup or have a say to resetting to the initial mode on the hardware. Thus there is nothing that can be done to the Linux kernel to make it adapt, because the compatibly concerns aren't within the behavior of the kernel, but within the behavior of the firmware. Turning it off is just the minimally acceptable option.
Good grief.
An Anonymous Coward, signing as APK wrote:
Since you don't read well, look for this "2005-02-16" on this page:
I read fairly well, but I refuse to do some large research project for you when you clearly can't be bothered. Some summary says "remote" in it, but you don't make an attempt to list which parts are actually remote exploits. In any case, you clearly also couldn't be bothered to check out the part that said that the last update was 2005-12-01. Issues 4-18 from that page are fixed in kernel 2.6.11. Issue 3 is only for 2.4 kernels and is fixed in 2.4.32-rc1. Issue 2 is fixed in 2.6.11.2. Issue 1 is apparently fixed in 2.6.8.1. You didn't even address the problems with the other two links you provided, so I assume you're conceding that they're non-issues. The fact that you don't comprehend that something that hasn't been updated in nearly 6 years might just possibly be out of date means that anything you say might have to be taken with a pretty huge grain of salt. Also, what do you mean by "++"? You keep using it. Are you using it to mean "increment"? So, by "6++", do you mean 7? Also, in what way do I "show the remotely exploitable unpatched security vulnerabilities in Linux aren't fixable by the end user!"?
You then go on about some security issues in Windows and how to work around them by disabling features and claim that, by pointing out that the listed issues are fixed or patched already that I'm providing excuses, not fixes. I don't have to provide new fixes for them, since the old fixes work fine. Then you go on about 3 supposed vulnerabilities in the latest Linux kernel being 20. Which 3 vulnerabilities? The ones from the links you provided which are all fixed already? And what do you mean they're in the "latest kernel"? They were all in the 2.6 or 2.4 series.
As for Windows or Linux being more secure. Frankly, absent gaping flaws, I generally see security these days as having more to do with the user and usage profile of the machine than the particular operating system. Microsoft has mostly gotten their act together on security. As for security bugs, all major operating systems have them, both discovered and as yet undiscovered. It's a simple fact of life.
Wow. Two replies from you to my reply. Well then. With regards to Desktop market share, there aren't really any big surprises there. People have to actually know what an Operating System even is before they can actually choose one. In my experience, a good 70% of computer users don't even know what an OS is, let alone that they have a choice of what to use. I feel a bit dirty even visiting that site since they're affiliated with Alexa. I've removed their adware/spyware from hundreds of Windows machines and don't exactly have fuzzy feelings towards them. If the numbers from that site actually come from the Alexa spyware, then I would think there's a bias towards reporting the operating system of the kind of people who allow that spyware to be installed on their systems in the first place.
The low cost is a plus for servers, but it's also popular because it's a Unix variant. Also, because the kinds of people who become system administrators tend to be the kind of people who are enthusiasts for computer technology and like playing around with it. Linux is ideal for that. I've addressed the supposed 3 vulnerabilities you've talked about relentlessly in your many posts. You're using outdated information. That said, I'm sure there are other vulnerabilities in Linux, just as I'm sure there are other vulnerabilities in Windows and in Mac OS, and any other OS out there.
As for being unable to show workarounds to the issues you listed. I showed that the issues you listed aren't issues anymore. What more could you reasonably want?
As for websites being exploited. Happens all the time regardless of OS or web server software. Once again, it comes down more to security practices than to particular choice of OS. Take the recent Certificate Authority exploits as an example. It shouldn't have even been possible to compromise the keys in the first place as they shouldn't have been on machines connected to the Internet. That it could happen was a failure of security process.
Android has security vulnerabilities for sure. As do IOS, Windows Mobile (my current phone is a Windows Mobile phone, overall I'm unimpressed), Blackberry, etc. No big surprises there.
As to "extinction", you're back-pedalling. You're the one who brought it up, implying that Linux folks were going to reprehensible lengths to avoid it. So, I'll ask again, what reprehensible lengths are they going to? Also, how can you justify claiming that there's nothing to worry about, while simultaneously claiming that there's some sort of extinction to avoid?
P.S. It's confusing when you reply multiple times to my reply. It makes the thread complicated to follow.
Anonymous Coward, apparently also known as APK wrote:
I show easy workarounds for the 2 single problems in WinSrv2k8 though
Good for you. Really. You get a biscuit. I don't recall ever saying that you couldn't.
First: It's not MY fault that Linux's remotely exploitable unpatched security vulnerabilities are SO NUMEROUS (and multi-part, beyond merely 3 issues)...
Second: You cannot produce what was asked of you: Show easy work-arounds the end-user can perform to fix said remotely exploitable security vulnerabilities in Linux's latest mainstream kernel (whereas I can for Windows Server 2008 a full "distro" no less)...
First: It's not your fault that the security vulnerabilities are so numerous. It is your fault that you didn't do the research to make sure that the vulnerabilities you're going on about still exist. It should occur to anyone capable of basic reasoning that a security notice that hasn't been updated in nearly 6 years might be out of date.
Second: Have you stopped beating your wife? Yes or no? Why should I produce workarounds the end user can perform beyond updating the kernel through the regular update tool. If you had actually provided a single exploit that wasn't already fixed or worked around, then you might have a point, but none of the exploits in the links you provided fit into that category. If you'd actually read what I'd written, you might know that. You keep writing that there are outstanding issues that have existed for "6++" years, as you put it. I already gave you the kernel release numbers where all of those issues were fixed. You can't just keep claiming that those are still outstanding issues. The fact that you still insist that they are just shows that you either have poor comprehension, or some sort of bizarre pathology. If you insist that those issues are still outstanding, the ball is in your court for you to prove it with some valid source.
Then, dear me, you do the loud crowing about supposed victory again. That's something people with a mental age of five do. Declaring victory in a debate by loudly repeating yourself with your fingers in your ears doesn't make it so. Also, when did I rib on you about posting as AC?
How did I not live up to what was asked of me? The easy workaround to the issues you mentioned is to use the automatic update tool in the distro you're using to get the latest kernel that doesn't have the security issue in it. I showed you where all of the issues you mentioned had actually been fixed. Your assertion is ridiculous. You also seem to ignore pretty much every question I've asked of you, whereas I've made a good faith effort to answer yours.
As for disabling functionality, your two solutions for the colorui.dll problem are either to run in headless mode, which at least counts as not making use of functionality, or to unregister and remove the offending DLL. Tell me, if you do this, how do you use the color control panel applet? You can argue that it's functionality you don't need, but there's no sane way you can argue that it isn't disabling some functionality. For the other issue, you said that it would be a "GOOD IDEA to disallow apps that run by batch using SET statements". Once again, hard to argue that setting up a situation where some things can't run isn't disabling some functionality.
I really would be interested in you actually addressing some of the things I've said rather than just evading.
Anonymous Coward signing as APK wrote:
http://secunia.com/advisories/44754/ (still has issues #'s 3,4,8 & 9 are STILL UNRESOLVED - show us how you can work-around them, as I did in the 2 single unpatched security vulnerabilities in Windows Server 2008 & I did so without disabling functionality in the colorui.dll issue (headless/servercore mode, OR unregistering said DLL)
Ok. Considering that you've claimed I have reading comprehension difficulties, I find this amusing. From the same page you linked to:
So, that's vulnerabilities #1,2,3,4,5,6,7 and 10, fixed in version 2.6.35.14. I previously mentioned that there was a patch for 8, and 9 requires special capabilities applied to the user or application.
For http://secunia.com/advisories/14295/, all 18 of those issues have been fixed, not none of them. This is the one that hasn't been updated on the secunia site in nearly 6 years. What a shocker that a notice that hasn't been updated doesn't have up to date information. I previously wrote:
Once again, the ball is in your court to prove that those 18 issues from an out of date notice are still issues since they're listed as fixed in other sources.
