Slashdot Mirror
AVG Forces Chrome Extension On Users, Extension Is Woefully Insecure (google.com)
An anonymous reader writes: The AVG Web TuneUp Chrome extension, forcibly added to Google Chrome browsers when users were installing the AVG antivirus, had a serious flaw that allowed attackers to get the user's browsing history, cookies, and more. "This extension adds numerous JavaScript APIs to Chrome, apparently so that they can hijack search settings and the new tab page," explains Mr. Ormandy. "The installation process is quite complicated so that they [AVG] can bypass the Chrome [Store] malware checks, which specifically tries to stop abuse of the [Chrome] Extension API." Simple XSS and MitM attacks expose data from other tabs opened in the browser, browsing history, and even manage to render SSL useless.
*very very slow clap*
AVG used to be good and then about 4 years ago it got a lot of bloat
My best security tip, don't run as Administrator. Run everything as a limited user, and only install software from ADMIN account. Add in Windows Defender / Security Essentials, add in a Adblock / UBlock type protection and back up your data occasionally (regularly) and you're fine. Worst case I've seen, cleared by deleting said user profile.
The problem is, most people want to run everything as Admin because it is convenient.
Agent K: A *person* is smart. People are dumb, stupid, panicky animals, and you know it.
No idea if the Avast plugin is crappy or well-written or what, but it also tried to install itself on my Chrome and Firefox.
Fortunately Firefox had the good sense to ask me,
"An external program has tried to install something (lists the program). Do you really want to install this plugin?"
I said No.
Chrome didn't say anything, and I assume it was installed. Don't really care since I only use Chrome about once a month for sites that crap out in Firefox.
Now they'll have to beat up some other low-brow outfit. Synology is my bet.
" in fact you can't even buy one for linux"
That's completely BS, but you're right about one thing... "install ... whatever OS you want", even Windows and OS X.
Pretty much the rest of your post is wrong too.
Yes, in fact you can't even buy one for linux.
Avast Anti-Virus for Linux. Purchasable for $199 per server per server.
I'm sure the ClamAV guys will sell it to you if you want to pay.
General Relativity: Space-time tells matter where to go; Matter tells space-time what shape to be.
And if you really need windows for some program or so, start it in a VM, not connected to the internet.
Or you can just take a snapshot of the VM and set it to be restored on reboot (at least last time I used VirtualBox), while using a shared directory to save files
Dear Slashdot admins,
Since subject of Chrome has come up, please beware that either Slashdot or Chrome change has broke ability to comment using this combination. Any attempt to submit the comment says that I couldn't prove I am human, while similar action on, say, Safari works perfectly.
Happy holidays and please take a look at this at your earliest convenience. I am using current stable Chrome on MacOSX 10.11.2, and the browser works well on other sites.
Just install linux or freebsd or whatever OS you want, and install patches timely, then you don't have the need for an anti-virus.
False. A lower number of viruses targeting these platforms does not make them impervious and there are virus and trojans for them.
in fact you can't even buy one for linux.
Completely false. There are several commercial anti-virus applications for Linux as well as the free and popular Clam AV command line scanner.
Your lack of awareness, combined with your lack of understanding, makes you just as likely an infection target as my clueless Grandma.
There are several Linux AV available. For instance: https://www.eset.com/us/produc...
Anti-virus that run on Linux are for scanning served file and mail. e.g.: their goal is to stop the spread of windows viruses.
There is no virus other then proof of concept for Linux. And even if that was becoming a problem, no Linux user trust anti-virus to "clean" a system. Once infect the only proper fix is re-installing from clean media source and restore user data from backup. Anti-virus are stupid software for stupid operating system ran by stupid peoples. They have no legitimate purpose.
Any anti-virus for linux you can buy just checks files or emails for malicious content. Its not really comparable to the type of anti-virus offered for windows.
You're probably going to catch a lot of flack for insinuating that Windows is insecure, but the reality is that a lot of people would have way fewer virus problems if they browsed the web in Linux or BSD instead. It's not necessarily that those OSes are inherently more secure, but it is the case that the vast, vast majority of websites trying to install malware don't serve up Linux or BSD malware.
A lot of people end up with garbage on their computers because they're willing to install whatever stupid shit a website wants to install, and that stupid shit is almost always Windows only (or sometimes Mac too), and virtually never available for Linux or BSD. So if those people used Linux or BSD, that part of the problem would go away, at least.
Of course, if Linux or BSD end up with a notable chunk of the desktop market, the problem will just show up there too. For now, though, it's not really there. I so wish I could convince some of the people I know who use their computers almost exclusively for browsing to use BSD or Linux instead, so I wouldn't have to clean up their computer every six months.
If I ran around installing Linux or FreeBSD on everyone's computer and then instructed them to start a VM for Windows programs my phone would be ringing ten times as much as it does already for free support requests. To be fair, I do recommend Linux for a lot of people, and even take the time to sit down with them for a few hours to get them acquainted while putting plenty of basic documentation in their documents folder, but I tell the vast majority of people to stick with Windows or get a Mac. Never forget how advanced you are, I know very well it is easy to take for granted as I sometimes do so myself. Fact of the matter is, Linux is not for a whole lot of people. And FreeBSD? For a regular person? As a desktop OS? Huh? I love FreeBSD, it is my go to server OS. But even I have never bothered installing a GUI on it and using it as a day to day desktop driver. Anti-virus software is a complex subject, but I will sooner explain the whole messy situation and advise on best practices and what software is best rather than just nuke their hard drive and replace the OS. That is almost always overkill. Oh, and there is such a thing as anti-virus software for Linux. Comodo for one. Although I have no idea what it does or why anyone would need it. If someone could shed light on that it would be cool.
