IMHO, this is one thing they really need to look into fixing to keep up with what threats are out there.
It doesn't matter if they use SELinux or AppArmor. Just use something to limit the context things run in so even if something like Apache gets compromised, even with a way to UID 0, the mischief they can do is limited, be it to a directory or filesystem, or to only a segment of process space.
One thing I like is how sandboxie works on Windows -- a sandboxed program would have a list of executables (either explicitly specified, or via directory wildcards) that it can run, and this would include what context the process would run under (be it SUID root, user, or another user). Attempts to run anything else under a different context would be blocked. That way, if the apache binary tried to run the/bin/passwd command, it would be blocked.
This gets me wondering if mixed right, biogas can be used in a diesel engine. There was a blog I read a while back about someone managing to get a mixture of 80% biogas and 20% diesel fuel to work in a generator.
If this could be refined, the usual conventional anti-particulate (DEF, DPF) and some anti-sulphur methods could be used.
Even more interesting would be if Hamworthy could get their biogas liquification technology out worldwide. In liquid form, it would be a lot more useful, especially for vehicles.
If I were a betting person, I'd say the reason why it was built for 64 bit architectures is because most servers use more than 4GB of RAM, which is the limit for 32 bit operating systems. I could be completely wrong on all counts though.
The rootkit is half the battle as TFA says... what gets me really wondering is the exploit they used to get unfettered root access, especially if SELinux is enabled and enforcing.
The best short term defense against this? A monolithic kernel that has all modules compiled in, and has module loading disabled. Of course, this loses a lot of functionality.
Long term, maybe the best defense would be to take the TE (trustchk) system from AIX (which can be configured to not run any binaries that are not in a signed database), have signed kernel modules, and use a TPM + LUKS to ensure that if there is tampering, the boot process stops because there is no key to mount the root filesystem. Yes, TPM is a double-edged sword, but it does do well in guarding against these types of attacks.
If one is a paid user, there is no mandatory wait for people to download uploaded items. However, if one had a free user account, there is one.
For what they provide, the subscription fee is worth it, since there are no ads for downloaders.
Yes, it is a no brainer to spin up an Apache server, but for the same functionality, I can have the files hosted on a faster pipe for far less money and time.
Schools are a microcosm of life. Someone obviously brighter or sticking out brings out the "OMG, threat" response in others.
This is why some of the smartest people I know coming out of high schools [1], tend to be able to pretend like they are morons. This is a survival trait; pretending to be dumber than dirt means that others go after someone else. Someone who is perceived as a dumb stoner (without being nailed for possession, obviously) will likely have a less chance of a vandalized car than someone who ignores peers and only interacts with teachers and admin staff.
The problem then becomes turning off the "dumb mode" when it comes to college interviews, where one needs to prove that they should be allowed in.
[1]: These days, a good option that a very smart high school student stuck in US public schools can do would be to take the SAT, get a good score, then drop out of HS, and get a GED and the HS equivilency.
First, I'd like the OS to prompt for a full password on bootup. This ensures that someone expecting they can reset the device ends up not just dealing with a 4 digit PIN, but a much longer passphrase before they can use the device.
Second, app functionality that can be run from the lock screen. This way, I can tinker with the playlist, read from the Cracked app, or look at a calendar. The apps would work in a restricted context there. If I wanted to add an entry, then I'd have to unlock and run the app.
Third, have extended password protection be part of the OS. One can sort of do this with iOS and locking out restrictions, but that then has to be turned off when the app needs to be used, then back on.
Offer options where the protection can be a common PW across all "enhanced security" apps, or each app can have its own separate PIN/password/passphrase. Then, if it is guessed wrong too many times, the app is deleted, and its data overwritten. The OS could even use a volume key similar to TrueCrypt and create loopback mounts with the passphrase unlocking that, and on erase, ensuring the volume key is unrecoverable.
Another feature of selective protection is the ability to remotely just zap those applications with the high security data, but keep everything else. Someone's progress in Angry Birds is less of an issue than the stuff stored in an Exchange mail client or a banking app. It also allows the user to still be able to track the phone via GPS while making sure sensitive data is rendered permanently inaccessible to the would-be thief.