As for the third link you were proudly posting before and now seem to be silently ignoring: http://secunia.com/advisories/19402/, despite the many times you posted it, you were apparently incapable of reading the part of it that said:
As for your fixes to the Windows issues disabling functionality, you're not actually saying that they don't disable functionality, just that you don't think the functionality is important. I agree that it's probably not very important functionality, but it's still functionality that's being disabled. I'm only making an issue of this because you attempted to lambast me and label me a liar for saying that your fixes disabled functionality. Your fixes do, so my statement, which wasn't of any real importance anyway, was accurate.
An anonymous coward signing as APK wrote:
NO FIXES @ ALL ARE PRESENT HERE:
http://secunia.com/advisories/14295/
NOT A SINGLE ONE IS FIXED HERE (& there's 18 OF THEM!) & I'll even QUOTE secunia on that now:
"Secunia is currently not aware of an updated kernel version addressing the vulnerabilities."
You really are just sticking your fingers in your ears and saying "LA LA LA I can't hear you", aren't you? That notice is completely out of date. All of those issues are fixed. When they say that they are "currently not aware of an updated kernel version addressing the vulnerabilities", they're writing that nearly 6 years ago. They created the notice, then they abandoned it and didn't update it when fixes for the issue came about. I already listed the kernel versions where all of those were fixed, and I'll do it again:
Issues 4-18 from that page are fixed in kernel 2.6.11. Issue 3 is only for 2.4 kernels and is fixed in 2.4.32-rc1. Issue 2 is fixed in 2.6.11.2. Issue 1 is apparently fixed in 2.6.8.1.
You haven't disproven that at all. All you've done is repeated your tired old outdated, obsolete Secunia link over and over again without any rational analysis of it.
As for where you wrote:
PARTIAL FIXES ONLY PRESENT HERE:
http://secunia.com/advisories/44754/
Still has issues #'s 3,4,8 & 9 are STILL UNRESOLVED - you SCREWED UP LARGE!
You complete moron! Can't you even read, in the very notice you're linking to, that issues 3 and 4 on that list are resolved? It says "Vulnerabilities #2 through #5 and #10 are fixed in version 2.6.35.14". In case you weren't aware (although you should, because I've already told you more than once) "#2 through #5" parses as #2,3,4,5. That includes 3 and 4. Do you understand that? Do you have some sort of argument as to how it doesn't, or are you capable of admitting that you made a mistake? As for 8 and 9, I discussed how those could be worked around, but I did a little more digging and found out that it's unnecessary anyway. I downloaded the source for 2.6.39.4 and had a look at l2cap_core.c which includes a version of Dan Rosenberg's patch:
/* Reject if config buffer is too small. */
len = cmd_len - sizeof(*req);
if (l2cap_pi(sk)->conf_len + len > sizeof(l2cap_pi(sk)->conf_req)) {
l2cap_send_cmd(conn, cmd->ident, L2CAP_CONF_RSP,
l2cap_build_conf_rsp(sk, rsp,
L2CAP_CONF_REJECT, flags), rsp);
goto unlock;
}
nl802.11.c includes:
i = 0;
if (info->attrs[NL80211_ATTR_SCAN_SSIDS]) {
nla_for_each_nested(attr, info->attrs[NL80211_ATTR_SCAN_SSIDS], tmp) {
request->ssids[i].ssid_len = nla_len(attr);
if (request->ssids[i].ssid_len > IEEE80211_MAX_SSID_LEN) {
err = -EINVAL;
goto out_free;
}
You double posted. My reply to the first version of this you posted is at 37958398.
You are such a duplicitous idiot. I'm sorry to feed a troll. I'm especially sorry I went to so much trouble to feed a troll. Here goes anyway.
You say that:
NOT A SINGLE ONE IS FIXED HERE (& there's 18 OF THEM!) & I'll even QUOTE secunia on that now:
http://secunia.com/advisories/14295/
"Secunia is currently not aware of an updated kernel version addressing the vulnerabilities."
Once again, your reading comprehension and comprehension in general are simply broken. That is an advisory from nearly 6 years ago with incomplete information in the summary. If you bothered to dig deeper than the summary, the links to the CVE's on that page directly state that 9 of those 18 problems are fixed. The other 9 are also fixed, although the information directly on that Secunia page doesn't say so, but other sources do. Since you asked me to "KINDLY SHOW US PROOF THEY ARE FIXED (all 18 of them) as you stated..." (even though the responsibility is yours to prove that information that old is actually correct rather than mine to prove it wrong), here's some additional information:
#1 is covered by CVE-2005-0176, which is addressed at http://secunia.com/advisories/cve_reference/CVE-2005-0176/, which specifically says that it affects only kernel versions 2.6.9 and earlier.
#2 is covered by CVE-2005-0178, which is addressed at http://secunia.com/advisories/cve_reference/CVE-2005-0178/, which specifically says that it affects only kernel versions before 2.6.8.1.
#3 is covered by CVE-2005-0204, which is addressed at http://secunia.com/advisories/cve_reference/CVE-2005-0204/, which specifically says that it affects only kernel versions before 2.6.9
#4 is covered by CVE-2005-0177, which is addressed at http://secunia.com/advisories/cve_reference/CVE-2005-0177/, which specifically says that it affects only kernel versions before 2.6.8.1.
#5 is covered by CVE-2005-0209, which is addressed at http://secunia.com/advisories/cve_reference/CVE-2005-0209/, which specifically says that it affects only kernel version 2.6.8.1.
#6 is covered by CVE-2005-0210, which is addressed at http://secunia.com/advisories/cve_reference/CVE-2005-0210/, which specifically says that it affects only kernel version 2.6.8.1.
#7 is covered by CVE-2005-0449, which is addressed at http://secunia.com/advisories/cve_reference/CVE-2005-0449/, which specifically says that it affects only kernel versions before 2.6.8.1.
#8 is covered by CVE-2005-0839, which is addressed at http://secunia.com/advisories/cve_reference/CVE-2005-0839/, which specifically says that it affects only kernel versions before 2.6.11.
#9 is covered by CVE-2005-0937, which is addressed at http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2005-0937, updated 08/21/2010. It It lists affected kernel versions and they stop at 2.6.9.
#10 is covered by CVE-2005-0867, which is addressed at http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2005-0867 updated 08/21/2010. It lists affected kernel versions and the only version is 2.6.0. Confirmed fixed in 2.6.9.
#11 is covered by CVE-2005-0135, which is addressed at http://web.nvd.nist.gov/view/vuln/
An Anonymous Coward signing as APK wrote:
This, verbatim -> Solution Secunia is currently not aware of an updated kernel version addressing the vulnerabilities.
This, verbatim -> Last Update 2005-12-01
Now, try to put those two things together. I know you can if you really, really try. See, the way it works is that, when they wrote "currently", they meant in 2005. Then they never updated the page again. In the meantime, the security problems were fixed, but the page remained the same. Do you grasp that concept? So, the advisory doesn't say I'm full of it, as your subject line states, because it's from nearly 6 years ago, but I'm talking about the present.
As for your examples of Certificate Authorities being hacked, I should point out that I never claimed that Linux was somehow unhackable. All I ever claimed was that the three links you provided of supposed unpatched security vulnerabilities were not in fact unpatched. Given that one of the links you gave said right on the Secunia page that it was already fixed, the other two said that most of the issues had been fixed and that I then showed that all of the outstanding issues had been fixed, I think that I'm completely vindicated there. You're clearly not mature enough to admit when you were wrong. All you seem to know how to do is evade and move on to new claims.
So, there are ways to break into a Linux system, just as there are ways to break into a Windows system. Many of those ways don't rely on flaws in the Operating System. Security is about a lot more than just the OS. The CA's that were compromised clearly had bad security overall.
I should also point out that, although the attack on those CA's could have started through their web servers, and their web servers could have also been the actual key signing boxes (perfect example of stupid security design), it's naive of you to assume that their entire infrastructure used the same OS as their web server.
As with the other sites you listed that were compromised, all I can do is repeat myself. Linux itself and server software that runs on it can be insecure, or poorly secured, just like Windows or Mac OS, or any other Operating System you care to name. Linux is neither significantly better or significantly worse than Windows in that regard.
