Slashdot Mirror
Ask Slashdot: Who's Going To Win the Malware Arms Race?
An anonymous reader writes: We've been in a malware arms race since the 1990s. Malicious hackers keep building new viruses, worms, and trojan horses, while security vendors keep building better detection and removal algorithms to stop them. Botnets are becoming more powerful, and phishing techniques are always improving — but so are the mitigation strategies. There's been some back and forth, but it seems like the arms race has been pretty balanced, so far. My question: will the balance continue, or is one side likely to take the upper hand over the next decade or two? Which side is going to win? Do you imagine an internet, 20 years from now, where we don't have to worry about what links we click or what attachments we open? Or is it the other way around, with threats so hard to block and DDoS attacks so rampant that the internet of the future is not as useful as it is now?
No-one will "win", and it's not helpful to represent the issue as if it's "winnable" by either side.
Malware, viruses, trojans and other malicious behaviour of yet unheard methods will always be around, and we'll always be inventing new ways of counteracting them. Which will in turn be circumvented, and so it goes on.
It's too lucrative both for black hats and white hats.
Black hats might win if their malware can make windows run faster. Disabling anti-virus programs is a cheap win there but there's a lot of bloat in windows and if they can fix that, malware will be viewed as good thing.
At the moment the NSA & GCHQ, and other agencies are at the behest of politicians that want to see all our communications are working against the security industry. If this continues I see a bleak future. But if we manage to get these organisations to support security I see a much better future.
trojan horses
The Greeks won that particular arms race.
This comment is as pointless as this Ask Slashdot question.
As long as there is money to be made by ripping people off over the internet there will be people somewhere in the world willing to spend their time (and money) trying. So I don't imagine the bad guys are going away any time soon.
There's also money to be made combating these guys, so hopefully the anti-virus software industry will be around for as long as the bad guys keep trying.
The final part of the puzzle is people. We aren't perfect. Coders are fallible so I don't see weaknesses in code disappearing. In some ways the current tool sets make that worse by hiding the interactions between components with layers of abstraction. Therefore, I don't think code weaknesses are going away any time soon. Consumers are also human and can be tricked/conned in a wide variety of ways. That isn't likely to change any time soon.
So my prediction is that the seesaw will continue.
you, me, and everybody else. As opposed to conventional warfare cyberwarfare is all but guaranteed to catch civilians in the crossfire.
This arms race will go for the users. The reason being that there's too much money in play to allow the opposite.
Whatever has to be done will be done. If it becomes such a problem that the USA has to invent a "war on hacker" and start "bombing by IP", it will.
But we're talking a long, long time from now. Like many, many... weeks.
It is bad enough as it is with most software being insecure. Sabotage only makes things a lot worse. And for what? A zero-success track-record against terrorism? Industrial espionage? Having dirt on any possible future and present President, Congress Man, Senator?
Most ACs are not even worth the keystrokes to insult them. Be generically insulted by this and ignored otherwise.
As long as consuming content over the internet does not require downloading and running code, it will stay relatively safe.
Which side is going to win?
What makes you think it'll ever be over?
Here's a sports analogy, if you need one.
(the radio version was better but I couldn't find it)
systemd is Roko's Basilisk.
that's all we can be certain of really.
The good news is that the public are becoming more educated on the subject. I've noticed it over the years. They're getting more mindful about not sticking their dicks in electrical sockets... even if the buzzing sensation is momentarily enjoyable.
I've decided to stop wasting my time responding to AC trolls/sockpuppets... so if you want a response from me... login.
On the plus side, global warming will not be a problem because all economic activity will cease and no fossil fuel will be consumed.
Japan and the US will be particularly hard hit. Parts of the EU as well. It's more uncertain what will happen to emerging economies like China, India and Brazil. LOL and/or cats is such a world wide phenomenon that no place will escape unscathed.
No matter what the Amazon will start to recover when Amazon ceases to operate.
Why is Snark Required?
You can already see the shape of that future in Google's Chrome OS. This is a very much "locked down" combination of operating system, browser, cloud applications, and storage. Security updates are automatic and (eventually) involuntary. You are limited to running the software that Google allows you to run, most of which is executed on Google servers. No website Java programs are allowed at all.
Such an architecture provides for maximum security and has the advantage of minimum hardware requirements for ram memory and on-machine storage. It allows for encryption of all communications between your computer and the outside world with mimimum involvement or decison making by the user. And from Google's point of view it represents the perfect vehicle for advertizing in a controlled enviornment. In a sense, your computer has already been hacked (by Google) when you buy it. And they will make sure it stays hacked to their preferences.
The next step will be integration of the computer operating system with the phone operating environment. The two will merge with more software coming from "app stores" and not from the wild. At the same time, the services on the computer will become more integrated with each other so that social media, calendar, voice calls, texting, and social media work togerther and don't work at all with outside software. It becomes a secure walled garden with enough internal features and flexibility to be tolerable to the mass users who are not or can not be responsible for their own security.
"He took a duck in the face at 250 knots." -- William Gibson, Pattern Recognition
The malware arms race has existed since the 1980s at least.
The only winners are the malware producers. The defenders have to make their efforts publically available and the malware providers can circumvent everything easily enough.