Brought to you by Carl's Junior.
Its a virus scanner, and follows the unix philosophy. Its not a rootkit like monolith that does some opaque processing in the background, installs plugins for every browser showing right to each link whether its safe (why can't it just simply warn if you try to click such a link?!), nor does it annoy you with update popups, or even block non-malicious software (yes, people I know quite a few false positives, and its just impossible to add exceptions for those programs). It really can't be called anti-virus.
Wrong. Wanna try again?
Nope, some stuff doesn't work on Linux. The whatever OS I want includes Win 7. I still got 3 different OS (Linux, XP, Win 7). Each has its use.
Why? Why do people believe that if they install a different OS then they will be magically protected from all the malware on the net? This is like people saying how buying a mac will make them free of any malware forever, which has been proven wrong multiple times. I have even read articles about Linux seeing an increase of malware.
This is a browser extension vulnerability, not an OS vulnerability, two different things. On top of that, you're telling people to install a completely new OS which they would have to learn and then find alternative to their software they use, which in a lot of cases can't perform the way they want versus their windows/OSX counterpart. Plus you push a novice into a different OS, they have a high chance of installing a rogue application because they don't know any different.
Telling someone to just install a different OS so they won't get malware is like telling someone to just never connect to the internet. It's possible, people can do it, but chances of it working out fluidly and with no issues is very unlikely (especially for a common user) and it doesn't really protect them from getting infected or hacked.
There are plenty of things that can harm Linux. User's don't care if their OS is damaged, they care if their files are damaged. Anti-virus software reduces the chances users can harm themselves.
Please mod the parent down, everything he said is false, except "install patches timely". Even "Just install linux or freebsd or whatever OS you want... then you don't have the need for an anti-virus" is false as the whatever OS I want is Win2000 and that would need anti-virus software.
Haven't run AV on any of my Windows machines since Windows 95. Never have caught anything, mostly due to being smart about what I download and run.
Now, the Linux box used for a LAMP stack running WordPress... even with automatic updates to WP & Linux, it gets compromised by bots about once every 6 months. Luckily, it's a VM and I roll back to a good snapshot and resume life.
From a security standpoint, Linux is vastly inferior to Windows, since XP came out. Like OSX, Linux has a delusional crowd who believes it to be superior, but because it has so little of the desktop market, few are wasting time writing exploits and viruses.
You're right about the security theater part. Throwing away an operational OS to go through the hassle of setting up Linux/BSD, moving all of your data, finding replacement applications is certainly theatrical in the same vein as replacing airport security with the TSA.
Yes, I admit, my solution is violating kant's categoric imperative (only do stuff that can be basis for an universal law).
In fact, some aspects of linux are worse security wise than on windows. But as linux operating systems are open source, security researchers can freely improve the security of the system: you don't have to eat one entities dog food. Just look at wayland and the xdg-app idea for improvement in these areas.
Anti-virus software for linux is just used on mail or file servers, to check the content they handle. It does not check the health of the host system.
Trollololol.
With the rapidly spreading malware known as systemd
That's how I run windows now... at home and work. It runs in a VM on my awesome KDE desktop. I mean it's the next logical step...
1. Windows as a DOS application
2. Windows as an OS (that runs DOS)
3. Windows as a service
4. Windows as an application
Full circle with windows running as an "app". Easily restorable, easily removable, and easily forgettable.
Windows encourages the behaviour of downloading stuff from the net and, executing the msi or exe installer, then giving it admin access.
Linux has specific package managers for this, with software for almost all things you need. I have only very few stuff on my box that doesn't come from my ubuntu package manager.
Yes, linux isn't the solution for everything, but the fact that if every uses linux then linux is targeted by attackers and the situation is as bad or worse on linux doesn't make the other fact wrong, that there is much fewer risk currently to get infected with linux malware when running it as desktop os, and not doing stupid things (like living on a publicly reachable ip, having ssh activated and the root password "root").
Also, linux stands for another approach in improving security of the operating system. Instead of installing some huge monolithic anti-virus, the research can more focus at how to make the infrastructure as hard to abuse as possible. On windows this isn't possible, at least not if you aren't employed by microsoft, and even within microsoft only very few are heard I presume.
Most of the Windows machines I see are infected by drive by downloads/installs still happening. Most of the time it's when a user clicks on x to close a poppy within a Web page. The user quite often isn't even aware that something happened.
What was Symantec's estimate? 40% detection rate? Sounds really secure to me (/sarcasm). But hey at least they aren't straight up installing mallard and comprising the browser (that we know of).
Seems you won, they mentioned the term "developer workstation".
Yes, in fact you can. AV corporations know that in spite of the lack of threats, AV protection is still a checklist item for any piece of IT gear going into some organizations. That's why not only can you buy it, but it's usually a pricey package with "Enterprise" in the name.
Log in or piss off.