The ironic thing is that this can be easily addressed.
All modern ARM chips have the ability to run multiple "worlds", one secure, one insecure. It would be nice to have the ability to have a secure world just for credit card payments, having it use two forms of authentication on that app (face, fingerprint, and/or PIN.) Then, the other world would have the usual phone apps. This way, even if a thief gets the phone and it is unlocked, the critical banking stuff is protected at a low level, and too many guesses at the PIN will result in the partition with the Square or PayPal app getting erased.
On a more general level, it would allow a device to have one partition for work stuff, one for home.
This is why that business critical stuff does work with more than one data center. There is only so much that can be done at one location.
Yes, the generator may fire up, but even when the diesel tank is full, assuming no trucks available to refill it, how long will it last, especially if power is out for weeks. There is always the ability to use natural gas for a generator, but on a DC level, it would take some large pipes to handle the gas coming in, and this assumes the lines are pressurized.
Having multiple data centers that are geographically separate as well as some replication system [1] is a must for an enterprise.
If I owned a data center, I'd put in the expense and effort into what tier I was doing (including excercising the generator and actually testing the ATS mechanisms), then I'd tell customers that if they wanted more reliability, to look for an additional data center and WAN clustering. Then, have the lawyers write up the SLA with the usual "hurricane/terrorist/acts of war/acts of Thor/etc." disclaimers, and call it done.
[1]: Databases can replicate, Netbackup has AIR, most SANs like EMC's VNX have replication for both LAN/WAN, and if one wants to be really ghetto, using the Dropbox software can replicate document changes and stash them offsite. Of course, there is active HA/failover as well, such as PowerHA or vMotion.
I like the Metro app idea because the apps are running in a greatly restricted user context. However, it would be nice to run them windowed, with the buttons and such scalable, or at least a scale of 1x, 2x, etc.
As for security features, one reason I keep with the latest version of Windows is that security is improved. Even Vista is significantly more secure than XP, W7 is somewhat of an improvement over Vista, and W8 mainly has evolutionary features (such as encrypting just used data in BitLocker, so I can have an empty disk encrypted and ready for use without having to have everything read/rewritten.)
Having MSE part of the OS is a good thing except for the hosts file bit. It means that non zero days have a more often chance of getting detected and removed, as opposed to the monthly run of MSRT.
OS-wise, for all but the UI, it is an upgrade.
On the server side, Windows Server 2012 is nice upgrade from the 2008 version. Having the ability to deduplicate is nice, and the new ReFS filesystem is decent. It isn't ZFS, but the added CRC checking is a good thing, and hopefully MS will add support for deduplication and other items to it.
There are legit uses for the download sites. I pay and keep a membership with one because it offers links which are one-click downloads for the receivers. This I use for an acting troupe I'm in to store documents, as well as MP3 files of presentations. Yes, I could use YouTube, but for something which is intended only for a private group, I much rather have it in a place where I control, so I can respect the wishes of the presenters. With the downloads only coming from one authorized site that I have access to, I can pretty much guarentee that their stuff only stays within the group, and nowhere else, barring someone else divulging links.
Yes, I could host them from my domain's web page, but that means I would have to get off my duff, actually spin up a Web server, point DNS at it, and create a Web presence, as opposed to just using the domain for E-mail as I do now.
I don't have mod points, else you would more than deserve your full five on this topic.
One thing that happens as one gets older is their bullshit tolerance goes down.
Take a person, stick them in a call center for PC support, have people sacked by their badges not working, or have them physically dragged out by security, force them them to have "optional" OT (which means that if they don't take it, the CC will not buy out the contract from the crummy temp agency, and anyone on the temp agency rolls for more than 90 days gets shown the door), have to wear a full-on suit just to sit on the phones (since the people were offshore), have every single call second-guessed [1] and penalties assigned, and offer zero benefits other than the job takes up space on a resume. A 20-something would do this, as they don't know better. After 30-40, unless there was absolutely nothing else out there, the older guys will laugh in the hiring manager's face and tell them to just cut the BS and walk out the door.
