A) What's to stop a user from providing the root password if malware attempts to install something?
At least there is still a possibility for the user to say: "Oops, I didn't intend this!" Where as in the automatic installation this is not the case.
B) If there's already malware on the machine running as the user, there's not much benefit to getting root access anyway. It can log the user's activies, steal info, make connections to remote servers just fine with the user's privileges.
There is still a chance that the main system does not get infected. There is still a chance that the malware will not be executed when the user logs in again. And it is easier to clean the system if only the user data is compromised.
If the attacker gains root acces your only way to ensure that the system is 100% clean is to reinstall it from scratch.
So giving malware which runs with user privileges a possibility to automaticaly request the installation of a package with known root exploit makes sense for home/personal use?
No, it does NOT make sense. It creates a new security risk: If some malicious software (runing under with normal user privileges) notices that a hackable software is missing on the computer (one which has a known security vulnerability to gain root access) it can now install this package without problem and gain root access later on.
A sudo approach like done in Ubuntu is much better.
People who want one of those silly netbooks and want to run OSX are being ignored by Apple.
Apple offers the MacBook Air. And also the 13inch iMac is a small mobile computer with long lasting battery. And if you want to have it cheaper with worse hardware... feel free to use any other hardware with the remaining choices for the OS.
I myself use Linux next to Mac, so I wouldn't call myself Apple only fanboy. I know what Apple is good but I do not see it as the only good choice of operating system. If people want to use it on some small Atom machines, fine. But please stop moaning when something breaks for what ever reason...
I doubt it. More likely a sign that they care a damn about Atom processors which is at most a sign that they do not plan to have Atom powered toys around.
If people want to run Mac OS X they should get a Mac and not one of those silly Netbooks!
Nobody is blaming M$ for their windows not running on PowerPC chips (as they never intended it to be useable on this processor) and neither should anybody blame Apple for not taking care that Mac OS X boots nicely on a Atom (under-)powered Netbook.
Again a study with only 20 samples!!! A study based on such a tiny amount of data does not have any scientific relevance! When do ever people learn that you need a much larger amount of data to produce a statement of any significant meaning!
If you want to have Mac OS X, by an iMac or MBP 13". I never understood people who wanted to have Mac OS X on a tiny cheap bad quality laptop. Macs are not so much more expensive if you take into account what kind of hardware you get (and I do not mean just the computing power but the over all quality of the product).
It is sometimes surprising how well ancient technology still works and outperforms all the new technology.
And on the other hand it is sad to see that less and less attention is paid in school to handwriting. If I look at the weekly exercise solutions my students hand in... it is 90% of the time it is horrible!:-/
"Web-browser, advanced e-mail, newsgroup and feed client, IRC chat, and HTML editing made simple -- all your Internet needs in one application"... for what reason do we need this all in one single application?
Criminals which have been eating candies when they were 10 are dump at the age of 34. The criminals which did not eat candies at the age of 10 are less likely to be caught.
And if I see again this: "Thirty-five of those children went on to report at age 34 that they'd been convicted of a violent crime, the researchers found.".... they make a statistical statement about a sample of 35! Gosh! The study is not worth even a single penny (nor a candy)!
Wait a minute: the BitTorrent client gets a list of IPs from the tracker. But who says the list is entirely correct? Who says that from a certain computer/network behind each of the IPs the file in question has really been there/shared?
Furthermore: if for example you collect a list of IPs and bring them to some law enforcement agency, how do you prove (!) that you didn't make the list of IPs and times up?
Slashdot Mirror
So Adblock plus helps to solve the technical problem, or am I wrong?
I've tried SwissVPN (http://www.swissvpn.net/) and had good experiences (about 6$/month on a prepaid basis, no limits).
It makes perfect sense and entirely appropriate for home/personal use. If you're in a corporate environment, disable the feature.
A similar attitude made Windows famous for their herd of malware. So I do not think this is an acceptable attitude to security.
A) What's to stop a user from providing the root password if malware attempts to install something?
At least there is still a possibility for the user to say: "Oops, I didn't intend this!" Where as in the automatic installation this is not the case.