Remember when AVG was an actually good product? and not bloatware...those were the days.
Why? Because it is quite true. You really have to go out of your way to get infected with malware on Linux or OSX, so much so, that I have never managed to get infected with anything, in more than a decade of Linux and OSX use.
You can get symantec also and it's needed because there are virus written for linux. Granted many of them are intended to infect ftp, web, and mail services which you probably aren't running on a workstation, although if the steam machine really takes off that may change and we may start seeing more.
I bought a new laptop about a year ago that came with avg. I installed Firefox, and then an avg update did exactly what is noted in TFA: installed the chrome extension and started to hijack my web experience. I assumed malware (which I guess it technically was). I was not happy when I discovered that avg was the culprit, and even less happy about the song and dance require to exorcise the bastard from my laptop.
Still it's hardly the first time I've experienced an antivirus program that was worse than the disease - in fact a cynic might say that all antivirus software will, over time, morph into viral nastiness.
.. "install ... whatever OS you want", even Windows ...
Install any OS but windows, at this point. Even IBM doesn't want windows anymore.
The cesspool just got a check and balance.
ban it!
...then new owners decided they're in it for the money, not customer satisfaction and a reasonable profit. So, I didn't see this; I've already migrated all my clients to Webroot...cheaper, better, and without all the self-serving pop-up messages or uninvited "adds-on" to other products and the O.S.
Webroot is a good product, albeit underdocumented (what is it with all these security companies who think their products don't need or shouldn't have Admin or User documentation???).
AVG needs its ass handed to itself in court for forcing itself upon other programs you do not authorize.
Try and block Akamai with your hosts files fool. Let me know how well that Windows system updates. Don't need to block Akamai? Remember the security updates and security compromises are hosted on the same servers now.
No protection unless the malware actually uses DNS. Proprietary software == no sources, no audits, no trust. Windows only program == limited value.
Which is what makes it a lot more dangerous. I'll just leave these here for your perusal. Oh and be sure to respond with a typical fanboy "but but but those don't count!" just like the Apple iHeads did when MacDefender came out and they went from "Apple doesn't get viruses" to "that doesn't count because its technically not a virus, its a trojan!" LOL.
ACs don't waste your time replying, your posts are never seen by me.
Is the virus.
" And if you really need windows for some program or so, start it in a VM, not connected to the internet. Problem solved."
Yes. That works really well for A-list games. Oh wait. It doesn't work at all.
Try a solution that Richard Stallman wouldn't suggest. Hmm?
"Oh my God. This is terrible. This is the end of my Presidency. I'm fucked."; ~ Donald J. Trump
IBM doesn't even make i86/ia64/etc compatible computers anymore. They sold that off to the Chinese company that bought Lenovo YEARS ago. IBM used to love OS/2, aka CONCENTRATED EVIL. I think I'll forgo IBM's opinion on the matter.
"Oh my God. This is terrible. This is the end of my Presidency. I'm fucked."; ~ Donald J. Trump
The last company I worked for before retirement had several Linux workstations that I admin'ed. The word came down from on-high that, going forward, we would have to run the Linux version of McAfee AV, being that McAfee was the decreed AV for all of our Windows systems. Being that the Windows enterprise version of McAfee, at the time (2010-ish) was a steaming pile of cow manure, I'll give you three guesses what the Linux version was... Hard to believe ANYthing could be worse than the Windows version, but there it was... I certainly could understand having an AV on Windows, but complaints about...WHY THE $#%$% DO WE HAVE TO HAVE AN AV on Linux fell on deaf ears... But I'm retired now and my Linux systems have no such requirement...
THANK YOU, Edward Snowden!! Americans owe you a debt of gratitude (whether they know it or not..)
See subject & this -> http://it.slashdot.org/comment...
* :)
(Must use the biblical references due to your username & hosts... it fits!)
APK
P.S.=> Nothing defeats truth & FACT backed by reputable sources Mike (OR ME, "The Lord of Hosts" so to speak) - not even the bogus downmods that attempt to hide my posts (since I have no posts limits due to my know-how, unlike most ac posters - so I just burn out the advertisers & inferior competitor sockpuppets modpoints reposting again for TOTAL visibility spreading the "GOOD WORD" about something that knocks the snot outta what YOU are 'preaching' boy)... apk
It is 100% your problem that you give free support.
Except the fact is that trojans aren't viruses. "antivirus" products should preferably be called malware scanners, not virus scanners.
"Transparent" is a shit show that trades on every stereotype going. A man in drag is NOT a transsexual.
Mostly to prove it can be done, I used Windows for years without any live running AV application. I even did it without a third party software firewall and used only NAT connectivity with the router handling DHCP. I would scan, once in a while, with MBAM or similar. I would check Wireshark once in a while and look for activity that I did not recognize in the logs.
It's possible. It's not even all that difficult, just don't be stupid. This was not, of course, Windows 10. I blocked scripts and whitelisted them as needed. I used ad protection extensions. I didn't download or execute unknown applications. I used a third party browser. I kept my computer up-to-date.