The solution is legal and political not technical.
Once the internet became a thing regulated by government as opposed to technologists, it was lost. The intangible reality of it was lost, and now you can steal things off of the internet...even though we the owners and thieves know this is a false economy, at the end of the tunnel there is real money. So now the wrong people have taken interest and subsequently control. A new unregulated internet has to be created which is something more than a layer of encryption laid over the original. We've fucked this one up completely and all of the wrong people control something they will never understand but simply want things from. Now that that we know idiots will take over the internet, can't we start think about an even better system?
No-one will "win", and it's not helpful to represent the issue as if it's "winnable" by either side.
The hackers and those who sponsor them will be the first winner
And that's not all
Because of the malwares whacking havocs to the masses TPTB will step in, declaring war on malware --- with the result of malware still whacking havoc here, there, everywhere, while even more of our remaining liberties being taken away
In other words, there will be winners --- not the people, tho
BTW, those who are behind the malwares (and is already) invade the IoT scene --- and that's not all ... --- by the time we have robots butlers the malware will invade them too
It's not a question of 'if', it's a question of when.
It's the same as with two teams of lawyers battling it out for two parties: in the end only the lawyers really win.
These hackers on both sides basically just cause employment for each other, and therefore both sides win, and all those not involved are the biggest losers.
Two things:
- the US has accelerated the development of malware and lifted it to a new level.
- the US has lots of advanced technology that's vulnerable to malware.
So if there's a cyberwar between backward North Korea and the US , who you'll think will lose?
Since the NSA seems to be the most heavily capitalized producer of both malware and mitigationware, I think the question of which side is going to win is a bit irrelevant. Yes, they will win.
The future is on whitelisting, which assumes the removal of anoynymity for websites and advertisers, and certificates for executables. Freedom fighters will whine and moan, but that's what will happen.
I think its clear that the more we rely on the internet, web retail, cloud storage, banking and other web based financial tasks. The more attacks we will see and the increase and effects of these attacks will get worse as rogue governments like China, North Korea and such make strides in technology. In the 90's attacks came from hackers trying to mess up your computers. Throwing mostly poorly created and malicious attacks that mainly created frustration. Now days we have focused and well planned attacks that many times take important information without notice until its too late. Too say someday we will have systems in place to stop this is simply ignoring the realities of the past and the advancements in what hackers have achieved to date. Some of the fault is NOT computers or the web, but rather the people who fail to use the means to protect the information correctly. Like good passwords, double authentications and encrypted data. We have the tools to make things safer. We just fail to use them.
The open source software world will win in the long term through sustained application of the continual improvement process. There are millions of "us" and only thousands of "them". The most vulnerable in five years time will be closed systems.
Malware has always had the upper hand because everyone else has to react to it.
those, who's interest the attacks serve. And the salesmen. We stopped caring about IT long ago, the existence of "attacks" shows the rot that the IT field is.
We use garbage tools to make more garbage, to sell someone, so they can produce more garbage. And by garbage, i mean useful only to sell. A Product. Not a work of art, not a tool to further survival of mankind.We build something that can barely be used as-is, but is made out of shit, is full of bugs and cheap shortcuts people took to get it shipped a decade earlier that you never heard of, is ridden with all kinds of stupid compatibility tradeoffs ad infinitum.
When theres no pride, when noone cares _how_ code works, only whether it is correct enough to be sold? When i cannot use a year to debug a program completely, because theres "no time".
People who create useless, wretched garbage like the current software deserve everything they get.
and to answer the question, who wins? None of you "wins". You (developers developers developers) are producing useless garbage, hoping to license it to someone.
Its not about IT, its about getting as far as possible from it. Is it any wonder, that the toolchains, the libraries, the debuggers, EVERYTHING is made by the kind of people who like to put labels on boxes and make ontologies and lists for a living. The systematic faggots, whos mind is as cold and logical and gray as slopes of Hell.
I never cared about winning, all i wanted is to make people's life easier, to help them. But its about making money, right?
Fuck you and your money, your sales, your business reasons, fuck you and your dark triad horse you rode in on.
TLDR: The technical excellence and for-profit mentality are mutually incompatible.
The internet will be harder and harder to use, it will be a more dangerous place every year, and the skills you'll need to use it without being robbed or blackmailed will increase. I suspect there will be parallel internets, usable by tech savvy people only, as a layer on top of the net as we know it, similar to the dark nets we see now. 20 years from now, most of us here will be able to use the net in a more or less safe way, whereas a majority of people will not.
no, I don't have a sig
Minor infections will become less common, as the attack surface area is reduced and mitigated over time. New APIs and interfaces will be created, creating N+1 standards, but they'll be more secure than the older ones they supersede. For example, Flash and ActiveX are slowly going away in favor of more secure alternatives. How many critical html5 vulnerabilities are found in your browser of choice compared to critical Flash/Java Web Client vulnerabilities? Open source is a big part of it, but security being baked into the design rather than being tacked-on after thousands of vulnerabilities have been written into legacy code is bigger.