As for your postscript about Android, I am once again not shocked in the slightest that an OS for cell phones has security issues. What you say about any popular Operating System being subjected to more attacks is also true. As for "fud" about Linux being secure and Windows not being so, I should point out that Linux users have never been in a position to actually spread much Fear, Uncertainty and Doubt about Windows due to the marketplace dominance of Windows. There's been plenty of FUD from Windows users and Microsoft itself about Linux over the years. Overall, I try not to pay too much attention to hyperbole from either side and simply use what I prefer.
I think the answer to your first question is fairly obvious. It's because the vast majority of people don't even know what an Operating system is, let alone that they have a choice, and Windows comes pre-installed on just about every computer. Also, what is with you replying twice to my post and linking to your first reply in your second reply? Seriously, there's something wrong with you.
Have you ever worked with big brand OEM systems? Afaict they pretty much always have bioses that have been customised by the OEM to remove options.
note: i'm known as plugwash most places but i screwd up registering that here somehow in the past and now can't register
Linux isn't actually in last place. There are diehards out there still using Amigas and people running their desktops on BSD variants and Solaris. But, yes, it's certainly a long way from mainstream. By and large, that's the way I prefer it actually. For one reason, for exactly the reason you gave about more exploit attempts appearing for more popular Operating Systems. I prefer my OS to be less of a target. Also, being mainstream, or trying to be (a la Unity in the latest Ubuntu), can lead to some really bad design decisions. At least, to me they're bad design decisions. To the general public they may be great, but I've long since realized that the average computer user doesn't represent me at all.
As for Linux not being as good as Windows, in what sense? I can do everything I need and want to do with Linux. My systems seem to be stable and secure. What else is there? Your assertion that market share is directly proportional to quality is laughable when you look at how people actually buy things. Wal~Mart is a leviathan for a reason.
Finally, I find it laughable that you say to argue with the numbers. Incredibly hypocritical from the guy who continuously refused to accept that a nearly six year old advisory might not be current any more. Frankly, you just don't have much credibility in my eyes.
Well, the Linux vs Windows security argument goes back a long way. All the way to the early days of Linux, which back to the first big version of Windows: 3.1. 3.1 didn't really have any security to speak of. A Unix variant, just by virtue of having file permissions, was light years ahead in terms of security. For about the first decade of the existence of Linux, Microsoft quite evidently took security for granted in its operating systems. The fact that, for the longest time, autorun would run any executable an autorun.bat file told it to without prompting the user and without an easy option to disable it shows that. Since around XP SP2 or so, Microsoft has been getting its security act together more. I will certainly grant that, at the moment, Microsoft seems to pay attention to security in Windows as much as the Linux community pays attention to security in Linux. Right now, I couldn't, with any confidence, say that either is more secure than the other. We see security goofs from both Windows and Linux, but we no longer see the gaping, security-blind holes that Microsoft was formerly known for. Many of the people using Linux still remember the lousy security record Microsoft had in the old days. Some things form a persistent opinion that doesn't change easily.
As for Android, which you keep bringing up, it's a completely different beast than standard Linux. It uses a version of the Linux kernel, but it's not a typical distro. It's still pretty immature, and it suffers from the same problem that Microsoft used to (and many are sure that it still does): the notion that user convenience is more important than security. Android is still relatively immature and should improve with time.
I wonder, how do you expect anyone to take you seriously in a conversation if you never bother to address their points and keep pushing your own? The best you seem to be able to manage about the fact that all of your examples from Secunia (which you have some strange obsession with) were out of date and already fixed (most of them half a decade ago), is to remain silent on them. No mea culpa from you. No admission that you could have been mistaken. You posted them again and again and again even in the face of direct evidence (in many cases right in the linked page itself, or in its sub-pages) that they weren't valid any more, along with childish declarations that you'd "KICKED [my] ASS", or that half-decade advisories say I'm "FULL OF IT" or that I'm "crying like a 2 year old" or that "[I] can't do it" (regarding working around already fixed security holes), or that I'm "telling lies". You said all of those things, but you don't offer so much as an admission that you're mistaken. I've gotten into long, sometimes heated, discussions like this one before (although, frankly this one was only so long because you were apparently incapable of keeping track of which of your assertions had already been concretely disproven), and they usually actually end fairly amicably when people with differing viewpoints listen to what I have to say and I listen to what they have to say. That works with rational people. You haven't shown any sign of being a rational person. You just have some sort of bizarre anti-Linux agenda to push and you'll push it, deriding anyone who disagrees with you, and ignoring reality even when it's carefully shown to you.
Oh well. At least you've shown that you're capable of posting without all the bolding and writing in all caps and bizarre punctuation.
1st. Circular reasoning. You're claiming that Linux is worse because vendors don't pay as much attention to it because it's a smaller market because it's worse. In any case, Linux drivers for most things seem to be more than acceptable.
2nd. Games? Seriously? I like games, really, but it's not a convincing argument for which OS to use. Get a console. Oh, and also, that's the circular argument again. Game makers make games for Windows because Windows is the most popular (and also they enter into sweetheart deals with Microsoft in some cases) . So, if people use Windows because it has more games, then it's a self-fulfilling prophecy.
3rd. You're big on circular reasoning. As evidence for why Linux is worse because it has less marketshare, you present the fact that it has less marketshare. Brilliant, truly.
4th. "Open 'SORES'". Lovely. You haven't provided any meaningful comparison of bugs and vulnerabilities in Windows vs Linux. All you've done is present a link to a Secunia page (what is with you and Secunia?) that lists all kinds of advisories, including the three invalid ones you were touting in earlier posts. A list, by the way, that goes back to Linux kernel version 2.2, so it's hardly a valid comparison with just Windows 7. You would need to compare with all Windows versions in that time period. For that matter, you'd have to use some better methodology than just... Actually, you didn't use any methodology at all, you just made an unfounded statement and gave a link to a list of Secunia advisories for Linux. Also, if, as you claim, closed source is harder to exploit by hackers/crackers, then the bugs should be harder for third parties to find as well, hence fewer third party security advisories.
Your logic is invalid. You've sadly fallen back into your bizarre posting style. It's hard to take anything you say seriously when you apparently don't know how to mark a footnote with an asterisk properly.
As for your postscript, you fail to realize that most Windows users don't even actually know what Windows or an Operating System is, let alone what Linux is. It isn't dead last in their eyes because they're not even aware of anything else.
Read-only as a an example of security? Seriously? Any user of the system could change that with the attrib command. Read-only was only there so the absolutely clueless couldn't accidentally del things they shouldn't.
Additional security granularity from SELinux is nice, but was hardly necessary to have more security than Windows in the old days. Windows simply wasn't designed as a multi-user system from the start. It wasn't until Windows NT that it started to get real security, and those features didn't make it into mainstream windows until XP.
Linux isn't a "RIPOFF" of Unix. It is, as you state, a Unix system, descended from other Unix variants. That's not ripping off, that's just carrying the torch. Whether Linux has been killing off the other versions of Unix is an interesting question. I'd have to say that it's a big factor. The closed nature of many traditional Unix shops just couldn't compete with the open nature of Linux among the kind of people who prefer a Unix variant. The increasing complexity and expense of developing high-powered processors which has driven the desktop field pretty much entirely to Intel and AMD is a major factor as well. DEC, Sun, SGI and others all used to build their own hardware and provide their own Unix variants to go with their hardware. Now those days are gone, and those old school Unix variants are going with them.
Autorun from inserted media without warning is always a bad idea. Those Linux distros that do it hopefully learn their lesson fast. Years of it being a problem on Windows should have been all the lesson they needed. It's not an intrinsic Linux feature, fortunately.
I was thinking more of mainstream Windows than NT/2000. The fact that Microsoft saw security as a special extra feature for professionals only doesn't exactly make me think any better of their attitude towards security in that era.
The difference between the derision from the Linux side for Windows and the derision from the Windows side for Linux has always seemed to me to be how much from the Windows side actually came, through various avenues, from Microsoft itself. The dislike of Microsoft from many Linux users was well founded. Attitudes like yours towards Linux, I've never understood. No-one seems to be forcing Linux on you or the public at large, but the same can't be said for Windows. The security case against Microsoft has, however, traditionally been a pretty good one.