No, I'd not recommend that most people go that route nor am I saying everyone can. Nothing on my network exhibited any signs of malware or an intrusion. I guess the point is, you can use Windows safely without all the cruft - but you have to practice safe hex. Don't let stuff run without expressly granting it permission and knowing what it is (within reason) before allowing it to run. Use least permissions, Windows has permissions - use them. I did not use Microsoft's free AV - I did use the included Windows Firewall. I also used Acronis True Image but never, to the best of my knowledge, had to use it because of a malware infection.
It's not terribly difficult if you're willing to learn and be patient. I use Linux, exclusively even, today and am happier here than I was there. I'd always kept Linux installed on one partition or another but didn't use it nearly enough - I stopped poking in the early/mid 2000s but kept it installed and kept it up to date. I was already familiar with AIX and Solaris.
I found that I wasn't learning anything new. I'd become mentally fat and a mere consumer. So, I switched to Linux exclusively. I may go to GhostBSD next. It could be a while, I'm not yet feeling like I'm stagnating. However, I digress.
If you want to work at it and remain vigilant then you can use Windows without even an AV running constantly. If you a reasonably alert and attentive then you can do it just fine with an AV running live. Gone are the days of just being able to toss a box up on the 'net and expect it to be hacked in mere seconds or minutes.
"So long and thanks for all the fish."
" And if you really need windows for some program or so, start it in a VM, not connected to the internet. Problem solved."
Yes. That works really well for A-list games. Oh wait. It doesn't work at all.
Try a solution that Richard Stallman wouldn't suggest. Hmm?
Do you really believe Stallman would suggest this? Hahahahahahahahaha.
"Transparent" is a shit show that trades on every stereotype going. A man in drag is NOT a transsexual.
Good man. You know why. Not many of us are comfortable admitting our mistakes and learning from them. It's something I pride myself on and post lots of things hoping that people will make me find my own logical inconsistencies or to otherwise learn from them.
That said, yeah, you can buy AV for Linux. I'm not actually sure why you'd want to (unless you're worried about something in WINE getting infected or might be responsible for handing files off to others who might be infected. If I could pick one application that I'd like to see ported to Linux it would be Agnitum's Personal Firewall. Yes, you can do everything that it does with some combinations of CLI and GUI. Well, probably all in CLI if you wanted. However, their firewall is slick, highly configurable, and really damned secure (depending on who is in the chair at the desk).
Anyhow, kudos. There are many who could stand to learn from your behavior. It's good to admit your'e mistaken - it means you're learning something and willing to accept new information and change your opinion. If your reasoning isn't challenged and you're not open to doing so with as little bias as possible, then how do you know that they're logistically consistent? The easiest person for us to fool is ourselves.
"So long and thanks for all the fish."
Jewgle open sourced Chrome: it was abused made into malware that looked like it - I'm NOT THAT STUPID like how they use JAVA too (chock full of holes).
* They even ADMITTED IT today, lol -> http://developers.slashdot.org...
(They BLUNDER, I don't...)
APK
P.S.=> Call me 'spammer' all you like jewgul (that's all you've got vs. your fuckups & unstoppable hosts + me) - you fail vs. "the Lord of Hosts" & I'll let users here speak for me on that note:
"No complaints from me, I like APK's spam. Reminds me to use a host file. Also, his stuff is free." - by aaaaaaargh! (1150173) on Tuesday November 17, 2015 @09:31AM (#50947415)
I REST MY CASE... apk
Can ublock do 16 things hosts do for speed, security, & reliability:
1.) Protect vs. malicious sites (past ads)
2.) Protect vs. fastflux botnets + stop C&C talk
3.) Protect vs. dyndns botnets + stop C&C talk
4.) Protect vs. DGA botnets + stop C&C talk
5.) Protect vs. downed DNS (4 reliability)
6.) Protect vs. poisoned dns
7.) Protect vs. trackers
8.) Protect vs. spam
9.) Protect vs. phishing
10.) Protect vs. caps
11.) Get by dns blocks
12.) Keep off dns request logs
13.) Speed up surfing by adblocks & hardcoded favs
14.) Work on anything webbound multiplatform.
15.) Ez data control
16.) Block ads better than addons more efficiently
* ANSWER ="NO" to each on UBlock doing it as well or @ all + hosts = on devices natively.
APK
P.S.=> UBlock does less vs. hosts & less efficiently - hosts do MORE w/ less + Hosts start w/ the IP stack before REDUNDANT inefficient addons BEGIN to operate (as 1st resolver):
Ublock's NOT as efficient:
Hosts @ 3mb-11mb w/ current data vs. threats + ads - test yourself.
UBlock uses 63++ MB -> http://www.ghacks.net/2014/06/...
SCREENSHOT -> http://cdn.ghacks.net/wp-conte...
---
ClarityRay defeats it seeing addons used via native browser methods!
---
UBlock adds complexity/room for breakdown/exploit + from a slow mode of operation (usermode = more messagepassing overhead vs. hosts in kernelmode).
---
What's best?
APK Hosts File Engine 9.0++ SR-4 32/64-bit -> http://start64.com/index.php?o...
MalwareBytes' hpHosts Admin (MalwareBytes employee who verified its source is safe http://forum.hosts-file.net/vi... ) hosts & recommends it -> http://hosts-file.net/?s=Downl... & MalwareBytes = BEST antivirus http://www.av-test.org/en/news...
It's GUARANTEED safe & clean per it being checked by 57 antivirus programs recently in BOTH its 64-bit model https://www.virustotal.com/en/...
