So, if I have a heart attack while having sex I'll just wait for my iPhone to boot on? Or an I hit someone with my car, I'll tell the nice lady with the twisted leg "just a (literal) minute, the iPhone is turning on".
Really, turning it off is your solution? The clear solution is encryption and purging, that should be done from the start. I don't mind them knowing my location, as long as it is just THEM.
Whoever double clicks something to install assuming it is legit will also gladly insert their username/password.
In terms of security windows is actually more robust from a security standpoint than mac os, but it's also targeted a lot more. And I don't mean file permissions, I mean actual design flaws.
You're safer while using a mac, no doubt about it. But the OS with the most security features IS windows.
And if you don't believe me, I'll quote:
"Paul Kocher, president and chief scientist at Cryptography Research: "The fair answer is that with the latest versions of each operating system there isn't a compelling security reason to pick one or the other. It used to be that Apple was doing a better job, but with Windows 7 Microsoft has caught up. There are some differences; Windows has a better security ecosystem. On the other hand, Apple tends to have more expensive hardware and has a smaller market share, so it attracts fewer malware writers. Both have security bugs. Both need patches. Both can be broken if someone finds a zero-day exploit."
or
"Charlie Miller, a principal analyst at consultancy Independent Security Evaluators: "Technologically speaking, PCs are a little more secure than Macs. Macs have a larger attack surface out of the box (Flash, Java, support for a million file formats, etc.) and lack some anti-exploitation technologies found in PCs like full ASLR [Address Space Layout Randomization]. This means Macs have more vulnerabilities and it's easier to turn a vulnerability into an exploit on the platform. Despite the fact it is less secure, paradoxically, Macs are actually safer to use for most people. This is because there simply isn't much risk of being exploited or installing malware."
or even
"Rich Mogull, CEO at Securosis: "It depends on which version of Windows we're talking about. Clearly there are major differences between Windows XP and Windows 7. Second is, are we talking about safety versus security? Microsoft has done more in terms of its inherent security features than Apple has in the operating system. All of that said, Microsoft gets attacked a lot more than Apple does. Right now your odds of being infected as a Mac user by malicious software are quite a bit lower than a Windows user, unless you do stupid things, such as download free versions of commercial software. And some of the pornography sites on the Internet, the dark corners of the Internet have stuff that will hurt a Mac."
Did you know that "cell tower data" is accurate up to accuracy is +- 40 meters (usually much, much better)?
If I have been vising the red light district I DON'T want that to be used in court as part of my divorce.
It's not a meme, it's a fact that they collect it and that's why they are fixing it with, at least, encryption so it's harder to access and purging it more often. If there was no problem no fix would be needed.
Having a full history of (some of) my visits easily accessible isn't something I want.
The thing is, you can only use mobile assisted GPS if you accept to let google use your location. It has nothing to do with apps that track you, that's a whole other matter. Kind of a qui-pro-quo. You give them your Mobile location data (and network ssid's) and they allow you to use the already existing database (built by other users).
I said "no" during setup, but then every time I opened a GPS aware program it'd say "oh, you should also enable wifi blah blah". Got fed up and ended up enabling it. At least it ain't as easy to access the data as on iPhone 4 and it gets purged regularly.
instead of using a complicated salting method, why not go with bcrypt? If you make it slow enough, it'll resist brute force and be virtually impossible to calculate a full rainbow table.
I meant, if they are storing credit cards and personal data, some kind of encryption scheme is expected. Having it plain as day in a database is a big no-no.
Storing passwords in plain text is so amateurish that it hurts, although salting is a bit overrated... If they have access to your machine they know what salt you've done, leaving you vulnerable to brute force attacks.
100%, no, but RSA with a long key is virtually uncrackable by today's standards.
I had a school project that deal with credit cards and the first thing we did was investigate encryption. AES, triple DES, RSA, even DES, anything is better than PLAIN TEXT.
You payed for your games that you can only access for PSN.
No one here got anything for free if they need to use the PSN to play. Remember that some games can only be accessed through the PSN.
And if I payed 60€ for a game I damn well want to be able to play it on-line. If that infrastructure is the responsibility of Sony they might as well guarantee that I can. If they don't, they should compensate everyone.