The autorun thing is quite shameful for those distros that implemented such features. It was especially shameful precisely because Windows had that gaping hole, that consistently caused major security issues over and over and over for years without doing anything about it. Nothing you can say now can change the fact that, in the past, Microsoft didn't have its security act together. A list of security breaches regarding Linux that you assembled wouldn't change it. For that matter, with your terrible record of checking your data, I'd be hard-pressed to pay attention to any list you've provided. I've spent way too much time in this thread doing your research for you while you make yourself look ridiculous deriding me over your incorrect information.
On to Android again. It doesn't matter if it has a Linux kernel, it's still not in the same family as a regular distro. Its security can't be compared to mainstream versions of Windows, as you try to do, any more than Windows Mobile or IOS can be compared to mainstream Windows or mainstream Linux Distros.
Finally, you smugly state, after I point out that you're incapable of admitting when you've made a mistake:
Plenty of that from you though here... a few times now in this conversation
Wow. It's absolutely incredible what an unabashed little troll you are. You actually think it's a badge of honor that you can't admit that you've made a mistake even when it's clearly proven. And you think that someone else having the maturity and basic decency to agree with you when you make a correct statement is somehow some sort of great victory for you? What kind of utter moron are you? I am more and more certain that you really do have some serious psychological problem.
Ah, of course, it's a huge mistake of mine not to realize that you're the type who likes to paint the bullseye around the hole after firing the shot. Obviously you were never talking about any other kind. Sure I believe you. After all, you've been so honest so far.
I hate to break it to you, but the windows NT family wasn't mainstream until Windows XP. I ran NT and 2000, and they never had the driver support to be mainstream versions of windows. Before XP, the previous mainstream version of Windows was 98 (I'm pretending ME never happened in the same way I pretend Highlander 2 never happened). The vast majority of Windows users had as little idea of the existence of NT and 2000 as they did of the existence of Linux.
File attributes like read-only are only security features if anyone using the system can't write to the file at will, otherwise they're just file attributes. When I said "file permissions", I imagined you'd understand that the concept of permission would actually have to be involved. Obviously I was wrong. I seem to be wrong every time I assume you'll understand something that should be obvious. Also, Linux didn't steal the concept of ACLs from windows. Windows ACLs are just an implementation of ideas Butler Lambert put forth in the 70's. By and large, there's nothing new under the sun in the computing world, no matter who wants to take credit for "inventing" what.
Autorun again (and you repeating yourself). You don't address the fact that it only affected certain distros, not the core Linux OS itself. Also, the Linux distros it affected actually cleaned up their act. Windows allowed blind autorun with no warning for years and years.
Yes, Windows NT was designed with a multi-user model in mind. Your ex-post facto declaration that it's the only version of windows you've been talking about rings a bit hollow to me. You might have made some indication that's what you meant at some point before this. The fact that you didn't makes this look like backpedalling on your part.
As for my supposed "mistakes" continuing. Just saying it doesn't make it so. Your style of self-involved rhetoric is pretty transparent. The fact that you can't see that is just plain sad. Just as is your habit of figuratively covering your ears and humming when someone says something that disproves one of your statements.
As for who cares about the past... _YOU_ care about the past. Or at least, you cared about the past up until the point that you decided to change your position, yet again, but pretend it had been your position all along. You are the one who was complaining about supposed FUD from Linux users and wrote: "For years here I kept reading from people that Linux is secure and earlier than 2005 to the present day."
You repeat your list of compromised Linux systems again. How did we get on this anyway? I've never claimed that Linux has some magical perfect security. I've repeatedly pointed out also that security is an end to end process. It's not just the OS. Setups running Linux, Windows, FreeBSD, other Unix variants, OS X, whatever, have all been breached. Your slapdash, anecdotal methodology doesn't prove anything. Your bizarre claim that security breaches should "never happen", despite the obvious reality that systems running all kinds of operating systems have been breached. Just look at Stuxnet, which ended up affecting a load of systems that, by rights, should have been completely shielded from the Internet.
You go on and claim that I said that autorun issues were "UNIQUE TO WINDOWS" you lying, worthless piece of dirt. I've listened to you spew a lot of vileness in this pointless thread, but inventing quotes from me takes the cake. Tell me you puling, vomitous mass, just where did I say that? Will you actually admit that you just made it up, or can you prove it somehow? I think you're just a worthless trolling _LIAR_. I think you're incapable of understanding the most basic concepts and you overcompensate by constantly claiming victory even when there's no competition. Are you
Ok. Moron, try to follow, please?
1st. You state that vendors "cater to [Windows] immensely" and less to Linux because Windows is "running the show" and therefore they don't support Linux to the same degree. But you were providing this as an example of how Linux is supposedly worse than Windows. You specifically said "Linux is in last place because it's not as good as Windows", then I asked in what ways is Linux worse than Windows and you provided these four points. I'm truly confused as to how you can't understand that this first example is circular reasoning. It basically boils down to: "Linux is in last place because it's worse than Windows because it's in last place". That's circular.
We can disagree on drivers plenty, I'm sure. One of us might have had good experiences where the other has had bad experiences and so forth. I've had some truly horrendous driver experiences on Windows, some of which were far worse than any experience I've had in Windows. I remember waiting for some of my hardware to be supported in NT 4.0. It never was, but Linux worked with it right out of the box (well, sleeve, I was ordering from Cheapbytes back in those days if I recall correctly).
2nd. It is circular logic, not just logic. You're just listing another secondary effect (the same one as your first example, really) of being a less prolific OS. It is true, but it's not a way that Linux is somehow intrinsically worse than Windows, which is what you claimed to be providing. The fact is, Linux can play any of those games if they're ported to Linux. The fact that most of them haven't been ported isn't some intrinsic property of Linux
3rd. I can't believe you're actually defending this one. At least the first two examples had an intermediate step in the circular logic chain. This one was just pure circular logic. You can't claim that there are intrinsic reasons for something to have low marketshare, then quote an externality, like the fact that it has low marketshare as one of those intrinsic reasons. You just can't. A five year old would understand that you can't. It's a giant logical fallacy. How can you be so free of the ravages of intellect that you can't see that? Or is it that you can see that, but you choose not to because you're a liar?
Also, what is it about you that gives you such a huge ego? The fact that you're not running Linux is supposed to prove that it's no good. Are you secretly some multiple nobel prize winning superspy astronaut cowboy? What shining qualities do you posses that we should all know to line up behind you and do exactly as you do?
4th. "Meaningful comparison". Not anecdotes. "Meaningful comparison". You've consistently proven yourself incapable of any sort of actual analysis. You know that you're not going to convince me posting the same tired old links. Why even bother? You claimed in your 4th example of how much worse Linux supposedly is than Windows that it has some significantly larger portion of security flaws than Windows, but you still haven't provided any real analysis to support your opinion. That leads me to believe that your opinion is unfounded.
Facts, even when you capitalize and bold the word, do not equal logic. I don't want to have to teach you what logic is. For example, simply stating that Linux has a lower marketshare than Windows doesn't prove anything intrinsic about Linux. That would only be the case if certain bizarre theories about the invisible hand making markets infallible were true. Oh. I just realized. You're probably one of those idiots who feels awe in the presence of simple emergent properties and actually believes that about economic markets. Sigh. Well, anyway, it's pretty obvious from your posts that you couldn't string together a logical argument to save your life.
I know what an Ad Hominem attack is. My comments to you are certainly becoming more personally abusive. It's sort of hard not to considering how rude you've been. Despite that, commenting on your posting style is not an Ad Hominem attack. The content of your pos
Mainstream versions of Windows is a concept you can't seem to grasp, apparently.
Then you repeat yourself again, not even actually trying to respond to anything actually from the post you're replying to. I assume you have lots more spamtroll posts to copy and paste together.
Good grief. You can't even get together the energy to post a reply that has anything at all to do with the post you're replying to. Sad.