+
In its 32-bit model also https://www.virustotal.com/en/...
&
Its installer -> http://f.virscan.org/APKHostsF...
... apk
Can adblock+ do 16 things hosts do 4 speed, security & reliability:
1.) Protect vs. bad sites (past ads)
2.) Protect vs. fastflux botnets + stop C&C talk
3.) Protect vs. dynamic dns botnets + stop C&C talk
4.) Protect vs. DGA botnets + stop C&C talk
5.) Protect vs. downed DNS (4 reliability)
6.) Protect vs. DNS redirect poisoning
7.) Protect vs. trackers
8.) Protect vs. spam
9.) Protect vs. phish
10.) Protect vs. caps
11.) Get past dns blocks
12.) Keep off dns request logs
13.) Speed up surfing (adblock & hardcoded favs)
14.) Works on anything webbound multiplatform.
15.) EZ data control
16.) Block ads better vs. addons more efficiently
* ANSWER ="NO" on ab+ doing it as well or @ ALL + hosts = on devices natively.
APK
P.S.=> Ab+ does less vs. hosts less efficiently - hosts do MORE w/ less + Hosts start w/ IP stack before REDUNDANT inefficient addons BEGIN operation (as 1st resolver).
---
Ab+'s a 128-151mb memory hog http://cdn.ghacks.net/wp-conte... (hosts use 3-11mb w/ my program initially). Even FireFox 41 adblock eats 65++mb http://www.ghacks.net/2015/06/...
---
ClarityRay defeats it seeing addons via native browser methods!
---
Ab+'s bribed not to work by default http://www.businessinsider.com... & ABP bought out adblock http://www.theregister.co.uk/2...
---
Ab+ adds complexity in slower usermode (w/ more messagepassing overhead + context switch vs. hosts in kernelmode).
---
AdBlock's SLOWER: http://superuser.com/questions...
---
What's best?
APK Hosts File Engine 9.0++ SR-4 32/64-bit http://start64.com/index.php?o...
MalwareBytes' hpHosts Admin (MalwareBytes employee who verified its source is safe http://forum.hosts-file.net/vi... ) hosts & recommends it http://hosts-file.net/?s=Downl... & MalwareBytes = BEST antivirus http://www.av-test.org/en/news...
&
It's safe per 57 antivirus programs in BOTH its 64-bit model https://www.virustotal.com/en/...
+
a 32-bit model too https://www.virustotal.com/en/...
& Installer -> http://f.virscan.org/APKHostsF...
Learn to read: My code's been audited by the best in the malware protection industry (Malwarebytes' folks) http://forum.hosts-file.net/vi... (see bottom of the post) & he wouldn't host it minus seeing my code (OR RECOMMEND IT HIGHLY as they do).
I don't provide source so it can be abused LIKE CHROME WAS turned into a fake version of it that was malware, dumbass!
DNS? WTF??
Are you stupid???
Host-Domain names are BY FAR more utilized in malware than ip addresses are (due to fastflux malware design)! Hosts files work to BLOCK THEM @ THAT LEVEL, & firewalls rules do the rest for the rare ip address based ones...
FACT: YOU FAIL!
APK
P.S.=> Lastly, Windows IS THE MOST USED worldwide on pc desktops + servers combined AND it's most attacked- & HOSTS RUN ON ANYTHING with a normal BSD-derived IP stack (and they do far more for far less for added security, speed, reliability, & anonymity than ANY single other "so-called 'solution'" out there... especially ONES SOLD OUT TO ADVERTISERS (Ghostery, AlmostALLAdsBlocked etc.)... apk
See subject: Windows update isn't affected by hosts & bypasses hosts for it! Answer this question: Whose employ are you in that you'd even TRY such a stupid move here? Is it an advertising firm?? Is it an INFERIOR 'competitor' (hosts have no real competition from browser addons, that's certain)???
(Has to be - they're the only ones motivated enough to TRY LIE - especially advertisers. It's WHAT THEY DO!)
APK
P.S.=> If ANYONE's a FOOL here? It's clearly you - you're not fooling anyone around this website (most of them are tech-saavy enough to know better vs. bs from a FOOL like yourself)... apk
See subject:..."The Lord of Hosts" (so to speak) -> http://it.slashdot.org/comment... & http://it.slashdot.org/comment... + ALL OF MY OTHER POSTS TOO (you prove you fail in those antics alone, lol...)
* :)
(... & you KNOW it - hence the downmods on the 1st submissions of those same posts beneath yours YET NOT VALIDLY TECHNICALLY DISPROVING my points on hosts (CAN'T BE DONE) giving users MORE security, speed, reliability, & anonymity for LESS (less moving parts, ram/cpu overuse, complexity + messagepassing overheads))
Less IS more (using what you already natively have built into your IP stack) = GOOD ENGINEERING...
(You aren't preaching it...)
* "The premise is quite simple: Take something designed by nature & reprogram it to make it work for the body rather than against it..." - Dr. Alice Krippen: "I am legend".
APK
P.S.=> By "yours truly" - "The Lord of Hosts" so-to-speak:
"The image this title brings to mind is of a mighty military commander, one who can at a mere word summon rank upon rank of protective power" from https://answers.yahoo.com/ques... & THE WORD = hosts!