And no restaurant is obligated anywhere to make you happy. They are obligated to serve you food and if they do so, their responsibility ends there.
You bought the game under the assumption you'd be able to play it anytime you wanted (even if the TOS say sony ain't responsible for the downtime).
They don't "owe" you anything, but it is crappy PR if they give no compensation whatsoever.
If a restaurant serves you badly cooked food, they also don't owe you anything if you point it out. But any decent restaurant will give you another plate if your complaint turns out to be true.
I believe it does (you just need to change a couple of text files so you can connect to the american servers).
But your account is bound to a shard (europe, US, Russia, etc). If you have the american account there is nothing stopping you from connecting to their servers.
They simply make european players play in servers located in france or sweden, for example. The european copy can't connect to US servers.
That way they can guarantee a good experience to the vast majority of subscribers as well as give localized support for other languages (like french, spanish and german).
Apart from Valve, I see no other company who cares so much about games and gamers. Their success speak for themselves.
And region locking is required to maintain a good gaming experience. If they allowed you to play anywhere I can already see the posts complaining about LAG in the official foruns, stating that since they pay 13$ per month they should be able to provide miracles.
And don't give me the bandwidth excuse. From ADSL up bandwith will give you no improvement whatsoever in latency. You still depend on he cable that connects you to the other side of the ocean and that has nothing to do with how many Mb you have available.
The PSN is free, but the games you payed 60€ to play on-line weren't. Same with the downloaded content that is locked to an active internet connection.
And it is obviously because of PR. Most likely the TOS have a line saying "we don't guarantee 100% uptime". But the players that were locked out for a day and not compensated will most likely be thinking about x-box live the next time they buy a new machine.
You actually can chose if you want to facilitate your position to the browser (it asks) and same thing with any app. If it asks for your location when you're installing a game, think twice before you chose.
The whole point os moot though, it seems some android phones also collect data (although it is harder to access and requires a rooted phone to do so).
"To provide location-based services on Apple products, Apple and our partners and licensees may collect, use, and share precise location data, including the real-time geographic location of your Apple computer or device. This location data is collected anonymously in a form that does not personally identify you and is used by Apple and our partners and licensees to provide and improve location-based products and services. For example, we may share geographic location with application providers when you opt in to their location services."
It looks to me like normal people need to ask permission, the partners don't. You're assuming every data is collected by apps in the App Store (who seem to require permission). Apple can get this information and share it with anyone they want, according to the terms of service.
And if you watch the video it actually says at one point that the sqlite database has a unique phone identifier, so it's "anonymous" data.
Google is being investigated for wifi sniffing. It seems Apple is doing exactly that too.
I believe that the main point is not bothering that the offline part of the content gets freely distributed. But have premium features that require on-line accounts that will serve you ads / cost money.
I believe that's the way, and it's just an evolution of that time where you got a demo software from some magazine and then had to pay for the full thing.
As opposed to the ones that were there before? Do you really want me to mention all the violations your "freedom" or "liberty" suffered during the Bush era?
And I was not commenting the news article, I was just talking about Obama's administration as a whole.
You talk big. But you sound like one of those guys that closes his ears, forgets his past and nitpicks at anything bad that Obama's done. Oh wait... I've had an epiphany...
Slashdot Mirror
So, if I have a heart attack while having sex I'll just wait for my iPhone to boot on? Or an I hit someone with my car, I'll tell the nice lady with the twisted leg "just a (literal) minute, the iPhone is turning on".
Really, turning it off is your solution? The clear solution is encryption and purging, that should be done from the start. I don't mind them knowing my location, as long as it is just THEM.
You miss the point, I think.
Whoever double clicks something to install assuming it is legit will also gladly insert their username/password.
In terms of security windows is actually more robust from a security standpoint than mac os, but it's also targeted a lot more. And I don't mean file permissions, I mean actual design flaws.
You're safer while using a mac, no doubt about it. But the OS with the most security features IS windows.