My frustration is mainly with you. I am a little frustrated with myself for having bothered to reply to you at all. Mostly, though, I'm frustrated with dealing with a troll who's obviously barely capable of even reading the other person's post before replying with a formulaic post. Also, whatever you may think in your warped mind, your inability to admit you made a mistake when it's clearly pointed out to you isn't some sort of victory. It's pathetic.
That's pretty much all I have to say. You say nothing new or interesting in this post, nor do you in the post you linked to. You're not worth any detailed reply.
Come on. 2000 was never particularly widely used. Only in business environments. The driver support was lacking for too much consumer-level hardware, for one thing. And of course, as you pointed out, games are important to mainstream acceptance, and 2000 didn't have the support from games companies. NT was even less mainstream. XP was the first mainstream NT derivative.
Anyway. I was interested in whether or not you were actually a career troll, or if it was just this one article you were posting on and you were having a bad week or something. So, I looked for you via google. It seems that you're pretty much a career troll. At least, it looks to me like just about everyone, just about everywhere you post thinks so. You can call this an Ad Hominem attack if you want, but an Ad Hominem attack isn't always a logical fallacy. When it bears on your character and your actual ability to engage in rational debate it's perfectly valid. An example would be someone who insists that the moon landings were faked because rocketry is impossible and refuses to even look at the mountain of evidence that thousands of rockets have been launched or to look through a telescope at the artificial satellites. In such a case, calling the person crazy might technically be an Ad Hominem attack, but it's not a logical fallacy.
So, anyway, some great links related to you:
This one about a situation where you threatened to sue over a piece of software of yours being identified as malware. It seems to me you could have worked with them to resolve the issue amicably, but you couldn't help yourself.
This insane thread that you posted to for years. My favorite quote from it is: "Great Scott! APK's numerous and highly repetitious responses read like examples from a freshman textbook on logical fallacy and deceptive rhetoric." I think that poster had you pegged perfectly.
This exchange which was absolutely hilarious. That one really was worth a LOL!
This has a list of some of your ars technica posts. You seem to have been hated there right from the start for good reason. The fact that you seem to have believed that C++ was dying, but that Delphi was the future is hilarious. It's also really funny when you post under a different alias pretending to be some random person supporting you. It's so blatantly obvious that it's you, even when you use a handle like Cybordeath. I'm a bit disturbed by some of the racism, homophobia and misogyny in some of your posts, by the way. Your temper seems to have calmed a bit over the years. Your fundamental troll nature seems to be coming through even more as you age, however.
So, basically, you're a very well known troll, which is an accomplishment, I suppose. Getting sucked into long flame wars with you doesn't seem wise, and it looks like any discussion with you pretty much has to turn into a flame war.
Of course Linux isn't a mainstream OS on the desktop. I never claimed anything remotely like that. Your statement about Linux doesn't change the fact that the NT series wasn't mainstream until XP.
What do my accomplishments in the world have to do with anything we've been talking about? Your creepily obsessive need to compare yourself favorably to everyone is something that everyone who has read any of your trolling can spot easily. You create extra accounts to post from in support of yourself to talk about how great you are and how awful your detractors are. That's just pathetic. Now you feel that, because I've discovered just what you are, you have to try to make me out to be something lesser than your self-publicized greatness. You're crazy. Actually, I've begun to suspect that you might have some sort of medication issue. I've seen people act kind of like you in reaction to drugs like Paxil. Although, maybe some sort of amphetamine makes a better explanation.
Anyway, I am quite a bit younger than you, so I don't have as much time in the field. I don't have any big public accomplishments to point to. I've helped build two tech startups and been a jack of all trades. My last job title at the most recent one is senior network adminstrator (the senior in the title wasn't really deserved, it was just because when we started I was the only network administrator). The actual duties of that job are everything from network administration to client support to light application programming to lugging racks around and slicing my fingers up on poorly finished edges. I've made very minor contributions to a few free software projects (mostly in documentation) and that's about it. I'm not in academia. I don't have a big list of publications. Like most people, I do my job as well as I can, and work to learn new things and improve myself.
You don't seem to understand the logical paradox in crowing about being older than me, while simultaneously lambasting me for supposedly being less accomplished. You see, if you're mocking me for being in diapers when you were accomplishing supposed great things, that means you're comparing yourself against a baby and saying that you're terrific because you can do more than a baby. You demand that I show that I've done more than you, earlier than you. That's basically you setting the bar high for me and low for you. If the age difference between us is that big (from what I could tell, it's at least 15 years), then your list of accomplishments below, which starts in 1997, starts when you were at the very least a year or two older than I am now and probably more. That just underscores how crazy your argument is.
As for Ozymandias, I'm guessing that you haven't actually read the poem or you wouldn't be using that quote here. Here is the wikipedia page for the poem, which has a copy of it on the right. If you read the poem, it does actually describe you in many ways. The sneer on the face of the broken statue. The arrogant self-aggrandizement delivered oblivious to the fact that all the reader can see of the claimed great works are a barren wasteland. So, the quote works well for you, but I don't think that's how you intended it. The words themselves are a wonderful example of irony. Ozymandias intends for the reader to despair because they will never achieve his state of glory and power but, instead, if the reader despairs it's because they realize that even their own glory will wither and fade and be forgotten.
The windows NT magazine article you mention seems to be available online here. They don't mention you at all, just the software. They say it has serious bugs that locked up a system in one case so it could only be repaired with another copy of NT installed on a different partition. They also do say that, in some circumstances, it increased disk performance by about 10%, although it could also
Good grief. Could you stop splitting the thread by multi-posting already?! I know you have trouble restraining yourself from copy and paste spam, but please exert yourself.
LOL! Quite literally. Your two links have nothing to do with that Thor guy, whose last name you can't get right. I also find it hilarious that you put in that bit about someone supposedly impersonating you and, right in it, claim that two of your detractors are the same person, when the section you've copied and pasted is obviously from some previous post where you were pretending to be a second person. The way you suddenly drop into referring to yourself in the third person kind of gives it away. Were you posting as Cybordeath at the time? Or some other alias?
My sources are virtually every discussion thread you've posted in pretty much ever. Do you think there's just some huge conspiracy against you? Isn't it just possible that all these people hate you because you barge in, blaring loudly, and act like a total jerk. And not just like the typical forum jerks that we end up thinking of as eccentric members of the family. You're more like the cloudcuckooland maniac living in the creepy abandoned looking house up the street who routinely runs around shouting and banging trash can lids at 2:00 am, then gets territorial and fires his shotgun at people who come around to complain the next day. Something like that anyway.
Seriously, why do _you_ think nearly everyone on the Internet who knows you hates you and even those who think of you as a friend at first distance themselves more and more as time goes on? Think about this. Have you ever truly apologized for anything, ever? You strike me as the sort who is virtually incapable of it and, even if you're forced to somehow, you frame it in such a way that it's not really an apology such as: "I'm sorry that you think that..."
P.S. You can't just declare victory and have it be so. You sound like a small child when you do that.
The 15 year age gap is based on guesswork based on things you've said here and there about when you graduated college. But you completely failed to address why it is that you demand that I have more public accomplishments than you, and that they all be at a younger age than the earliest accomplishment on your list. Why is that a prerequisite to talk to you?
I should also note that I've developed applications as well, but they've been internal things for companies I've worked for, not packaged software sold in stores. Most programmers work is never seen by the public at all as most software written is for internal use. Having software you worked on being reviewed by a magazine is hardly the gold standard for what makes a good programmer.
Could you elaborate more on what exactly you did for this Superdisk-NT software? You mention increasing the speed of the software 40%. I assume you mean you increased the speed of the core functionality of the software, rather than just decreasing the programs loading time or something like that. What details can you give on how that 40% speed increase is calculated. Does it mean making the program operate the same, but use 40% less CPU time, or does it mean adding 40% to the average speed boost that the program grants to disk access?
I've sent an e-mail to superspeed's pr dept to try to reach Eric Dickman since you didn't provide any contact info. I imagine it will take time to get a reply. Can you tell me what year he offered you a job. Was it 2003 2003 or 1999. I sometimes get confused about the precise year of things that happened years ago as well.