(Accept NO substitutes!)
...apk
If you get compromised every 6 months when fully patched then there is something really messed up with your installation. Either you use weak passwords (and passwords instead of public keys for ssh) or you have some compromised component still left on the system that is beeing utilized.
If I where you I would completely erase the machines and reinstall from scratch just to be sure.
Couple things: When you use "polack", you're actually pronouncing how it's said in polish of fellow poles & the "bros" & "paisans" iirc generally have it on us there (watermelon & pepperoni sized), "down there"... lol!
* You got me laughing on that one though...
APK
P.S.=> I don't "do" anal, & certainly NOT WITH MEN (not homosexual here) or women - it's just "not me", so... "there ya go"!
... apk
Don't use "Tune Up" type products.
Most of the time they don't do JACK SHIT.
And in the few instances where they might actually improve performance, they're likely compromising either system/application security/stability.
Plus, they're installing this additional crapware and hijacking your browsers.
FUCK.
THAT.
NOISE.
Chas - The one, the only.
THANK GOD!!!
Sadly we do not get to decide language, the general public does, and malware is a word used by tech but to the rest of the world? Its a virus no matter what form it takes. I wish it weren't so but we lost that fight, along with everyone from script kiddies to government cyberspies being called "hackers" a loooong time ago.
ACs don't waste your time replying, your posts are never seen by me.
After what I've read about you with you quoted saying it I don't believe anything a mentalcase stalker like you says http://slashdot.org/comments.p...
Your malware wants you to think so.
Only facts I've seen is you're an admitted psycho as well as a hypocrite stalker and a transexual sicko http://slashdot.org/comments.p...
"I used Windows for years without any live running AV application" Yeah, that's called using your common sense, which, ironically, it's pretty uncommon.
Oblivion Awaits
This might actually be good!
Probably mcafee runs stuff in the kernel? Then you can contact mcafee, show them the GPL, and ask the source code for their crappy software and find some way to shut it down.
Anyway, I feel for you, bro. Our enterprise is slowed down by mcAfee. It grants us half an hour of pause everyday while your computer gets scanned for threats like cookies, slows us down horribly the rest of the day, randomly crashes at least once a week, breaks the internet, and manages to get infected by cryptolockers regularly anyhow.
Even if your Chrome catches something, your AVG will surely block the threat.
There are tools which allow VMs to use the 3D graphics of a video card. It's not impossible to play a Windows-only game in the VM. You can either use PCI pass-through with KVM/libvirtd (usually, but not always, requires a 2nd video card) or you can use VirtualBox, or try running the game under WINE using Crossover.
Or do the really intelligent thing and only buy games which are cross-platform on launch day. Which is becoming more and more common as SteamOS / Project Vulkan come to market along with the use of frameworks like Unity.
There are enough games out there which run in Linux / OS X that you don't need to be a sheep and buy the OMFG new shiny that only runs on Windows. I have somewhere around 100 titles in my Steam Library that run on Linux, a dozen or two are "A-list" games.
When AVG first came out with a free anti virus that's exactly what it was. A good free, simple, low impact security scanner that kept you safe. Now it has become a worthless bloated piece of spyware that is not even close to what it should be. Anything that automatically adds poorly designed extensions to your browser is just asking for trouble. In the case of Chrome, it already has plenty of good tools built in to protect you and probably work better then anything else.
Mostly to prove it can be done, I used Windows for years without any live running AV application.
I've done the same, except I used an extremely pared down version, with almost no services running. IIRC, I was down to about 13 running processes at startup. System worked fine, only running 3rd party software. I ran no MS software on it at all. Most of all - no Windows Update. That virus downloads all kinds of crap I didn't need or want. With this setup, you don't even need a firewall, as no ports are open. After 3 years and an offline virus scan, no viruses or malware found. It should also be mentioned that it ran relatively quickly without all that cruft, with a boot time less than half of a standard windows install, meaning it was actually usable. By contrast, I have seen a Win7 Pro work laptop that takes upwards of 2 minutes to boot today, thanks to something like 67 processes getting loaded on startup. My Win7 VM starts up in less than half that time, but it's a bare installation.
I went with Fedora, Ubuntu and Mint after that which were all fine at the time, but various continuing challenges finally put me on a mac. I now run other OSes in VMs, simplifying my life significantly.
The cesspool just got a check and balance.
IBM doesn't even make i86/ia64/etc compatible computers anymore. They sold that off to the Chinese company that bought Lenovo YEARS ago. IBM used to love OS/2, aka CONCENTRATED EVIL. I think I'll forgo IBM's opinion on the matter.
OS/2 was a pretty decent system, better than Windows at the time IMNSHO, and possibly even today. But when IBM wholesale changes their employees systems away from Windows, you have to ask yourself exactly why, especially when Macs are reportedly so darn expensive (that's a hopefully dead meme by now, while you can buy a cheaper windows machine with much lower specs, equivalent machines are more than competitive) You should also ask yourself why IBM would do so just when the next greatest OS release from MS was about to drop, complete with its "live update" process that you can't opt out of. <-- yes, that's rhetorical
The cesspool just got a check and balance.
There is no virus other then proof of concept for Linux.
Of course there is.
The only product WORSE than Norton.