There is an age where commutes are wearing (especially after knowing that eventually you will be in a wreck, so the less one is on the road the better), health insurance is a concern, there are family issues, and one realizes life is just too short to deal with that, even if it means a radical change in lifestyle.
It isn't about working hard; as one gets older, it becomes about working smart, especially as retirement age looms ahead.
[1]: There is always the time item. Explain something clearly to someone, you get yelled at for being too long on the phone. Get them off the phone and they call in on the same item, you get yelled at because you were too "stupid" to do it right the first time. The constant whipcracking on phone stats is a good way a company can guarantee zero employee loyalty.
1: It is used often for secondary authentication. If my main smartphone dies and I switch SIM cards, I can still log into banking and transaction sites, even if I'm using the $14 Nokia prepaid special with my existing SIM card stuffed in it. If I'm using an app, then I'm screwed for the most part if my smartphone breaks.
2: It is the lowest common denominator for messaging. If a phone has GSM, it will accept text messages.
3: They have a very high chance of being delivered, even if other data-based Internet messaging is down. This point was driven home here in Austin when my cell phone's network was unusable (100,000 Formula 1 fans with cellphones tend to tax towers.) SMS messages got through without issue.
One can compare SMS to Facebook messaging. SMS tends to work from device to device. FB requires a full network stack, connectivity to their servers, SSL, and a lot more infrastructure to same the "WTF LOL" text.
4: Yes, they are insecure, but they offer a decent second channel. What would help security would be OpenPGP packets that span multiple messages.
There are some evolutionary improvements to W8, although Metro seems to kill workflow. The idea of Metro apps with limited access to the filesystem, user context, and resources is a good thing.
Had MS gave an option to just have the backlevel UI and a good mechanism for Metro stuff, W8 would have been a lot more palatable, and would be able to easily compete on merit, just for the added security that having apps in their own cubbyholes provides.
Other companies that sell your info already have access, either via ad servers and cross-domain persistant tracking mechanisms, or tracking the order your fonts are in (which is different on every machine.)
As for raw traffic, most sites (Slashdot is in this) use, or have the option to use SSL for all traffic. This doesn't prevent all attacks, but it ups the ante, and prevents someone from just casually building up a data mine by passive packet sniffing.
This can be argued. CDMA has its good points. Towers cover a larger area is one of the main things.
However, here in the US where carriers don't use R/UIM cards, there is no such thing as phone portability. I can use a GSM phone from Europe on a US network without issue. It may end up at EDGE speeds, but it still is usable. As far as I know, both Sprint and Verizon will not allow any devices on their network that they did not sell. Then, there is the SIM card item. I switch SIM cards, (perhaps using an adapter, thanks to Apple's multiple sizes), and I can use any phone on a GSM network. With CDMA, I have to call and beg the telco to allow them to change phones.
The point is moot though... once LTE/LTE Advanced become standard, the differences between GSM and CDMA will be as in the past as dealing with AMPS or TDMA.
From what I know, it would be a major gain for Google, but there are FCC regs in place that prevent a company that owns a telco from making their own phones, so Google would have to either spin Moto Mobility off, or do a stock swap and keep T-Mo as an independant entity.
I thought that LTE would bring about the complete integration of voice and data because both went over one protocol. However, on US CDMA networks, even an LTE phone has to drop network connectivity if a person wants to deal with a voice call. Hopefully LTE Advanced will take care of this.
Google is already the focus of antitrust investigations in both the US and Europe. I doubt they would do something like this (which can be found with just some basic latency testing.)
One thing I wish someone could make would be an app that uses the OpenPGP format that could piggyback on top of SMS using multiple messages, or even MMS.
As another alternative would be a key negotation and using a session key, changing it out every so often via a Diffie-Hellman key exchange. Of course, one would have to make sure of the veracity of the public key, but that can be done with fingerprints, or even using a PGP WoT.