You wrote:
LEARN TO READ "ne'er-do-well":
"For Ultradefrag64, it looks like you contributed an icon" - by tragedy (27079) on Saturday November 12, @03:14AM (#38033346)
http://ultradefrag.sourceforge.net/handbook/Credits.html
or here
http://sourceforge.net/tracker/?func=detail&aid=2993462&group_id=199532&atid=969873
That first link, in regards to you, says only:
and the second link is to you contributing an icon, which wasn't accepted for the program as far as I can tell. Since what I wrote (and you clipped off halfway) was actually:
For Ultradefrag64, it looks like you contributed an icon that does not seem to have been accepted (it was a pretty nice icon, but might have been considered too derivative of other Windows icons, or it might just not have scaled down well to their size requirement) and suggested that they use a particular Windows API. In the credits, they thanked you for your suggestions. It was nice of you to contribute, but it's far from a towering achievement.
Unless there's some additional thing you did for that project that's contained in that link, then it looks like I'm not the one who needs to learn how to read.
As for my question about what was in those other magazine articles you quoted, I'm not saying you're lying about it, I'm saying that I don't have any access to those articles, so I don't know what's in them. So, why don't you just tell me? What applications of yours did they talk about in those magazines and what did they say (no need to quote in full, just a general overview).
Regarding your postscript. Are you trying to imply that I create additional accounts to jump into the conversation, pretending to be someone else, and support myself? Where exactly are you getting any indication I do this? Your imagination
Ok, this is truly sad. Not only did you post four replies to my reply, but you're trying to pretend that you're not Alexander Peter Kowalski here, but rather some other AC posting in support of him. You do understand that we're posting in a thread attached to an article that's long off the Slashdot front page. That means that it's very unlikely anyone is reading this and so very unlikely anyone else would comment. If anyone is reading this, by all means, chime in. Not that there's anything to chime in about. APK has clearly had issues for a long time, and I'm obviously a bit crazy myself to keep replying to him.
I suppose it's possible that it's possible that APK types these messages, but then has his cat press the submit button for him so that, in his eyes, he's not lying when he claims that it's not him posting. Maybe he has a family member do it. I find it a bit unlikely he'd have any children around to do it for him, though, but maybe a sibling or something.
And yes, I do post "multiple times", just not multiple times in reply to the same post, unless I have something to add that I forgot the first time, which is pretty rare. Also, when I do that, I generally do it as a reply to my own post, rather than another reply to the parent post. That way, with the way Slashdot currently handles threading, it's potentially less confusing to follow. I'm pretty certain I haven't double replied to any of your posts on this thread. If you look at each of my posts and click on "parent" at the bottom, you'll see that it jumps to one of your posts. To be fair to you, the flattened threading that Slashdot presents after the thread has gotten too deep can make it confusing to realize this.
The rest of your post isn't saying anything new. It's just the same, tired line from you.
Wow, suddenly two APK supporters in the same thread. Using his sentence style, bizarre quotes around words that have no need for quotes and tired old rhetoric. Wait a second... Could it be. Why it's Alexander Kowalski again, pretending to be a fan of himself.
Wow, a "THIRD" (see what I did there? Capitalized, bolded and in quotes) APK supporter... Wait a minute, it's just APK again.
Get a grip. This thread has been off-topic since you started it. You didn't have anything real to say about UEFI, you just came in to spam the place with some links to out of date Secunia advisories about Linux.
You also failed to omit that Jeremy Reimer and his friend Jay Little pursued me to troll me at Windows IT Pro magazine's forums, and got THEIR ASSES KICKED on the fact that Exchange Servers can be "unfrozen" by memory optimizers
"Failed to omit" would mean that I included it, which I didn't. I don't even know if it's true, and your view on reality has proven to be just a little skewed. A link would be nice. By the way, tech-oriented forums can be a bit of a small world. I know you probably think that the world revolves around you and that anyone you run into somewhere other than you expect them must be stalking you, but it is quite possible, and probable, that they didn't pursue you, but merely saw you posting there too. I don't know if you've noticed, but your posts are all over the place. You post a lot. Really a lot.
Once again, we also see that you believe that everyone who doesn't like you is in cahoots. It's clearly more complicated than that. You're a uniter, not a divider. You bring people together harmony. Oh, and in mutual dislike of you.
As for someone being banned from Ars Technica for his reaction to you, I can see it. You bring out the worst in people. People who know me would be surprised at how nasty I've gotten on this thread. Actually, I've noticed that I've been in a foul mood all week. I think you might have something to do with that. I really wish this thread would end. The problem is, I can't just stop posting. I think I naturally find it rude not to reply to someone when they take the time and effort to reply to you. In this case, I think it's turned into a pathology.
On Thor SCHMUCK?
Ha - (unlike other sources) refused to remove a program of mine (that was down graded to ZERO THREAT LEVELS later mind you by CA) from a list he kept!
I found out later HE IS THE ONE WHO SUBMITTED IT TO CA, & he could not prove any malicious intent in its code (funny CA didn't list PING, because it could issue a "ping of death" OR Spybot Search & Destroy which alters a HOSTS file (a criteria of theirs no less)).
Yeah, a security researcher erring on the side of caution, what a shock. You do realize that if ping were a new utility that suddenly came out, rather than a decades old utility, it probably would be branded a threat by security researchers until they could verify it. The kinds of things that system utilities do are often quite similar to the kinds of things security threats do. What happened to your utility happens all the time. Usually working in good faith with the people doing the research clears things up quickly. Your over the top behaviour, however, surely delayed things. For that matter, your behaviour probably threw up a bunch of red flags.
Incidentally, trying to implicate someone very distant from the CEO of a company in the CEOs scandal just because you consider them a personal enemy is sad.
You've never accomplished anything in the computer sciences of any decent note, and you NEVER will (or you would have by now), but I have...
But, assuming your accomplishments are as grand as you make them out to be (you haven't really listed anything that isn't pretty much typical work for some sectors of the IT field), you haven't actually listed anything from more than 15 years ago. If my estimate of you being 15 years older than me seems to be more or less correct. So, that means that I haven't yet reached the age where you started your glorious career of accomplishment. So, therefore, isn't there hope for poor little me to someday measure up to your glory and magnificence? ;)
Since you asked specifically on this?
I also increased the speed and efficiency of SuperCache-NT, & applied ideas for database work on SuperDisk-NT, since you asked, that led to how well EEC Systems/SuperSpeed.com did @ Microsoft Tech-Ed 2 yrs. in a row in the hardest category there - SQLServer Performance Enhancement (both myself & John Enck of Windows IT Pro magazine (then Windows NT mag) "hit upon" this idea back in the mid 1990's & extolled it on EEC Systems' website in fact)...
Ok. You increased the speed and efficiency of SuperCache-NT, but specifically how? You have to understand that, for a disk-caching program whose goal is to speed up the system, saying that you increased the speed of the software is ambiguous. Sure, it was a long time ago, but you have to remember some details. Now, you've expanded a little on your original description by saying that you "applied ideas for database work" to the software, but that's still pretty ambiguous. What ideas did you apply? It's all sounding very generic
That's examples of things I was doing while you were still in diapers, and only a fraction of what I could put out here mind you... whereas you? You have ZERO... lol!
I think you have your timeline wrong. If I am about 15 years older than you, then I was well out of diapers when that software came out. Also, the opinions of cantankerous old men everywhere aside, being born before someone else isn't an accomplishment.
(By the way - I never EVER posted @ Arstechnica as "Cybordeath", no need to do that much...
Oh please. Cybordeath shows up right after you are banned and starts posting specifically about you and your disputes. His posting style is altered from yours without all the bolding and capitalizing and not so much stuff in quotes and not as much extra punctuation, etc., but everything else about the way he expresses himself is extremely similar to you. There's pretty much universal concensus on the forum that Cybordeath is you. It seems pretty unlikely that you'd have such a rabid fan, obsessed with carrying on your feuds who didn't chime in before you were banned, but signs on right after. Sorry Clark Kent, the glasses aren't fooling anyone.
Also, you've posted a few times in this thread in support of yourself, while pretending to be someone else, and you've followed me to another thread to post multiple times from a small comment I made and not signed your posts there. Based on that evidence, I'd have to say that my (and everyone else's) theory on the identity of Cybordeath is probably pretty solid.