You should also ask yourself why IBM would do so just when the next greatest OS release from MS was about to drop, complete with its "live update" process that you can't opt out of.
Are you saying IBM's IT department was too stupid to use WSUS or even to set delayed updates through GPO and use another solution?
Yes, updates are forced on Windows 10 Home users, as it has been proven time and again that they are incapable of managing updates. Don't like the automatic updates, spring for the Pro edition or setup a domain.
APK likes to ask for responses to the same things over and over. Maybe he just likes the responses?
I was thinking you would link to a Bash script that just does an obfuscated "rm -r /" or "dd -i /dev/random -o /dev/sda1"
(I think I have that dd correct, not really a big user of dd, and don't feel like looking it up)
APK likes to ask for responses to the same things over and over. Maybe he just likes the responses?
LOL, she is less of a psycho stalker than you apparently, as you chose to interject on a totally unrelated thread about her.
Also, APK, you are the AC stalker extraordinaire, who are you to try and claim that she was AC stalking you?
There is good reason for people to post AC in response to you. You take every and all criticism personally, and won't admit when you are wrong. You also spam flood any dissenting opinions, even when every one of your points has been refuted. You are the ultimate in psychopathic stalkers, and you are complaining that Barbara suggested that people post AC in response to you?
You gonna start up on me again? I LOVE the attention.
APK likes to ask for responses to the same things over and over. Maybe he just likes the responses?
Than get Trend Micro Server protect. Trend Micro's virus scanner on Windows installs plugins into browsers as well, but it works as you describe. I doubt their Linux virus scanner does the same thing, as Linux is thought of as a server OS only by them.
http://www.trendmicro.com/us/e...
It doesn't matter what Linux compatible virus scan you choose, it is your choice.
https://www.linux.com/news/sof...
APK likes to ask for responses to the same things over and over. Maybe he just likes the responses?
"the secretary at MalwareBytes took a look at his source code and said it looked all good to them" - by Coren22 (1625475) on Wednesday November 18, 2015
My code went thru verification by Mr. Steven Burn of Malwarebytes' hpHosts
hpHosts Site Admin Mr. Steven Burn quoted:
"I've been asked to further clarify so for the record yes I've seen the code, and yes, it is safe."
FROM http://forum.hosts-file.net/vi...
(On my latest 9.0++ code engine above & from past versions -> http://slashdot.org/comments.p... )
A competent coder & BEST security researcher I know of FROM THE BEST ANTIMALWARE THERE IS http://www.av-test.org/en/news...
NOT a secretary!
I don't give away work to be stolen OR misused like GOOGLE CHROME http://it.slashdot.org/story/1...
---
"won't demonstrate security of his product be exposing the source" - by Coren22 (1625475) on Wednesday November 18, 2015
Bullshit: 62 reputable sources + /. users say different:
Safe by 57 antivirus programs in 64-bit model https://www.virustotal.com/en/...
+
the 32-bit model https://www.virustotal.com/en/...
&
Per VirScan (installer too)-> http://f.virscan.org/APKHostsF...
MalwareBytes' hpHosts Admin (MalwareBytes employee) hosts & recommends it -> http://hosts-file.net/?s=Downl... & MalwareBytes = BEST antivirus per this VERY recent testing of them all http://www.av-test.org/en/news...
APK
P.S.=> Eat your words, scumbag:
Tell us about AD + DNS too while you're @ it & how you said I said not to run DNS when I use it myself & said to NOT use external to network DNS with AD http://slashdot.org/comments.p...
OR
About how my program NEEDS admin privelege to update too (& it doesn't http://slashdot.org/comments.p... )
LOL... fool - 'eat your words' on ALL those accounts chump!
... apk
Yeah, that's a very valid addition. If you're not using services then turn them off. Err... It's been a while but I think you loaded that with just services.msc from the prompt. If you don't know what the service is, use a search engine. You can use manual and, well sometimes, it will start the service when you do something that invokes the service or you can disable it.
As for Linux... Well, I think I tried *all* of them. Not quite but every single one in the top 20 at DistroWatch. Plus a bunch more. VM on VM on VM and just so many. I don't really have a favorite except I'm kind of partial to LXDE and the Ubuntu ecosystem so I use Lubuntu and Mint Cinnamon as Cinnamon isn't bad either. Sometimes, I don't even install the OS but just run it from a Live USB. It's not like I don't have enough RAM. With enough RAM and being patient to let it load, it actually gets pretty speedy in a Live USB environment - for what I'm often doing (which is absolutely as little as possible 'cause I'm old like that).
That and manually updating instead of automatic updating windows helped. I manually kept up on the updates for Windows and for the various apps. I'd update as needed. I'd scan, usually once a week but I didn't always remember, and check. I didn't do anything like banking on the computer - I never do. I never will. Even with the best security practices that I can manage, there's no incentive for me to bank online. Errr... To credit union online perhaps? Well, I do have a few bank accounts but i digress.
It takes some work, at first, to really figure out how you'll attack the problem. I think we've pretty much covered the ideas if not the individual things. Since switching to using Linux exclusively, I no longer feel as if my brain is turning to mush. I feel a day without learning is a day without growth and if I'm not growing them I'm not improving. I like to improve. I like to learn. I like to grow. 'Tis one of the reasons that being wrong doesn't bug me much. So long as I'm still wrong, I've got room to improve.