Isn't that already done? Carrier IQ was something that was a subject of more than a few Slashdot discussions.
Given a choice between data mined and charged reasonable fees versus data mined and charged obnoxious fees, I'll take the former.
Similar with Google's ads. At least the chance of getting malware through their system of text ads is extremely low compared to other ad networks which may have stuff to exploit browser add-ons.
Even if I wind up with a dual-SIM phone which is common in China and other regions, flipping between Google's service and one of the four mustache-twirlers if there is no Google presence, having them as a wireless player would be a good thing.
Just the ability to use the device for data transfers without heavy fees is an a major boon here in the US. If I transfer 1TB of data over most carriers, I'll get a $10,000 or $20,000 bill the next month.
Of course, with Google Voice and a fast proxy, I would have a phone number that works anywhere, no matter what.
I was looking at a heavily discounted HP box on sale, and the one review of the model on Amazon stated exactly this -- it only booted Windows and nothing else.
If PC makers sell boxes that only boot Windows, they need to both put a warning that functionality has been deliberately limited/crippled, and give the customer a steep discount for shipping equipment that deliberately only functions in a limited context.
This isn't a knock against MS... if a PC is limited to any OS, that is a deliberate de-functioning of the hardware and should be labeled and warned about.
Apple and Android use different anti piracy mechanisms.
Android has two mechanisms, both the individual device encryption with the forward lock mechanism, as well as the LVL mechanism that codes in a license check. The advantage of this is that a device can be rooted, and still be protected, both from malicious apps [1], and unauthorized copying.
iOS depends on the jailbreak status. With iPhones, it is all or nothing -- either the phone isn't jailbroken where all its security is working, or it is, and none of it is operable.
[1]: This is factoring out apps that ask for every permission via the Play Store... I still think Google needs a tier where they actively approve apps like Amazon does, and users have to click on something in order to step into Mordor and use the non-vetted apps.
Slashdot Mirror
IMHO, this is one thing they really need to look into fixing to keep up with what threats are out there.
It doesn't matter if they use SELinux or AppArmor. Just use something to limit the context things run in so even if something like Apache gets compromised, even with a way to UID 0, the mischief they can do is limited, be it to a directory or filesystem, or to only a segment of process space.
One thing I like is how sandboxie works on Windows -- a sandboxed program would have a list of executables (either explicitly specified, or via directory wildcards) that it can run, and this would include what context the process would run under (be it SUID root, user, or another user). Attempts to run anything else under a different context would be blocked. That way, if the apache binary tried to run the /bin/passwd command, it would be blocked.
This gets me wondering if mixed right, biogas can be used in a diesel engine. There was a blog I read a while back about someone managing to get a mixture of 80% biogas and 20% diesel fuel to work in a generator.
If this could be refined, the usual conventional anti-particulate (DEF, DPF) and some anti-sulphur methods could be used.
Even more interesting would be if Hamworthy could get their biogas liquification technology out worldwide. In liquid form, it would be a lot more useful, especially for vehicles.
If I were a betting person, I'd say the reason why it was built for 64 bit architectures is because most servers use more than 4GB of RAM, which is the limit for 32 bit operating systems. I could be completely wrong on all counts though.
The rootkit is half the battle as TFA says... what gets me really wondering is the exploit they used to get unfettered root access, especially if SELinux is enabled and enforcing.
The best short term defense against this? A monolithic kernel that has all modules compiled in, and has module loading disabled. Of course, this loses a lot of functionality.
Long term, maybe the best defense would be to take the TE (trustchk) system from AIX (which can be configured to not run any binaries that are not in a signed database), have signed kernel modules, and use a TPM + LUKS to ensure that if there is tampering, the boot process stops because there is no key to mount the root filesystem. Yes, TPM is a double-edged sword, but it does do well in guarding against these types of attacks.
It isn't MPD... just call it a type 2 mental hypervisor.
If one is a paid user, there is no mandatory wait for people to download uploaded items. However, if one had a free user account, there is one.