P.S.=> Please - Give us a break, you f'ing "ne'er-do-well" talker with not a DAMN THING to show for yourself by way of comparison to just a tiny FRACTION of what I could put out... apk
Give what a break? Replying to you? I wish I could. It wastes too much time. But it's somehow addicting. I can't help myself. Every time you say something ridiculous, I just have to try to get you to understand the real world. I know you never will, but I just can't help myself.
Speak for yourself, writing books in YOUR MULITIPLE OFF TOPIC ILLOGICAL ADHOMINEM ATTACK BASED so-called "replies" of yours, lol!
You write books practically, and in MULTIPLE replies (off topic illogical adhominem attack based ones no less), so please: "Pot calling the kettle black" now, are we? LOL!
I do write fairly long posts sometimes. In this thread, it's mostly because I'm actually trying to address most of the things said in the parent post. I don't, however, write multiple replies to a single post (unless I need to make a correction or addition, in which case I clearly state that) and I haven't anywhere in this entire thread. It may appear that way if you don't know how Slashdot displays threads. Basically, the thread view flattens out after a certain number of posts in the thread and becomes a flattened view and it can become hard to tell what follows what. You can actually tell, however, you just need to do the legwork. You can open each of my posts in this thread directly, then hit the parent link at the bottom and see that each one is a child of one of your posts.
You end up saying nothing on topic, just more evasions of proving things you are asked to (which you demanded of myself mind you and I provided it, because i have those things, you do not and you never will)
The only thing on topic in this article is discussion of the possible implications of certain features in UEFI to the ability of end-users to boot their OS of choice. When you first posted, you were essentially off topic. You made a token mention of the issue, but only so that you could spam a bunch of Secunia links supposedly proving that Linux was insecure. I spent an unreasonable amount of time proving to you that each and every one of those security vulnerabilities was invalid, mostly because you couldn't be bothered to spend the time actually reading the pages you were linking to. The rest of this thread has been even more pointless. I eventually started to wonder just how crazy you were and searched around for you and discovered that you're infamous. You've been banned practically everywhere that they have a system for it and even people who don't hate you only seem to be able to not hate you by distancing themselves. I hope for your sake that your personality affliction only affects your online correspondence and doesn't extend to your real-life, face to face behaviour.
Your insistence that I demanded that you list your resume is bizarre. I never demanded that of you. Having seen it doesn't change my opinion of you. That opinion was formed by your behaviour. You could be a janitor or a rocket surgeon for all I care and I'd still have the same opinion of you because of your actions.
You make me laugh with your illogical off topic adhominem attacks in some attempt to try to "discredit me" but finding your sources are invalid and CRIMINAL even (CA, and Jeremy Reimer/Jay Little/Arstechnica, to name a couple I shot down easily
Alexander, you discredit yourself. Again, and again, and again, and again. In this thread on Slashdot and in just about everything else I can find anywhere that you've posted on. My "sources" aren't any particular person. Even when I linked to that blog post about your application being incorrectly blacklisted as malware and you threatening to sue, it was specifically your behaviour there I was showing. On all those links, pretty much everyone could see how awful you were being. In some of them, people who actually considered you a friend wondered aloud why you were acting that way. Why do all of those people have the same opinion of you, even when seeing you post for the first time? Are all of those people (and non-people since you seem to be also listing an entire company and a website) "invalid and CRIMINAL"?
What's with the constant claims of having achieved some sort of victory? It seems like just about every time you reply to anything you have have to post that you "sh
Uh yeah. Talking about yourself in the third person like that and referring to yourself as a plural doesn't strike me as too healthy.
Pure copy and paste reply. Nothing to see here.
Your first link consists of you posting an insane number of off-topic posts to the comments section of an article about memory optimizers. Something in there about someone pretending to be someone else who had endorsed one your products withdrawing his endorsment in a forum. An actual link to the the post where they impersonated him would be preferable. Or was that link actually it and you expect me to slog through 435 pages of comments, mostly by you? I think I'll pass, thanks.
Your second link is about how the co-founder of CA systems was apparently embezzling. Great. Was he one of your enemies too? If not, what does that article have to do with anything? How does this supposedly discredit your actual enemy? Also, why should I care? You don't have just a few people who despise you with cause. It seems like nearly everyone you have any interaction with ends up that way with enough exposure.
Regarding the rest of your post... I didn't demand any of that stuff from you to begin with, I just questioned the parts that were questionable after you posted them. The rest of your nonsense we've already discussed.
Still not a very deep explanation of what you did for EEC Systems software. "flexible parameterization of drivers utilized in their initialization" doesn't actually say anything very specific. But whatever.
As for putting frequently accessed data into ramdisks, of course it works. It's been done for years. If you have enough RAM and you can identify what you should spend it on. It's not as if you invented the idea. Are you saying that the work you did was in identifying which data to cache to ram to speed up database access?
As for the older/younger thing. No, my bad, that was a typo. Actually, I started typing "If you are about 15 years older than me,", then thought better of how to structure the sentence. I should have erased and rewritten, rather than just changing two words. In any case, that part from my post should have read:
I think you have your timeline wrong. If I am about 15 years younger than you, then I was well out of diapers when that software came out. Also, the opinions of cantankerous old men everywhere aside, being born before someone else isn't an accomplishment.
As for Arstechnica, and pretty much every forum I could find where you've posted, even if you had a small number of allies (and pretty much every ally still seemed to want to distance themselves from you), seemed to be overwhelmingly against you. In this thread, you talk about how you were kicked from majorgeeks.com despite the fact that a part owner was an ex-friend of yours. Then you mention how you were banned from ntcompatible.com by another friend (unless it was the same friend, you were unclear). I was amazed to actually see the word "sorry" come from you in that post and an admission you actually made a mistake. I didn't think you were capable of it. Kudos to you for that. Still, you ought to consider the possibility that maybe, just maybe, the reason so many people turn on you has something to do with the way you act.
As I've stated before, we seem to be peers. I have nothing to prove to you in order to be permitted to speak. And no, I'm not your senior in age. There was a typo, but the very next sentence after the one with the error should make it clear that was a typo.
1) Why do I need to? I still don't understand how we reached the point where I have to jump through that hoop for you. It's ridiculous.
2) I've said it before and I'll say it again, no OS and no security setup is invincible. I never made any claims about the security superiority of Linux over Windows (except to note that security was not historically a high priority for Microsoft in its mainstream Operating Systems). You seem to be projecting arguments you've had with other people onto me.
3) Never been banned from any online forum, sorry. I'm not always prepared to hand out my real name because there are a lot of kooks out there. As for you not hiding behind assumed guises. HA! You've already done it several times in this thread. You're crazy if you think that people can't see through it when you post and pretend to be some other person defending you. Cybordeath was obviously you, for example. When you post short answers without your usual structure, it's a little harder to spot you right away, even when you keep it short, but it's obviously you in this post. Where you stalked me to another thread to post an anonymous, venomous reply to one of my posts. Sad.
4) To be very clear. You did not think of it first, no need to trust me on this. You would have to be grade A, certifiably insane to think that you were the first person to think of such an obvious idea, unless you're really a lot, lot older than I thought. When the feature first appeared in Microsoft SQL Server is not the benchmark for when the idea was first developed.
5) You certainly strongly implied that you planned to sue. You definitely said you'd bring lawyers into it. I've seen e-mail exchanges with you people have put online where you pull the same kind of nonsense.
Uh, yeah. But you're still not addressing the fact that, in the great-grandparent post, you're either pretending to be someone else, or you're talking about yourself in the third person and referring to yourself as more than one person.
Wow, so not only do you post a copy and paste reply to me, but when I remark that you did, you post a reply with a link to that same copy and pasted reply? Then most of the post is a copy and paste of your tired, old line about Linux that's already been addressed multiple times. Sad, sad, sad.
What's the point of this link? If it's to try to focus the thread that you've split back into one thread, then I applaud you for that.