And if you don't believe me, I'll quote:
"Paul Kocher, president and chief scientist at Cryptography Research: "The fair answer is that with the latest versions of each operating system there isn't a compelling security reason to pick one or the other. It used to be that Apple was doing a better job, but with Windows 7 Microsoft has caught up. There are some differences; Windows has a better security ecosystem. On the other hand, Apple tends to have more expensive hardware and has a smaller market share, so it attracts fewer malware writers. Both have security bugs. Both need patches. Both can be broken if someone finds a zero-day exploit."
or
"Charlie Miller, a principal analyst at consultancy Independent Security Evaluators: "Technologically speaking, PCs are a little more secure than Macs. Macs have a larger attack surface out of the box (Flash, Java, support for a million file formats, etc.) and lack some anti-exploitation technologies found in PCs like full ASLR [Address Space Layout Randomization]. This means Macs have more vulnerabilities and it's easier to turn a vulnerability into an exploit on the platform. Despite the fact it is less secure, paradoxically, Macs are actually safer to use for most people. This is because there simply isn't much risk of being exploited or installing malware."
or even
"Rich Mogull, CEO at Securosis: "It depends on which version of Windows we're talking about. Clearly there are major differences between Windows XP and Windows 7. Second is, are we talking about safety versus security? Microsoft has done more in terms of its inherent security features than Apple has in the operating system. All of that said, Microsoft gets attacked a lot more than Apple does. Right now your odds of being infected as a Mac user by malicious software are quite a bit lower than a Windows user, unless you do stupid things, such as download free versions of commercial software. And some of the pornography sites on the Internet, the dark corners of the Internet have stuff that will hurt a Mac."
It's not my opinion. It's the expert's opinion.
Did you know that "cell tower data" is accurate up to accuracy is +- 40 meters (usually much, much better)?
If I have been vising the red light district I DON'T want that to be used in court as part of my divorce.
It's not a meme, it's a fact that they collect it and that's why they are fixing it with, at least, encryption so it's harder to access and purging it more often. If there was no problem no fix would be needed.
Having a full history of (some of) my visits easily accessible isn't something I want.
http://petewarden.github.com/iPhoneTracker/
The thing is, you can only use mobile assisted GPS if you accept to let google use your location. It has nothing to do with apps that track you, that's a whole other matter. Kind of a qui-pro-quo. You give them your Mobile location data (and network ssid's) and they allow you to use the already existing database (built by other users).
I said "no" during setup, but then every time I opened a GPS aware program it'd say "oh, you should also enable wifi blah blah". Got fed up and ended up enabling it. At least it ain't as easy to access the data as on iPhone 4 and it gets purged regularly.
In Portugal we have a system that allows you to generate any number of credit cards with a defined spending limit and with 1 month expiration dates.
More than that, you don't even need to own a credit card and pretty much every bank has access to it-
It doesn't get much better than this for web transactions.
instead of using a complicated salting method, why not go with bcrypt? If you make it slow enough, it'll resist brute force and be virtually impossible to calculate a full rainbow table.
Obviously :P
I meant, if they are storing credit cards and personal data, some kind of encryption scheme is expected. Having it plain as day in a database is a big no-no.
Storing passwords in plain text is so amateurish that it hurts, although salting is a bit overrated... If they have access to your machine they know what salt you've done, leaving you vulnerable to brute force attacks.
100%, no, but RSA with a long key is virtually uncrackable by today's standards.
I had a school project that deal with credit cards and the first thing we did was investigate encryption. AES, triple DES, RSA, even DES, anything is better than PLAIN TEXT.
You payed for your games that you can only access for PSN.
No one here got anything for free if they need to use the PSN to play. Remember that some games can only be accessed through the PSN.
And if I payed 60€ for a game I damn well want to be able to play it on-line. If that infrastructure is the responsibility of Sony they might as well guarantee that I can. If they don't, they should compensate everyone.
And no restaurant is obligated anywhere to make you happy. They are obligated to serve you food and if they do so, their responsibility ends there.
You bought the game under the assumption you'd be able to play it anytime you wanted (even if the TOS say sony ain't responsible for the downtime).
They don't "owe" you anything, but it is crappy PR if they give no compensation whatsoever.