For what they provide, the subscription fee is worth it, since there are no ads for downloaders.
Yes, it is a no brainer to spin up an Apache server, but for the same functionality, I can have the files hosted on a faster pipe for far less money and time.
Schools are a microcosm of life. Someone obviously brighter or sticking out brings out the "OMG, threat" response in others.
This is why some of the smartest people I know coming out of high schools [1], tend to be able to pretend like they are morons. This is a survival trait; pretending to be dumber than dirt means that others go after someone else. Someone who is perceived as a dumb stoner (without being nailed for possession, obviously) will likely have a less chance of a vandalized car than someone who ignores peers and only interacts with teachers and admin staff.
The problem then becomes turning off the "dumb mode" when it comes to college interviews, where one needs to prove that they should be allowed in.
[1]: These days, a good option that a very smart high school student stuck in US public schools can do would be to take the SAT, get a good score, then drop out of HS, and get a GED and the HS equivilency.
Seconded (thirded).
First, I'd like the OS to prompt for a full password on bootup. This ensures that someone expecting they can reset the device ends up not just dealing with a 4 digit PIN, but a much longer passphrase before they can use the device.
Second, app functionality that can be run from the lock screen. This way, I can tinker with the playlist, read from the Cracked app, or look at a calendar. The apps would work in a restricted context there. If I wanted to add an entry, then I'd have to unlock and run the app.
Third, have extended password protection be part of the OS. One can sort of do this with iOS and locking out restrictions, but that then has to be turned off when the app needs to be used, then back on.
Offer options where the protection can be a common PW across all "enhanced security" apps, or each app can have its own separate PIN/password/passphrase. Then, if it is guessed wrong too many times, the app is deleted, and its data overwritten. The OS could even use a volume key similar to TrueCrypt and create loopback mounts with the passphrase unlocking that, and on erase, ensuring the volume key is unrecoverable.
Another feature of selective protection is the ability to remotely just zap those applications with the high security data, but keep everything else. Someone's progress in Angry Birds is less of an issue than the stuff stored in an Exchange mail client or a banking app. It also allows the user to still be able to track the phone via GPS while making sure sensitive data is rendered permanently inaccessible to the would-be thief.
The ironic thing is that this can be easily addressed.
All modern ARM chips have the ability to run multiple "worlds", one secure, one insecure. It would be nice to have the ability to have a secure world just for credit card payments, having it use two forms of authentication on that app (face, fingerprint, and/or PIN.) Then, the other world would have the usual phone apps. This way, even if a thief gets the phone and it is unlocked, the critical banking stuff is protected at a low level, and too many guesses at the PIN will result in the partition with the Square or PayPal app getting erased.
On a more general level, it would allow a device to have one partition for work stuff, one for home.
This is why that business critical stuff does work with more than one data center. There is only so much that can be done at one location.
Yes, the generator may fire up, but even when the diesel tank is full, assuming no trucks available to refill it, how long will it last, especially if power is out for weeks. There is always the ability to use natural gas for a generator, but on a DC level, it would take some large pipes to handle the gas coming in, and this assumes the lines are pressurized.
Having multiple data centers that are geographically separate as well as some replication system [1] is a must for an enterprise.
If I owned a data center, I'd put in the expense and effort into what tier I was doing (including excercising the generator and actually testing the ATS mechanisms), then I'd tell customers that if they wanted more reliability, to look for an additional data center and WAN clustering. Then, have the lawyers write up the SLA with the usual "hurricane/terrorist/acts of war/acts of Thor/etc." disclaimers, and call it done.
[1]: Databases can replicate, Netbackup has AIR, most SANs like EMC's VNX have replication for both LAN/WAN, and if one wants to be really ghetto, using the Dropbox software can replicate document changes and stash them offsite. Of course, there is active HA/failover as well, such as PowerHA or vMotion.
I like the Metro app idea because the apps are running in a greatly restricted user context. However, it would be nice to run them windowed, with the buttons and such scalable, or at least a scale of 1x, 2x, etc.