Uh yeah. More APK crazy. Seriously, you had the right idea trying to at least refocus the thread. Don't reply to this message. For the sake of coherency I'll try not to reply to any reply to this one and only reply to the current two main branches of this tree.
Errr, yeah, I'm running from the post in that link. Got it. I mean, I replied to it late last night in this post, but that doesn't mean anything. I'm just running. Uh huh. Just like my so called "sources" were "shot down in flames". Riiight. Since my sources are pretty much every forum you've ever posted to, they wouldn't be discredited just by a few rebuttals from you, even if those rebuttals were rational rather than being based on pure crazy.
Also, once again, if I was in diapers while you were out achieving adult accomplishments, then you realize that what you're doing is equivalent to mocking a baby for not being able to do the things an adult can. I can picture you doing that, actually. You, standing there, yelling at a baby in crib that he's not as good as you and that you've shot all his arguments down in flames and demanding that he show a list of publications that he's been mentioned in. You really do strike me as being possibly that crazy.
Take your meds "CaPTaiN-PaRaNoiA"
(I saw that somebody called you paranoid in another post of yours via your post history today & it truly made me laugh)
Uh, yeah. That was you Alexander. Watching you pretend it wasn't is hilarious.
LMAO, especially how you're accusing myself of being others who are busting on you and your contradictions, especially about LONG posts of yours & how you "recorded" our post times here http://slashdot.org/comments.pl?sid=2517968&cid=38045988 but noted them in that thread, completely NOT related to this one!
Yeah. Not related. Except that the AC posting there was obviously you, and amazingly posted at the exact same times you were on Slashdot replying to me. You're deranged if you think you're not completely obvious when you do that.
Yes, it is TRULY hilarious!
Plus - your "projecting" on things you obviously do DO yourself? Please... dead give away that, accusing myself of doing what you must do yourself!
I post under a psuedonym partly because there are crazies out there like you that I wouldn't want to give my real name to, but I have principles which you seem to lack. I don't post as multiple people to support myself. How do I "obviously" do it myself? Is this just some sort of ridiculous schoolyard rules along the lines of "he who smelt it dealt it"?
* Clue/New NEWS/NewsFlash - not everyone posting here on /. is myself you know!
Of course. It's just the ones that are obviously you that are you. I mean, it's not as if you haven't, in this thread, posted a few unsigned AC comments pretending to be a third party, then switched back to replying as you. Moron.
SEEING YOU RUN LIKE A WHIPPED DOG WITH HIS TAIL BETWEEN HIS LEGS FROM THIS POSTS' QUESTIONS THOUGH?
http://slashdot.org/comments.pl?sid=2506468&cid=38045106
* Priceless - Absolutely priceless, lol... & especially after all of your NUMEROUS off-topic illogical adhominem attacks you directed MY WAY here in this very exchange...
Riiight. Because I didn't reply to that here, you buffoon.
1) I saw fit to say that a post of you looked like an automatically generated troll. Then, when you made it clear you were actually a human, I responded to the three links you were posting at the time which you challenged anyone to show were incorrect. I showed that all of the security exploits in those posts were fixed. Mostly long, long ago. I never challenged you to put up your resume or claimed that mine was somehow superior. That's just your personal fetish. You must have an extreme inferiority complex to need to overcompensate so much.
2) Blah, blah. Same old, same old. Ridiculous claim that compromise of the kernel.org website might have compromised the kernel source itself as if it's not possible to check.
3) I simply haven't been banned from any web-based forums, moderated Usenet newsgroups, etc.That sort of thing generally only happens to a small minority of people. Perhaps I'm just not as adventurous as you. I'm certainly not as prolific a poster as you.
As for you not having posted pretending to be someone else on this thread, what about this post where you pretend to be some third party who's just a really big fan of APK or something. I reply to say that it's you, then you reply, still pretending not to be you, then I reply again, then you reply again, but this time you sign as yourself. Duh. Pretty obvious.
"You're crazy if you think that people can't see through it when you post and pretend to be some other person defending you." - by tragedy (27079) on Monday November 14, @01:24AM (#38045756)
You keep using "crazy/insane" etc./et al - you can stop projecting now, & please - see the bolded statement of mine above, lol, ok? Thank you.
Before you call others insane/crazy etc. online? Be aware that without a formal examination in a professional environs done by a PhD in Psychiatric sciences with a license to practice, you are indeed, libeling myself... & you say you have NEVER BEEN BANNED? Somehow, based on your reprehensible behavior, I doubt that.
---
Psychiatrists are MDs, psychologists are the ones with PHDs. As for libel, expressing an opinion that someone is crazy isn't libel, especially with a conditional such as "if you think that". Not that I don't think you have a psychological disorder. At the very least you seem to have some sort of Narcissistic Personality Disorder.
"Cybordeath was obviously you, for example. " - by tragedy (27079) on Monday November 14, @01:24AM (#38045756)
Again, do you have PROOF of that? Again, more folks than myself post on forums, and see the above (about your meds please, thanks, lol).
---
Proof? The language, form and content of Cybordeath's posts compared to yours is pretty good proof. Answer this: why would Cybordeath sign up right after you were banned to defend you and vilify your enemies and carry on your feuds? What possible motivation would someone who isn't you have to be so obsessed with you and your activities on that forum to the exclusion of all else? Everyone knew it was you. You can't pretend your way out of it.
4)
"4) To be very clear. You did not think of it first, no need to trust me on this." - by tragedy (27079) on Monday November 14, @01:24AM (#38045756)
Did I say I did? However, I have to say I haven't seen it done before myself because ramdisk/ramdrive software for Windows wasn't around that would do UNLIMITED SIZED ramdisks before the EEC Systems SuperDisk-NT came about... at least not afaik, but later others did come out (but lacked data mirroring back to state keeping files on HDD etc.)
I suppose YOU did though... right?
I'm not clear on this one since you didn't sign it. Is this you pretending to not be you, yet posting a circular link back to the grandparent post, or did you just forget to sign?
No stalking, although I did do some information gathering once we were already deep into our discussion and it became very clear there was something very wrong with him. Stalking him would be looking around for other places he's posted, then posting anonymously to rant about goings on in the original thread. Like you're doing.
Calling APK crazy is not libel, it's an opinion. A very, very well founded opinion. Also, psychiatrists have an MD, not a PHD.
Me being older than APK (you) was a typo, I started typing that you were older than me, but then I inverted the sentence to say instead, that I was younger than you, but I accidentally left the word older. I explained this in this post, which you didn't reply to. That's actually pretty bizarre for you.
Ok. So you've posted the same copy and pasted reply here, here, here, here, here and here. Both to threads you've been signing in as APK, and those where you were pretending to be some random AC with a grudge against me and a massive admiration for you and sympathy for your goals. Thankfully, this seems to cap off this mess. I'm posting this reply (also copy and pasted) to each of those posts to focus things again. Just in case you feel you need to post again, no need to carry on each of these frayed ends, just reply to this post.
Ok. So you've posted the same copy and pasted reply here, here, here, here, here and here. Both to threads you've been signing in as APK, and those where you were pretending to be some random AC with a grudge against me and a massive admiration for you and sympathy for your goals. Thankfully, this seems to cap off this mess. I'm posting this reply (also copy and pasted) to each of those posts to focus things again. Just in case you feel you need to post again, no need to carry on each of these frayed ends, just reply to this post.
Ok. So you've posted the same copy and pasted reply here, here, here, here, here and here. Both to threads you've been signing in as APK, and those where you were pretending to be some random AC with a grudge against me and a massive admiration for you and sympathy for your goals. Thankfully, this seems to cap off this mess. I'm posting this reply (also copy and pasted) to each of those posts to focus things again. Just in case you feel you need to post again, no need to carry on each of these frayed ends, just reply to this post.
Ok. So you've posted the same copy and pasted reply here, here, here, here, here and here. Both to threads you've been signing in as APK, and those where you were pretending to be some random AC with a grudge against me and a massive admiration for you and sympathy for your goals. Thankfully, this seems to cap off this mess. I'm posting this reply (also copy and pasted) to each of those posts to focus things again. Just in case you feel you need to post again, no need to carry on each of these frayed ends, just reply to this post.