"So long and thanks for all the fish."
See subject? It's true. You made it true stupid http://slashdot.org/comments.p... and as far as Barb? "It" is a damn lying hypocritical sick in the head piece of online trash... one I even *TRIED* to make peace with (several times, & most recently also).
You're BOTH scum and weak. Prove otherwise. You can't.
---
As far as BEING "WRONG"?
DUMBFUCK, all ANYONE HAS TO DO is look @ the link I posted above or other reply I posted to you... who's wrong??
You are menial. Badly.
You attacked me on hosts - I destroyed you, publicly, for it... prove otherwise. It's up there in black & white after all stupid.
APK
P.S.=> I've also noted YOU "suddenly appear" to "defend 'IT'" quite often... why's that? Family?? Ex-girlfriend of yours (ugh, the thought of THAT)??? OR are you another sockpuppet 'alterego' of Barb/Tom's???? Fuck off scumbag... get that????? You're BOTH TRASH... apk
See subject: BarbaraHudson says ac = bad http://slashdot.org/comments.p... yet does stalking by ac of myself http://slashdot.org/comments.p... ... & he/she's been STALKING ME by ac posts ever since (obviously a butthurt sicko), see above. Everyone knows that's been going on my way for awhile & just plain blew that sick fuck tom/barb off years ago, forgetting HE/SHE was doing it long ago.
She out of nowhere one day came into a post where I proved someone wrong on USB in Windows FIRST TIME I MET "IT" (Frank N. Furter sicko tranny BarbaraHudson/TomHudson) & said "APK is a know nothing with no industry experience" years ago AND I BLEW HER DOORS OUT FOR IT -> http://slashdot.org/comments.p...
He/She said "I was at this & that tradeshow & my work did great: BUT WHEN ASKED TO PROVE IT? ZERO... lol!
Top that all off with the fact the sick in the head FREAK likes starting trouble on this site too http://slashdot.org/comments.p...
I HAVE NO DOUBT NOW YOU ARE THE ONE AC POST STALKING ME HERE FOR YEARS NOW along with mass downmodding my posts since I showed you can't prove my posts on hosts wrong from the get go... you pitiful loser.
What I've posted here alone is only a FRACTION of the bullshit you pull on myself (& others).
APK
P.S.=> You PITIFUL sick in the head psycho "TraNzTesTicLe" weirdo http://images2.wikia.nocookie....
You've ADMITTED not ONLY that you're a sicko tranny but really mentally ill -> http://slashdot.org/journal/15...
The top of the post shows what a lying fuck you are... the rest of what I put up shows you're a disgusting whacko too... apk
Same thing with "hackers". Pity.
"Transparent" is a shit show that trades on every stereotype going. A man in drag is NOT a transsexual.
You should also ask yourself why IBM would do so just when the next greatest OS release from MS was about to drop, complete with its "live update" process that you can't opt out of.
Are you saying IBM's IT department was too stupid to use WSUS or even to set delayed updates through GPO and use another solution?
Yes, updates are forced on Windows 10 Home users, as it has been proven time and again that they are incapable of managing updates. Don't like the automatic updates, spring for the Pro edition or setup a domain.
I guess you didn't read the policy pieces where MS said yes, you can delay updates, but only for 3 months, max? That has since been extended to a max of 12 months due to massive backlash, but you will update, whether you want to or not if you're running Win10. You no longer own your own installation, MS does. You only get to manage the delays for updates within a 12 month window. That would be concerning to any business, IMNSHO.
The cesspool just got a check and balance.
dd if=/dev/random of=/dev/sda1
dd has fairly unique syntax; I've seen -i and -o in a lot of multimedia encoders, but I don't think I've seen if= and of= anywhere else.
Where there is no pride there is nothing to crush. Coren22 has none obviously and no accomplishments either... & how many times have YOU "mysteriously popped up" to troll me sockpuppet? Should I list them?? On hosts too & more???
Fuck off.
You little delusional idiots around here with your "fake names" online? No integrity or honor... no accomplishments in computing either - see my 1st line above - it describes YOU too scumbag.
APK
P.S.=> You're just another DO NOTHING fucking "ne'er-do-well" troll I suspect is like much else around here - a fake sockpuppet (probably Coren22's since you're so vigorously 'defending' him & he has nothing WORTH defending in this art & science of computing)... apk
See subject & where's "Coren22" now vs. this? http://slashdot.org/comments.p...
He's not... "Gosh GOLLY GEE, Barb? Why not??" lol... read the link & what HE said, & tell me another one.
Truth & fact Barb - it kills scumbag trolls like Coren22. He's nothing more than a LITTLE JACKASS worm. He's welcome to prove otherwise, by proving me wrong (never GOING to happen & that little libelous shit has to live with that fact now)
APK
P.S.=> He attacked me, I smoked his ass... no questions asked - he doesn't LIKE that? He can try it again & I'll double my pleasure by busting him in 1/2 again... he runs, & is a 'fake name' jerkoff do nothing in computing menial who VAINLY tried 'taking me on' & lost, like most here (you are excluded on THAT much at least)... apk
For fuck's sake, just die already. Go join ISIS or something more in tune with your fanaticism.
You started with him Coren22. He finished you for it with your own technical blunders http://slashdot.org/comments.p...