Using Facebook as a SSO. I can nick someone's session cookie if he's on my same network - and yet we can trust the same company which is there to sell your profile information - with out important logins?
Simple solution is not putting the sensitive documents as user's documents but give read permissions only to root or another user which has a seperate password. If you want to access the documents, you need to su. If a program looks for them, it won't find them.
I'm still amazed that you can just suck sensitive documents off people's computers. Wouldn't these be encrypted? Or at least require a certain key to open?
People put so much research into making your music/software only run on one computer (DRM) - and yet they can't extend it to only allow the opening of sensitive documents on certain computers? These aren't pictures of your last holiday in Greece...
Off the top of my head I'd say that if you're executing something which you got from the internet, the executable bit will need to be turned on manually. Installing things also requires root privilages, so if you're using a *nix I'd say its much harder to do that.
Your complaint is that "Android has flash support" -> "Android can see flash ads?" Block them. Get a browser which doesn't trigger them automatically. Hell, UNINSTALL FLASH. Problem solved. Wow.
Are you talking about other advertisments? The in-application ones which some developers put in to give free stuff? Because apple has that sort of thing as well.
It'll take me all of 5 minutes (and 10 dollars) to register 'leolati1.com' and bypass your host file tinkering. Once you adapt from that - I can go with 'leolati2' or letters, or random numbers at the end.
Blacklists don't work. Especially not when its blacklisting an internet domain which can be replaced very quickly.
= Waste a bunch of time and money, probably losing the case anyway because your lawyer isn't good enough OR winning and then having to go to court again and again and again when they sue again until they win.
If you can't download without the anti-virus, how do you download the antivirus?
Do we really want to give a process huge control over what your system can or can not do? Its not the browser's fault. Its the user's fault. *NIX has a 'runnable' bit - which prevents programs with that bit set to 0 from running. Its still the user who flicks it on. Does this protect against social attacks like this one? Nope. Neither would "THIS PROGRAM WANTS YOU TO INSTALL" - because you're expecting that.
You can't blame the browsers. You can only blame the users.
I mean, how many non-technical people do you know who even know what a Flash Plugin is? Hell, 10 years ago - with everyone tossing their own plugins to let you see videos - it wouldn't have been a longshot to need a new plugin to do X.
You go to this site, find out that to see this card (which you're expected to be animated) - needs a flash update of sorts, and you helpfully click the link. Tons of people would fall for that.
Like people hadn't already cracked the game before this patch...
DRMs always get cracked in the end. I'm pretty sure the only reason they're put into the game is to ensure that its not cracked in the first 'month' or so when the majority of the sales happen.
I type all my university notes. I'm able to work faster than if I was writing, can research if I didn't understand something, can format it into an understandable piece.
Yes you get distracted. But you know what I do when I have paper and I'm bored ? I doodle or daydream. You're still going to do something else to pass the time. If you can't stay attentive, stop bringing it yourself. There's no need to remove it for everyone else.
Slashdot Mirror
Using Facebook as a SSO. I can nick someone's session cookie if he's on my same network - and yet we can trust the same company which is there to sell your profile information - with out important logins?
Right..
Yet.
But that would be the end of the government as we know it :(
Simple solution is not putting the sensitive documents as user's documents but give read permissions only to root or another user which has a seperate password. If you want to access the documents, you need to su. If a program looks for them, it won't find them.
Error: Could not find string variable 'hit'
Hello Employee
Merry Christmas! Attached please find card. Remember to set executable bit to yes before running this jar file.
Regards
The Whitehouse
Ps - If you fell for this one you will need to retake your computer proficiency test.
I'm still amazed that you can just suck sensitive documents off people's computers. Wouldn't these be encrypted? Or at least require a certain key to open?
People put so much research into making your music/software only run on one computer (DRM) - and yet they can't extend it to only allow the opening of sensitive documents on certain computers? These aren't pictures of your last holiday in Greece...
Off the top of my head I'd say that if you're executing something which you got from the internet, the executable bit will need to be turned on manually. Installing things also requires root privilages, so if you're using a *nix I'd say its much harder to do that.
"malware-laced e-mail"
"contractors who work on cybersecurity "
I guess everyone falls for a good old spoof. Not just 70 year old grandmas like it was suggested in the last article on spoofing.
But Islam has polygyny, and bans alochol - and its a pretty popular faith...
I was half expecting a generic pie chart to magically pop up at that point...
"who really owns (pwns) your hardware? "
Why are you asking that question on an article about Apple? Isn't it obvious?
Unwise used to be the name of the Uninstall for the Wise Installer.
Sorta still fits I guess. Uninstall your colleague.
If I remember correctly, the EU had put in a law to prevent this.
http://thenextweb.com/eu/2010/03/01/news-eu-law-place-prevent-shock-mobile-internet-phone-bills/
No idea whether it passed though.
Sincerly not understanding you. At all.
Your complaint is that "Android has flash support" -> "Android can see flash ads?" Block them. Get a browser which doesn't trigger them automatically. Hell, UNINSTALL FLASH. Problem solved. Wow.
Are you talking about other advertisments? The in-application ones which some developers put in to give free stuff? Because apple has that sort of thing as well.
It'll take me all of 5 minutes (and 10 dollars) to register 'leolati1.com' and bypass your host file tinkering. Once you adapt from that - I can go with 'leolati2' or letters, or random numbers at the end.
Blacklists don't work. Especially not when its blacklisting an internet domain which can be replaced very quickly.
= Waste a bunch of time and money, probably losing the case anyway because your lawyer isn't good enough OR winning and then having to go to court again and again and again when they sue again until they win.
--> Huge waste of time, effort and money.
See also: SLAPP
If you can't download without the anti-virus, how do you download the antivirus?
Do we really want to give a process huge control over what your system can or can not do? Its not the browser's fault. Its the user's fault. *NIX has a 'runnable' bit - which prevents programs with that bit set to 0 from running. Its still the user who flicks it on. Does this protect against social attacks like this one? Nope. Neither would "THIS PROGRAM WANTS YOU TO INSTALL" - because you're expecting that.
You can't blame the browsers. You can only blame the users.
Tons of people would fall for this.
I mean, how many non-technical people do you know who even know what a Flash Plugin is? Hell, 10 years ago - with everyone tossing their own plugins to let you see videos - it wouldn't have been a longshot to need a new plugin to do X.
You go to this site, find out that to see this card (which you're expected to be animated) - needs a flash update of sorts, and you helpfully click the link. Tons of people would fall for that.
Like people hadn't already cracked the game before this patch...
DRMs always get cracked in the end. I'm pretty sure the only reason they're put into the game is to ensure that its not cracked in the first 'month' or so when the majority of the sales happen.
We had a professor throw a guy out of the class for having his cell phone ringing. Only happened once. Didn't need to happen anymore.
Its called Satire :)
If you don't like it, you are free to open your own multi-billion dollar company on the internet.
Just make sure you don't hit any of their patents.
"Cooking with Rapeseed oil"
I type all my university notes. I'm able to work faster than if I was writing, can research if I didn't understand something, can format it into an understandable piece.
Yes you get distracted. But you know what I do when I have paper and I'm bored ? I doodle or daydream. You're still going to do something else to pass the time. If you can't stay attentive, stop bringing it yourself. There's no need to remove it for everyone else.