If a restaurant serves you badly cooked food, they also don't owe you anything if you point it out. But any decent restaurant will give you another plate if your complaint turns out to be true.
I believe it does (you just need to change a couple of text files so you can connect to the american servers).
But your account is bound to a shard (europe, US, Russia, etc). If you have the american account there is nothing stopping you from connecting to their servers.
Nothing like that at all.
They simply make european players play in servers located in france or sweden, for example. The european copy can't connect to US servers.
That way they can guarantee a good experience to the vast majority of subscribers as well as give localized support for other languages (like french, spanish and german).
"extremely anti-gamer policies"
Apart from Valve, I see no other company who cares so much about games and gamers. Their success speak for themselves.
And region locking is required to maintain a good gaming experience. If they allowed you to play anywhere I can already see the posts complaining about LAG in the official foruns, stating that since they pay 13$ per month they should be able to provide miracles.
And don't give me the bandwidth excuse. From ADSL up bandwith will give you no improvement whatsoever in latency. You still depend on he cable that connects you to the other side of the ocean and that has nothing to do with how many Mb you have available.
The PSN is free, but the games you payed 60€ to play on-line weren't. Same with the downloaded content that is locked to an active internet connection.
And it is obviously because of PR. Most likely the TOS have a line saying "we don't guarantee 100% uptime". But the players that were locked out for a day and not compensated will most likely be thinking about x-box live the next time they buy a new machine.
Blizzard has been doing this for ages now.
If they are not, they should. They might lose a few thousand dollars with it, but might win some loyal costumers that will spend 10x that.
1 person doing bad publicity is worth 10 saying good things about you, in terms of word of mouth. It'd be a smart play.
You actually can chose if you want to facilitate your position to the browser (it asks) and same thing with any app. If it asks for your location when you're installing a game, think twice before you chose.
The whole point os moot though, it seems some android phones also collect data (although it is harder to access and requires a rooted phone to do so).
This is not just about not wanting to be tracked by . It has time, dates and places I visit.
If someone stole your phone, they can find out where you live. They can find out what time you'll be there.
They can even assume with reasonable certainty where you'll be if they want to get to you again (human beings are creatures of habit).
This is extremely serious. Imagine a teenage girl losing their phone. This is stalker paradise material.
I opt into that if I use AdMob.
You opt into that if you use an iPhone.
Clearly the same thing
"To provide location-based services on Apple products, Apple and our partners and licensees may collect, use, and share precise location data, including the real-time geographic location of your Apple computer or device. This location data is collected anonymously in a form that does not personally identify you and is used by Apple and our partners and licensees to provide and improve location-based products and services. For example, we may share geographic location with application providers when you opt in to their location services."
It looks to me like normal people need to ask permission, the partners don't. You're assuming every data is collected by apps in the App Store (who seem to require permission). Apple can get this information and share it with anyone they want, according to the terms of service.
And if you watch the video it actually says at one point that the sqlite database has a unique phone identifier, so it's "anonymous" data.
Google is being investigated for wifi sniffing. It seems Apple is doing exactly that too.
I think there is more to it than that.
I believe that the main point is not bothering that the offline part of the content gets freely distributed. But have premium features that require on-line accounts that will serve you ads / cost money.
I believe that's the way, and it's just an evolution of that time where you got a demo software from some magazine and then had to pay for the full thing.
No, ultimately it was his fault for going on TV.
I just wonder how the reporter found him in the first place...
If even RSA (a security expert) is compromised, I wonder how long it'll take for this list to get leaked, especially now that it has been publicized.
Or maybe the publicity is another bait and switch :P. It'd be cool if it was, but I doubt it.
http://developer.android.com/sdk/ndk/index.html
Yes, because c/c++ code cannot be used (irony)
As opposed to the ones that were there before? Do you really want me to mention all the violations your "freedom" or "liberty" suffered during the Bush era?
And I was not commenting the news article, I was just talking about Obama's administration as a whole.
You talk big. But you sound like one of those guys that closes his ears, forgets his past and nitpicks at anything bad that Obama's done. Oh wait... I've had an epiphany...
Glenn Beck! Is that you?