On the downside, when you DO catch an infection, it'll be nasty. New methods for hiding in firmwares will require removing chips and re-flashing them, and unless open firmware takes off in a big way, in practice this will mean replacing hardware very carefully so it doesn't infect the new hardware. It will be virtually undetectable, and have countless methods for defeating airgapping, virtual machines, decompiling, reverse engineering, and antivirus software. So once your machine is owned, it'll really be owned.
The best thing that can be done is to systematically eliminate every motivation to deploy malware: make spam unprofitable, harden SCADA to eliminate sabotage, mature altcoins to not benefit from stolen processing cycles, and regulate online advertising so ad injection is pointless. Also, rework the protocols that allow DDOSing, and require actual two-factor authentication for financial websites/transactions. Eventually, I think malware will be rare/invisible enough that only computer scientists will know about it, ordinary users won't worry about it.
Corruption is convincing someone that the selfless ideal is the same as their selfish ideal.
Whos going to win the arms race? easy. Maalwarkstrodon. Its a mythical beast that speaks in pornographic subplots and maintains direct communication with your girlfriends every wants and desires so as better to inform you on how to best please her. It has the feet of bonzi buddy, the torso of that man who uses 1 weird trick to perfect his abs, and the arms of the scientists that hate her. Most impressively, Maalwarkstrodon has a skull made from a Viagra, Levitra, Cialis, and Propecia alloy. This beast of malware belches sexy singles from former east-bloc soviet satellite states and is cloaked in the finest fashions from paris and milan, imported directly from Fujian china.
Maalwarkstrodon is incapable of offering any less than the best deals at 80% to 90% off, and will not rest until your 2 million dollar per month work-at-home career comes to fruition and the spoils of all true nigerian royalty are delivered unto those most deserving of a kings riches.
Good people go to bed earlier.
It's ironic that I'm seeing an ad for malware (myturbopc.com) at the top of this /. page
"We've been in a malware arms race since the 1990s. Malicious hackers keep building new viruses, worms, and trojan horses, while security vendors keep building better detection and removal algorithms to stop them."
This document from 2005 sets out why relying on detecting malware doesn't work. 'The Six Dumbest Ideas in Computer Security'
"Do you imagine an internet, 20 years from now, where we don't have to worry about what links we click or what attachments we open? Or is it the other way around, with threats so hard to block and DDoS attacks so rampant that the internet of the future is not as useful as it is now?"
I don't have to imagine, I'm doing so right now on this Ubuntu desktop, and DDoS attacks are only viable because of all those compromised Windows computer desktops out there on the Internet. Meanwhile for those still afflicted, how about getting the security vendors to design a 'computer' that don't run malware by clicking on a URL or opening an email attachment?
My answer is: C none of the above.
There are third parties who are going to come out winners here.
- nation-states that use/abuse the hackers (think China, the NSA, and such who subvert botnets, who already know who-is-who. Companies who want to hurt the competition in illegal ways and not get caught can sponsor hacks of competitor flagships.)
- hardware/software vendors who provide (mediocre) protection against unforseen threats. (The same fear-based motivation for the ignorant masses is used by politicians around the world to retain power)
Like nuclear war where nobody wins, in the end this is going to cost a truckload of money with no equal value for the churn - in the whole the community of humans will be worse off for it. In the short run there is blood. Humans like blood, sadly.
I see a "new" network, proprietary and locked down, for "real world" applications. All the "important" data will be on it only; banks, Wall Street, governments, etc will use this from now on. They will publish some type of virtual machine for "regular people" to use to do banking and whatever; or even two physical machines in one. Eventually the current "internet" will become less and less of a target as it looses it's financial impact and becomes completely social and informational only. FTTH could do this with multiple wavelength frequencies on the same line. The current system is too open, too unsecured to ever "fix" it.
The issue is, under what circumstances is it worthwhile to spend time writing a virus/trojan/whatever.
Clearly financial gain is THE prime motivator, although notoriety is a close second - mostly because it leads to money.
The war, though, is certainly winnable. The idea of certified manifests is getting close to the solution - there is certainly more work and thought to be applied to that though.
End user expectation management is in order too. The days of downloading software are coming to a close. I really don't see the need for most devices to have this functionality. Downloading from a known trusted source is one thing. Downloading from user configurable sources is mostly stupid - since the vast majority of users are simply too stupid to make good decisions.
A malware arms race is like Alien vs Predator: no matter who wins, we lose. Or so I've been led to believe.
There are only a finite number of threat vectors and technically each year the number of vectors should be reducing. If this is not the case, then two possible factors, or combination thereof, are playing a role:
1. Sabotage - government, or privately funded
2. Failure to integrate lessons learned into the software and hardware development cycles
True security starts from the hardware which imposes restrictions on the software to mitigate every threat it can. Next is the OS, which should impose restrictions on applications. If these two aspects are done correctly, no further security is required beyond proper configuration or API usage.
The W.O.P.R.
Our biggest challenges with security are asshole governments who want to undermine security so they can spy on us, and incompetent companies who sell us insecure products because they just want to push some bauble out the door.
As long as we have these two problems, the malware folks will always win, because we will not have the tools required to keep them out.
If spying governments and inept corporations are the weak links, we're pretty much screwed.