As for security features, one reason I keep with the latest version of Windows is that security is improved. Even Vista is significantly more secure than XP, W7 is somewhat of an improvement over Vista, and W8 mainly has evolutionary features (such as encrypting just used data in BitLocker, so I can have an empty disk encrypted and ready for use without having to have everything read/rewritten.)
Having MSE part of the OS is a good thing except for the hosts file bit. It means that non zero days have a more often chance of getting detected and removed, as opposed to the monthly run of MSRT.
OS-wise, for all but the UI, it is an upgrade.
On the server side, Windows Server 2012 is nice upgrade from the 2008 version. Having the ability to deduplicate is nice, and the new ReFS filesystem is decent. It isn't ZFS, but the added CRC checking is a good thing, and hopefully MS will add support for deduplication and other items to it.
There are legit uses for the download sites. I pay and keep a membership with one because it offers links which are one-click downloads for the receivers. This I use for an acting troupe I'm in to store documents, as well as MP3 files of presentations. Yes, I could use YouTube, but for something which is intended only for a private group, I much rather have it in a place where I control, so I can respect the wishes of the presenters. With the downloads only coming from one authorized site that I have access to, I can pretty much guarentee that their stuff only stays within the group, and nowhere else, barring someone else divulging links.
Yes, I could host them from my domain's web page, but that means I would have to get off my duff, actually spin up a Web server, point DNS at it, and create a Web presence, as opposed to just using the domain for E-mail as I do now.
I don't have mod points, else you would more than deserve your full five on this topic.
One thing that happens as one gets older is their bullshit tolerance goes down.
Take a person, stick them in a call center for PC support, have people sacked by their badges not working, or have them physically dragged out by security, force them them to have "optional" OT (which means that if they don't take it, the CC will not buy out the contract from the crummy temp agency, and anyone on the temp agency rolls for more than 90 days gets shown the door), have to wear a full-on suit just to sit on the phones (since the people were offshore), have every single call second-guessed [1] and penalties assigned, and offer zero benefits other than the job takes up space on a resume. A 20-something would do this, as they don't know better. After 30-40, unless there was absolutely nothing else out there, the older guys will laugh in the hiring manager's face and tell them to just cut the BS and walk out the door.
There is an age where commutes are wearing (especially after knowing that eventually you will be in a wreck, so the less one is on the road the better), health insurance is a concern, there are family issues, and one realizes life is just too short to deal with that, even if it means a radical change in lifestyle.
It isn't about working hard; as one gets older, it becomes about working smart, especially as retirement age looms ahead.
[1]: There is always the time item. Explain something clearly to someone, you get yelled at for being too long on the phone. Get them off the phone and they call in on the same item, you get yelled at because you were too "stupid" to do it right the first time. The constant whipcracking on phone stats is a good way a company can guarantee zero employee loyalty.
A number of reasons.
1: It is used often for secondary authentication. If my main smartphone dies and I switch SIM cards, I can still log into banking and transaction sites, even if I'm using the $14 Nokia prepaid special with my existing SIM card stuffed in it. If I'm using an app, then I'm screwed for the most part if my smartphone breaks.
2: It is the lowest common denominator for messaging. If a phone has GSM, it will accept text messages.
3: They have a very high chance of being delivered, even if other data-based Internet messaging is down. This point was driven home here in Austin when my cell phone's network was unusable (100,000 Formula 1 fans with cellphones tend to tax towers.) SMS messages got through without issue.
One can compare SMS to Facebook messaging. SMS tends to work from device to device. FB requires a full network stack, connectivity to their servers, SSL, and a lot more infrastructure to same the "WTF LOL" text.
4: Yes, they are insecure, but they offer a decent second channel. What would help security would be OpenPGP packets that span multiple messages.
There are some evolutionary improvements to W8, although Metro seems to kill workflow. The idea of Metro apps with limited access to the filesystem, user context, and resources is a good thing.