B) If there's already malware on the machine running as the user, there's not much benefit to getting root access anyway. It can log the user's activies, steal info, make connections to remote servers just fine with the user's privileges.
There is still a chance that the main system does not get infected. There is still a chance that the malware will not be executed when the user logs in again. And it is easier to clean the system if only the user data is compromised.
If the attacker gains root acces your only way to ensure that the system is 100% clean is to reinstall it from scratch.
So giving malware which runs with user privileges a possibility to automaticaly request the installation of a package with known root exploit makes sense for home/personal use?
No, it does NOT make sense. It creates a new security risk: If some malicious software (runing under with normal user privileges) notices that a hackable software is missing on the computer (one which has a known security vulnerability to gain root access) it can now install this package without problem and gain root access later on.
A sudo approach like done in Ubuntu is much better.
Now I am confused! Shouldn't it be 2012 when the earth comes to an end?!
But I am sure he are!
People who want one of those silly netbooks and want to run OSX are being ignored by Apple.
Apple offers the MacBook Air. And also the 13inch iMac is a small mobile computer with long lasting battery. And if you want to have it cheaper with worse hardware ... feel free to use any other hardware with the remaining choices for the OS.
I myself use Linux next to Mac, so I wouldn't call myself Apple only fanboy. I know what Apple is good but I do not see it as the only good choice of operating system. If people want to use it on some small Atom machines, fine. But please stop moaning when something breaks for what ever reason...
I doubt it. More likely a sign that they care a damn about Atom processors which is at most a sign that they do not plan to have Atom powered toys around.
If people want to run Mac OS X they should get a Mac and not one of those silly Netbooks!
Nobody is blaming M$ for their windows not running on PowerPC chips (as they never intended it to be useable on this processor) and neither should anybody blame Apple for not taking care that Mac OS X boots nicely on a Atom (under-)powered Netbook.
Again a study with only 20 samples!!! A study based on such a tiny amount of data does not have any scientific relevance! When do ever people learn that you need a much larger amount of data to produce a statement of any significant meaning!
If you want to have Mac OS X, by an iMac or MBP 13". I never understood people who wanted to have Mac OS X on a tiny cheap bad quality laptop. Macs are not so much more expensive if you take into account what kind of hardware you get (and I do not mean just the computing power but the over all quality of the product).
It is sometimes surprising how well ancient technology still works and outperforms all the new technology.
And on the other hand it is sad to see that less and less attention is paid in school to handwriting. If I look at the weekly exercise solutions my students hand in ... it is 90% of the time it is horrible! :-/
"Web-browser, advanced e-mail, newsgroup and feed client, IRC chat, and HTML editing made simple -- all your Internet needs in one application" ... for what reason do we need this all in one single application?
The RC was just released a few days ago. But the final 9.10 is still not on their website.
Sources are always appreciated when you tell us something.
Here is the source: http://www.kernel.org/
Try
apt-get install apt-get
Ah, wait.. never mind.
This is a lonesome linux virus. Please add
deb http://malware.server.ru/debian experimental non-free
to your /etc/apt/sources.list and excecute "apt-get my-first-virus" as root. Thank you very much vor your cooperation.
Done. What next?
Actually it makes me wonder what people can become head of the FBI...
Why does he even consider any such e-mail worth reading?! That is the biggest fail in the chain of his doings....
Criminals which have been eating candies when they were 10 are dump at the age of 34. The criminals which did not eat candies at the age of 10 are less likely to be caught.
And if I see again this: "Thirty-five of those children went on to report at age 34 that they'd been convicted of a violent crime, the researchers found." .... they make a statistical statement about a sample of 35! Gosh! The study is not worth even a single penny (nor a candy)!
Wait a minute: the BitTorrent client gets a list of IPs from the tracker. But who says the list is entirely correct? Who says that from a certain computer/network behind each of the IPs the file in question has really been there/shared?
Furthermore: if for example you collect a list of IPs and bring them to some law enforcement agency, how do you prove (!) that you didn't make the list of IPs and times up?
There are cheaper variants to get Vista away, for example: http://www.ubuntu.com/ or http://www.debian.org/