So the next time some asshole in a spy agency says we shouldn't have encryption so they can spy on us, that person should be told in no uncertain terms to piss up a rope.
Lost at C:>. Found at C.
Neither. The malware war, like tic-tac-toe and global thermonuclear war, is unwinnable.
Slow down, cowboy! It has been 4 hours since you last posted. You must wait another few hours.
Stop malware delivery w/ APK Hosts File Engine 9.0++ SR-2 32/64-bit:
http://start64.com/index.php?o...
FREE & adds speed, security, + reliability, doing more w/ less, more efficiently vs. addons + fixes DNS' redirect security issues:
---
A.) Hosts do more than:
1.) AdBlock ("souled-out" 2 Google/Crippled by default http://techcrunch.com/2013/07/... & ABP too http://finance.yahoo.com/news/... )
2.) Ghostery (Advertiser owned) - "Fox guards henhouse" http://en.wikipedia.org/wiki/G...
B.) Hosts add reliability vs. downed/redirected dns (& overcome site redirects e.g. /. beta).
C.) Hosts secure vs. malicious domains too -> http://tech.slashdot.org/comme... w/ less "moving parts" complexity
D.) Hosts files yield more:
1.) Speed (adblock & hardcodes fav sites - faster than remote dns)
2.) Security (vs. malicious domains serving malcontent + block spam/phish & trackers)
3.) Reliability (vs. downed, Kaminsky redirected (99% ISP DNS' = unpatched vs. it), DGA, Fastflux, & dynDNS botnets)
4.) Anonymity (vs. dns request logs + dnsbl's).
---
* Hosts do more w/ less (1 file) @ faster levels (ring 0) vs redundant inefficient addons (slowing slower ring 3 browsers) via filtering 4 the IP stack (coded in C, loads w/ os, & 1st net resolver queried w\ 45++ yrs.of optimization).
* Addons = more complex + slow browsers in messagepassing (use a few concurrently & see) & are nullified by native browser methods - It's how Clarityray's destroying Adblock.
* Addons slowup slower usermode browsers layering on more - & bloat RAM consumption + excessive cpu use too (4++gb extra in FireFox https://blog.mozilla.org/nneth...)
(Work w/ a more capable native kernelmode part you already have - hosts (An integrated part of the ip stack))
APK
P.S.=> "The premise is quite simple: Take something designed by nature & reprogram it to make it work for the body rather than against it..." - Dr. Alice Krippen: "I am legend"
...apk
Stop malware delivery w/ APK Hosts File Engine 9.0++ SR-2 32/64-bit:
http://start64.com/index.php?o...
FREE & adds speed, security, + reliability, doing more w/ less, more efficiently vs. addons + fixes DNS' redirect security issues:
---
A.) Hosts do more than:
1.) AdBlock ("souled-out" 2 Google/Crippled by default http://techcrunch.com/2013/07/... & ABP too http://finance.yahoo.com/news/... )
2.) Ghostery (Advertiser owned) - "Fox guards henhouse" http://en.wikipedia.org/wiki/G...
B.) Hosts add reliability vs. downed/redirected dns (& overcome site redirects e.g. /. beta).
C.) Hosts secure vs. malicious domains too -> http://tech.slashdot.org/comme... w/ less "moving parts" complexity
D.) Hosts files yield more:
1.) Speed (adblock & hardcodes fav sites - faster than remote dns)
2.) Security (vs. malicious domains serving malcontent + block spam/phish & trackers)
3.) Reliability (vs. downed, Kaminsky redirected (99% ISP DNS' = unpatched vs. it), DGA, Fastflux, & dynDNS botnets)
4.) Anonymity (vs. dns request logs + dnsbl's).
---
* Hosts do more w/ less (1 file) @ faster levels (ring 0) vs redundant inefficient addons (slowing slower ring 3 browsers) via filtering 4 the IP stack (coded in C, loads w/ os, & 1st net resolver queried w\ 45++ yrs.of optimization).
* Addons = more complex + slow browsers in messagepassing (use a few concurrently & see) & are nullified by native browser methods - It's how Clarityray's destroying Adblock.
* Addons slowup slower usermode browsers layering on more - & bloat RAM consumption + excessive cpu use too (4++gb extra in FireFox https://blog.mozilla.org/nneth...)
(Work w/ a more capable native kernelmode part you already have - hosts (An integrated part of the ip stack))
APK
P.S.=> "The premise is quite simple: Take something designed by nature & reprogram it to make it work for the body rather than against it..." - Dr. Alice Krippen: "I am legend"
...apk
The forces that cause people to hack and cause people to secure things are balanced, if either one gets too far ahead it pushes back towards equilibrium. If the internet dies, hackers lose their income, if it gets too secure, people get lazy and let it fall to disrepair.
First they came after the Senators, but I did nothing because I was not a Senator ...
Don't fight for your country, if your country does not fight for you.
I stop malware delivery w/ APK Hosts File Engine 9.0++ SR-2 32/64-bit:
http://start64.com/index.php?o...