Had MS gave an option to just have the backlevel UI and a good mechanism for Metro stuff, W8 would have been a lot more palatable, and would be able to easily compete on merit, just for the added security that having apps in their own cubbyholes provides.
Other companies that sell your info already have access, either via ad servers and cross-domain persistant tracking mechanisms, or tracking the order your fonts are in (which is different on every machine.)
As for raw traffic, most sites (Slashdot is in this) use, or have the option to use SSL for all traffic. This doesn't prevent all attacks, but it ups the ante, and prevents someone from just casually building up a data mine by passive packet sniffing.
This can be argued. CDMA has its good points. Towers cover a larger area is one of the main things.
However, here in the US where carriers don't use R/UIM cards, there is no such thing as phone portability. I can use a GSM phone from Europe on a US network without issue. It may end up at EDGE speeds, but it still is usable. As far as I know, both Sprint and Verizon will not allow any devices on their network that they did not sell. Then, there is the SIM card item. I switch SIM cards, (perhaps using an adapter, thanks to Apple's multiple sizes), and I can use any phone on a GSM network. With CDMA, I have to call and beg the telco to allow them to change phones.
The point is moot though... once LTE/LTE Advanced become standard, the differences between GSM and CDMA will be as in the past as dealing with AMPS or TDMA.
From what I know, it would be a major gain for Google, but there are FCC regs in place that prevent a company that owns a telco from making their own phones, so Google would have to either spin Moto Mobility off, or do a stock swap and keep T-Mo as an independant entity.
I thought that LTE would bring about the complete integration of voice and data because both went over one protocol. However, on US CDMA networks, even an LTE phone has to drop network connectivity if a person wants to deal with a voice call. Hopefully LTE Advanced will take care of this.
Google is already the focus of antitrust investigations in both the US and Europe. I doubt they would do something like this (which can be found with just some basic latency testing.)
One thing I wish someone could make would be an app that uses the OpenPGP format that could piggyback on top of SMS using multiple messages, or even MMS.
As another alternative would be a key negotation and using a session key, changing it out every so often via a Diffie-Hellman key exchange. Of course, one would have to make sure of the veracity of the public key, but that can be done with fingerprints, or even using a PGP WoT.
Isn't that already done? Carrier IQ was something that was a subject of more than a few Slashdot discussions.
Given a choice between data mined and charged reasonable fees versus data mined and charged obnoxious fees, I'll take the former.
Similar with Google's ads. At least the chance of getting malware through their system of text ads is extremely low compared to other ad networks which may have stuff to exploit browser add-ons.
Even if I wind up with a dual-SIM phone which is common in China and other regions, flipping between Google's service and one of the four mustache-twirlers if there is no Google presence, having them as a wireless player would be a good thing.
Just the ability to use the device for data transfers without heavy fees is an a major boon here in the US. If I transfer 1TB of data over most carriers, I'll get a $10,000 or $20,000 bill the next month.
Of course, with Google Voice and a fast proxy, I would have a phone number that works anywhere, no matter what.
I was looking at a heavily discounted HP box on sale, and the one review of the model on Amazon stated exactly this -- it only booted Windows and nothing else.
If PC makers sell boxes that only boot Windows, they need to both put a warning that functionality has been deliberately limited/crippled, and give the customer a steep discount for shipping equipment that deliberately only functions in a limited context.
This isn't a knock against MS... if a PC is limited to any OS, that is a deliberate de-functioning of the hardware and should be labeled and warned about.
Apple and Android use different anti piracy mechanisms.
Android has two mechanisms, both the individual device encryption with the forward lock mechanism, as well as the LVL mechanism that codes in a license check. The advantage of this is that a device can be rooted, and still be protected, both from malicious apps [1], and unauthorized copying.
iOS depends on the jailbreak status. With iPhones, it is all or nothing -- either the phone isn't jailbroken where all its security is working, or it is, and none of it is operable.
[1]: This is factoring out apps that ask for every permission via the Play Store... I still think Google needs a tier where they actively approve apps like Amazon does, and users have to click on something in order to step into Mordor and use the non-vetted apps.