FREE & adds speed, security, + reliability, doing more w/ less, more efficiently vs. addons + fixes DNS' redirect security issues:
---
A.) Hosts do more than:
1.) AdBlock ("souled-out" 2 Google/Crippled by default http://techcrunch.com/2013/07/... & ABP too http://finance.yahoo.com/news/... )
2.) Ghostery (Advertiser owned) - "Fox guards henhouse" http://en.wikipedia.org/wiki/G...
B.) Hosts add reliability vs. downed/redirected dns (& overcome site redirects e.g. /. beta).
C.) Hosts secure vs. malicious domains too -> http://tech.slashdot.org/comme... w/ less "moving parts" complexity
D.) Hosts files yield more:
1.) Speed (adblock & hardcodes fav sites - faster than remote dns)
2.) Security (vs. malicious domains serving malcontent + block spam/phish & trackers)
3.) Reliability (vs. downed, Kaminsky redirected (99% ISP DNS' = unpatched vs. it), DGA, Fastflux, & dynDNS botnets)
4.) Anonymity (vs. dns request logs + dnsbl's).
---
* Hosts do more w/ less (1 file) @ faster levels (ring 0) vs redundant inefficient addons (slowing slower ring 3 browsers) via filtering 4 the IP stack (coded in C, loads w/ os, & 1st net resolver queried w\ 45++ yrs.of optimization).
* Addons = more complex + slow browsers in messagepassing (use a few concurrently & see) & are nullified by native browser methods - It's how Clarityray's destroying Adblock.
* Addons slowup slower usermode browsers layering on more - & bloat RAM consumption + excessive cpu use too (4++gb extra in FireFox https://blog.mozilla.org/nneth...)
(Work w/ a more capable native kernelmode part you already have - hosts (An integrated part of the ip stack))
APK
P.S.=> "The premise is quite simple: Take something designed by nature & reprogram it to make it work for the body rather than against it..." - Dr. Alice Krippen: "I am legend"
...apk
"DDoS attacks are only viable because of all those compromised Windows computer desktops out there on the Internet" - by DougPaulson (4034537) on Tuesday March 31, 2015 @08:05AM (#49378219)
DDoS Malware for Linux Distributed via SSH Brute Force Attacks http://www.securityweek.com/dd... so what's that you said?
NOW - Tell us about ANDROID (a Linux) being so 'secure' too, ok??
It's proof that once a Linux gets used as much as Windows, albeit on another hardware platform, it gets burnt badly too!
That's been the ONLY thing 'saving' Linux - which isn't saving it on PC desktops @ all - I have YET to see "year of the Linux on the desktop" bs happen!
(Since Windows use blows away Linux on PC desktops + Servers COMBINED much as ANDROID does everything else on smartphones since it's 'free' & keeps per unit costs down which IS the only TRUE REASON it's 'top dog' there since money talks)
Yes, you see the results in ANDROID's massive decade++ long infestation also.
* ... & before ANYONE tries to say "but Linux is used more on servers"?
Well, this shows clearly otherwise from 2012, & it hasn't changed much in favor of Linux to this day 3 yrs. later almost to the day, using CNN + NetCraft data to prove it - it's roughly STILL a 50/50 split on servers from the Fortune 500, U.S. State Government servers, & top educational institutions -> http://news.slashdot.org/comme... which VALID concrete verifiable + undeniable sources data STILL!
(Even got me "downmodded" for, since truth obviously isn't "real big" on the personal agenda of "Pro-*NIX" people here... argue with the numbers!)
APK
P.S.=> You guys really SHOULD STOP your b.s. 'p.r.' since it's shooting you in the foot everytime you do it... security by obscurity (less used) is what you had, nothing more... apk
I stop malware delivery w/ APK Hosts File Engine 9.0++ SR-2 32/64-bit before it can get to me:
http://start64.com/index.php?o...
FREE & adds speed, security, + reliability, doing more with less, more efficiently vs. addons + fixes DNS' redirect security issues:
---
A.) Hosts do more than:
1.) AdBlock ("souled-out" 2 Google/Crippled by default http://techcrunch.com/2013/07/... & ABP too http://finance.yahoo.com/news/... )
2.) Ghostery (Advertiser owned) - "Fox guards henhouse" http://en.wikipedia.org/wiki/G...
B.) Hosts add reliability vs. downed/redirected dns (& overcome site redirects e.g. /. beta).
C.) Hosts secure vs. malicious domains too -> http://tech.slashdot.org/comme... w/ less "moving parts" complexity
D.) Hosts files yield more:
1.) Speed (adblock & hardcodes fav sites - faster than remote dns)
2.) Security (vs. malicious domains serving malcontent + block spam/phish & trackers)
3.) Reliability (vs. downed, Kaminsky redirected (99% ISP DNS' = unpatched vs. it), DGA, Fastflux, & dynDNS botnets)
4.) Anonymity (vs. dns request logs + dnsbl's).
---
* Hosts do more w/ less (1 file) @ faster levels (ring 0) vs redundant inefficient addons (slowing slower ring 3 browsers) via filtering 4 the IP stack (coded in C, loads w/ os, & 1st net resolver queried w\ 45++ yrs.of optimization).
* Addons = more complex + slow browsers in messagepassing (use a few concurrently & see) & are nullified by native browser methods - It's how Clarityray's destroying Adblock.
* Addons slowup slower usermode browsers layering on more - & bloat RAM consumption + excessive cpu use too (4++gb extra in FireFox https://blog.mozilla.org/nneth...)
(Instead, work w/ a more capable native kernelmode part you already have - hosts (An integrated part of the ip stack))
APK
P.S.=> "The premise is quite simple: Take something designed by nature & reprogram it to make it work for the body rather than against it..." - Dr. Alice Krippen: "I am legend"
...apk
Agent Smith.
Tat Tvam Asi
No doubt about it. Already a winner with no competition.
Via firewall rules, no javascript etc. & APK Hosts File Engine 9.0++ SR-2 32/64-bit by cutting infection vectors:
http://start64.com/index.php?o...
FREE & adds speed, security, + reliability, doing more w/ less, more efficiently vs. addons + fixes DNS' redirect security issues:
---
A.) Hosts do more than:
1.) AdBlock ("souled-out" 2 Google/Crippled by default http://techcrunch.com/2013/07/... & ABP too http://finance.yahoo.com/news/... )
2.) Ghostery (Advertiser owned) - "Fox guards henhouse" http://en.wikipedia.org/wiki/G...
B.) Hosts add reliability vs. downed/redirected dns (& overcome site redirects e.g. /. beta).
C.) Hosts secure vs. malicious domains too -> http://tech.slashdot.org/comme... w/ less "moving parts" complexity
D.) Hosts files yield more:
1.) Speed (adblock & hardcodes fav sites - faster than remote dns)
2.) Security (vs. malicious domains serving malcontent + block spam/phish & trackers)
3.) Reliability (vs. downed, Kaminsky redirected (99% ISP DNS' = unpatched vs. it), DGA, Fastflux, & dynDNS botnets)
4.) Anonymity (vs. dns request logs + dnsbl's).
---
* Hosts do more w/ less (1 file) @ faster levels (ring 0) vs redundant inefficient addons (slowing slower ring 3 browsers) via filtering 4 the IP stack (coded in C, loads w/ os, & 1st net resolver queried w\ 45++ yrs.of optimization).
* Addons = more complex + slow browsers in messagepassing (use a few concurrently & see) & are nullified by native browser methods - It's how Clarityray's destroying Adblock.
* Addons slowup slower usermode browsers layering on more - & bloat RAM consumption + excessive cpu use too (4++gb extra in FireFox https://blog.mozilla.org/nneth...)
(Work w/ a more capable native kernelmode part you already have - hosts (An integrated part of the ip stack))
APK
P.S.=> "The premise is quite simple: Take something designed by nature & reprogram it to make it work for the body rather than against it..." - Dr. Alice Krippen: "I am legend"
...apk
When the first bots started I wish the internet providers had taken steps to completely block the internet access to the clueless owners of owned Windows systems. Show them a captive page with a short explanation why, and a download of an antivirus. No internet access until then. But this should have been done over 15 years ago.
Non-Linux Penguins ?
The war will continue, and the majority of people who don't have the time/inclination/skills to learn all the tricks of the trade will continue to be caught in the middle. SWATting, DOXing, etc. all prove that.
As long as there are governments willing to do whatever it takes to control their citizens, the war will continue. The DDoS of GitHub proves that.
As long as there is money to be made, hackers will still go after your information (SSN's, bank accounts, etc.) In the end, you just need to get used to the war, and try and survive the crossfire.
-merlyn
Letting ULTRON do the talking: "The ONLY way to achieve peace, is thru the elimination of those (things YOU noted & that I agree 110% with) who would perpetuate war. THIS IS MY PROGRAMMING http://start64.com/index.php?o... & soon, I will be unstoppable..." Quote from https://www.youtube.com/watch?...
Which goes along w/ your points - cut the methods used & "infestation vectors"...
* I'm simply doing MY part, gratis...
APK
P.S.=> The combination of using Firewall rules tables, Custom hosts files (populated vs. infection in ads + known 'bad' sites/servers etc.), & cutting off OTHER avenues to infestation via java, javascript, iframes/frames, cookies of all types possible, & plugins (running 'automagically') by using Opera 12.17 64-bit (which allows BY SITE preferences, allowing those things ONLY where I see fit & absolutely NEED them, rare really) - it's STILL the most flexible browser in those capacities (& it's done GUI, not commandline switching which MOST 'regular users' don't care to learn about, ala say, Chromium variants)... apk
Then they came for users - and there was no one left to speak for us.
Virus and antivirus suppliers have a symbiotic business relationship, each requires the other to continually make slow progress, rendering their old product useless, so they can sell their new product. If either side 'won', then they would cease being able to sell upgrades, their business model requires then not to win.
A pizza of radius z and thickness a has a volume of pi z z a
either you bought an already compromised tablet or you installed something suspect from the appstore.
and you can find out the offending app with free programs available from the appstore too, if you really can't remember what shit game you installed that it came with. if you don't have anything showing up on the application manager that you would guess to be the culprit, then your tablet came with the malware to begin with.
you know what's funny? slashdot runs apps on the mobile side that occasionally just forward you to another page that tries to get you to install a malware .apk.
if you want a system into which you can't install any apk if you so wish after setting the setting to do so, then too bad, buy an iphone or a microsoft phone.
anyways, you could report it to google. at least report what they're advertising. it is against the rules to do such popups you know.
(and if you can't take care of it wtf you're doing on slashdot anyways, if you can't uninstall 2015's purple monkey from your machine)
world was created 5 seconds before this post as it is.
No winner, because if there is no threat, investment in security will go down to a level where there again is a credible threat.
The only case where we'd get rid of threats is if we make it so cheap to defend that no noticable investment is necessary - that could possibly happen with safer languages, but I doubt it.
And the irony is the spammers did such a good job of forcing people off usenet that there were so few people left the spammers gave up bothering and moved on to more lucrative enviroments to screw up. The upshot is that usenet is actually quite usable now, though NNTP servers are slowly disappearing sadly.
"where we don't have to worry about what links we click or what attachments we open?" To open a attachment that don't belongs directly to you, from someone you don't know, a site that you dont use or from a subject that don't have with the sender its a utterly stupid action. Also, hate autopreview emails.
-no sig today-
Computers roughly double in power every two years.
That means every two years, malware can be twice as destructive.
Security constantly improves, but it doesn't improve as fast.
Measured as a percentage, the amount of damage being done will go down.
Measured as an absolute, the amount of damage will go up.
APK Hosts File Engine 9.0++ SR-2 32/64-bit:
http://start64.com/index.php?o...
FREE & adds speed, security, + reliability, doing more w/ less, more efficiently vs. addons + fixes DNS' redirect issues:
---
A.) Hosts do more than:
1.) AdBlock ("souled-out" 2 Google/Crippled by default http://techcrunch.com/2013/07/... & ABP too http://finance.yahoo.com/news/... )
2.) Ghostery (Advertiser owned) - "Fox guards henhouse" http://en.wikipedia.org/wiki/G...
B.) Hosts add reliability vs. downed/redirected dns (& overcome site redirects e.g. /. beta).
C.) Hosts secure vs. malicious domains too -> http://tech.slashdot.org/comme... w/ less "moving parts" complexity
D.) Hosts files yield more:
1.) Speed (adblock & hardcodes fav sites - faster than remote dns)
2.) Security (vs. malicious domains serving malcontent + block spam/phish & trackers)
3.) Reliability (vs. downed, Kaminsky redirected (99% ISP DNS' = unpatched vs. it), DGA, Fastflux, & dynDNS botnets)
4.) Anonymity (vs. dns request logs + dnsbl's).
---
* Hosts do more w/ less (1 file) @ faster levels (ring 0) vs redundant inefficient addons (slowing slower ring 3 browsers) via filtering 4 the IP stack (coded in C, loads w/ os, & 1st net resolver queried w\ 45++ yrs.of optimization).
* Addons = more complex + slow browsers in messagepassing (use a few concurrently & see) & are nullified by native browser methods - It's how Clarityray's destroying Adblock.
* Addons slowup slower usermode browsers layering on more - & bloat RAM consumption + excessive cpu use too (4++gb extra in FireFox https://blog.mozilla.org/nneth...)
(Work w/ a more capable native kernelmode part you already have - hosts (An integrated part of the ip stack))
APK
P.S.=> "The premise is quite simple: Take something designed by nature & reprogram it to make it work for the body rather than against it..." - Dr. Alice Krippen: "I am legend"
...apk
Can adblock do 16 things hosts do for speed, security, & reliability:
1.) Protect vs. malicious sites/servers (beyond malicious ads: See 2-10 next)
2.) Protect vs. fastflux botnets + stop communication to C&C servers
3.) Protect vs. dynamic dns botnets + stop communication to C&C servers
4.) Protect vs. DGA botnets + stop communication to C&C servers
5.) Protect vs. downed DNS (adds reliability)
6.) Protect vs. DNS redirect poisoned dns
7.) Protect vs. trackers
8.) Protect vs. spam
9.) Protect vs. phishing
10.) Protect vs. bandwidth caps
11.) Get you past a dnsbl
12.) Keep you off dns request logs
13.) Speed up websurfing by adblocks & hardcoded fav. sites
14.) Work on ANY webbound app (think stand-alone email programs) multiplatform.
15.) Give you easily texteditor controlled data for the above
16.) Do all that & block ads (better than addons) more efficiently in cpu cycles + memory usage
* ANSWER ="NO" to each above on AdBlock doing it as well or at all!
APK
P.S.=> AdBlock does FAR less than hosts do & FAR less efficiently - hosts by way of comparison, do MORE w/ less + Hosts start w/ the IP stack before REDUNDANT inefficient addons BEGIN to operate (as 1st resolver queried):
AdBlock's 4++gb & 100% CPU usage flooring inefficiency -> https://blog.mozilla.org/nneth... + ClarityRay defeats it + it 'souled-out' & is crippled by default paid off to not do its job http://techcrunch.com/2013/07/... & ABP too http://finance.yahoo.com/news/...
AdBlock adds complexity/room for breakdown/exploit + from a slower mode of operations (usermode = more messagepassing overheads vs. hosts in kernelmode).
For the BEST hosts file?
APK Hosts File Engine 9.0++ SR-2 32/64-bit -> http://start64.com/index.php?o...
MalwareBytes' hpHosts Admin (MalwareBytes employee) hosts & recommends it -> http://hosts-file.net/?s=Downl... & MalwareBytes = BEST antivirus http://www.av-test.org/en/news...
... apk
Result? W. Palant RAN after he wrote me by email 1st saying "hosts are a shitty solution" to which I replied:
"Show us adblock can do more for added speed, security, reliability, & anonymity than hosts can, + that adblock does it more efficiently than hosts"
Which on my latter 'point-in-challenge' on efficiency AdBlock's proven by research to be MASSIVELY inefficient -> https://blog.mozilla.org/nneth... & adblock does FAR less than hosts (especially crippled by default).
I sent Wladimir Palant that challenge in response to his statement from 2 different email addresses I use!
Result = Still no answer from him in regard to my challenge put to him to this very day MONTHS later - that tell you anything? It did me!
He knows his addon is less efficient & features laden by FAR vs. hosts - Wladimir Palant RAN like a scared rabbit!
ClarityRay's also DESTROYING AdBlock - via native browser methods to DUMP what addons you use (it can't DO THAT to hosts files).
I only tell it how it is on hosts' superiority vs. AdBlock - Funny part is, Wladimir Palant running does too!
Especially considering "Almost ALL Ads Blocked" has 'souled-out' -> Google & Others Pay Adblock Plus To Show You Ads Anyway: http://news.slashdot.org/comme... & ABP too http://finance.yahoo.com/news/...
APK
P.S.=> Bottom-Line: Hosts = a superior solution that also fixes DNS redirect security issues (vs. browser addons & their inefficiencies + messagepassing overheads as well as myriad lack of abilities hosts have from 1 file that's part of the IP stack itself - faster, more efficient, & less redundant as well, since TCP/IP has 45++ yrs. of refinement & optimization in it, & runs in a higher CPU serviced ring of privelege & operations in kernelmode vs. slower usermode layering over browsers slowing them more, & hosts = 1st resolver queried by the OS itself also)... apk
The people most likely to release a rogue AI will be malware people since they have no reason to hold back. At some point the AI will self evolve and then we get skynet. Only Commander adama will have old enough tech to escape our cyber overlord's long reach.
Some drink at the fountain of knowledge. Others just gargle.
I had the same idea, with one thing added: if any OS wins, it won't come from Microsoft.
Good, inexpensive web hosting
It is going to get to the point where the only viable solution is a trusted sandbox. It will be something along the lines of a TPM chip to make sure that the OS image / boot loader has not been compromised, combined with a white listed set of applications and trusted content sources.
People are either going to give up computing freedom for security, or they are going to become desensitized to and accepting of the fact that their "private / personal data" is neither.
People, i.e. Joe Public, don't understand what a massive gift technology is to either enslave or free them. In the cyber era technical folk will be both revered and feared because people don't invest in the critical thinking skills required to be responsible netizens, frankly browse here at -1 and see how many pointless annoying trolls there are. Perhaps people should have to be qualified and prove they are responsible enough to use the net.
The Information Technology arms race should have always been a stalemate, however I think the spooks will inadvertanly bump things into the blackhats favor. Why, because it is already clear to see that the spooks have a disdain for the people who, indirectly, pay our salaries. Worse Snowden showed them that people here can cause damage to them.
Ethics, of course, very narrowly rest with the whitehats, who constantly try to educate users, who don't give a shit, why and how they should protect themselves. Of couse couple that with net users ridiculous apathy and it makes it easier for the lawmakers to pass laws to the detriment of those very same users. Maybe the blackhats and spooks are right to treat them like morons and fodder whose only use is as fall guy and launch point onto a harder target.
Right now users are complaining that crypotolocker encrypted their files, so encryption must be bad because they lost all their baby photos - yet they won't back anything up. Tomorrow they will be complaining how thier retirement fund was emptied and their house was sold from underneath them and that if 'only someone had told them' while they try to shift the blame for their moronic behavior elsewhere. I do feel up bad about it but I find it difficult to feel sympathy anymore for people who can't take responsibility for their own *lack* of action.
I'm sorry about being so cynical but I, like many slashdotters, was here before the web when you could talk to lots of really smart people. Now it seems like the morons have taken over and the collective IQ of the net takes a hit every time. As a former whitehat, setting up security for banks you have heard of, I hate to say it but I think the spooks have tipped the balance in favor of the blackhats and it is now a matter of how badly and how much Joe Public looses.
In the coming years really bad fraud will happen to people, which is when they will realize how truely Pwned they have always been.
My ism, it's full of beliefs.
Of the singularity.
Be on the right side.
It's that simple.
Chalisque.
For example, see here... Even a President can do something right once in a while: http://www.newser.com/story/20... and we need that, because: http://www.techweekeurope.co.u...
once malware takes to the skies in drones things will get really dangerous, imagine all machines sharing mesh networks and the internet of things being infected with malware that takes over drones and trains and buses etc. Antivirus companies will end up being funded by the DOD I suppose (if they aren't already).