I agree here - plugins are in general a security hole waiting to happen. JavaScript is bad enough from a browser security perspective.
On the server side it's more a question of if some service can break out of the JVM or do other inappropriate things on the server.
But even then I can understand the need for a "secret" security team. It's good to keep the cards close until you know what the impact your problem has and a fix is dispatched.
Many IoT devices are locked so that only the manufacturer can update them - if even they can. Some have firmware on OTP proms and the only way to increase security is to replace the device. But they can still be abused.
Ultimately if an IoT device is insecure it shall be the manufacturer of the device that shall be responsible for correcting the problem.
Also realize that your devices on the net at home may need to be segmented. One segment for devices you can't configure like TV, dishwasher and other mundane stuff that today is "smart". One for your PC and other stuff with personal information. Basic security sanitation operation.
There are a huge amount of various data collectors on the web tracking you. You can't evade them all but you can at least make it harder for them.
Add to it all chains that pester you about membership all the time. That's also part of big data.
The problem is that big data results in shops becoming more and more bland and longevity of product lines ends so you can't find a replacement for that perfect toolbox you found 5 years ago. Even things as simple as screws poses a problem, which may lead you to get different look on stuff you make over time.
Cut down on the bloat and let people download the apps they really want to use.
I have a bricked HTC M9 due to the bloat, need a RUU for the Euro version to see if I can unbrick it.
Now I have a CAT S60, great phone but no Nougat or Oreo update in sight. The camera is however not the best but it's rugged and cope with dual SIM cards.
If everyone starts to return their stuff to Sonos then they will be overwhelmed by trying to figure out how to handle it. Add some added junk and make things miserable for them in general.
The case may be closed from a criminal perspective but it would still be interesting to many from a historical perspective.
I don't think that we will figure out everything that happened in that case, but if we all find enough pieces of the chain then there's a great story to be told.
B.t.w. - modern aircraft has a blocking device called Cooper vane that shall prevent this type of action to be repeated.
The problem is that many sites serving over http only will be listed as insecure even if they aren't serving anything that would need encryption, and may not even have a login - or a login only for the webmaster. That covers many hobbyist sites.
This essentially makes it more cumbersome to run a small website for hobbyist purposes.
https only protects the data channel between server and client, it doesn't make a site more trustworthy today.
Slashdot Mirror
I agree here - plugins are in general a security hole waiting to happen. JavaScript is bad enough from a browser security perspective.
On the server side it's more a question of if some service can break out of the JVM or do other inappropriate things on the server.
But even then I can understand the need for a "secret" security team. It's good to keep the cards close until you know what the impact your problem has and a fix is dispatched.
Many IoT devices are locked so that only the manufacturer can update them - if even they can. Some have firmware on OTP proms and the only way to increase security is to replace the device. But they can still be abused.
Ultimately if an IoT device is insecure it shall be the manufacturer of the device that shall be responsible for correcting the problem.
Also realize that your devices on the net at home may need to be segmented. One segment for devices you can't configure like TV, dishwasher and other mundane stuff that today is "smart". One for your PC and other stuff with personal information. Basic security sanitation operation.
But a new reason for them being formed.
Time to get a book or two by him then. "non-stop" is probably the easiest, Helliconia most epic - on the same level as the lord of the rings trilogy.
And how important is this news actually?
Gaming consoles are pretty useless.
Franchise war in Demolition Man, Max Headroom, Fahrenheit 451, 1984, Neuromancer, Brave New World, Ferengi invasion - all in one package.
Ferengi rules of acquisition comes to mind.
You would need a completely different web browser for each site you visit. Running in sandboxes.
There are a huge amount of various data collectors on the web tracking you. You can't evade them all but you can at least make it harder for them.
Add to it all chains that pester you about membership all the time. That's also part of big data.
The problem is that big data results in shops becoming more and more bland and longevity of product lines ends so you can't find a replacement for that perfect toolbox you found 5 years ago. Even things as simple as screws poses a problem, which may lead you to get different look on stuff you make over time.
Apk is a spammer anyway.
The alternative to blocking ads is to click them every time because each click costs the advertiser a certain amount.
Ad clicking bots...
A mile away when it's 10 miles to the next house.
Adblockers and third party cookie blocking can help. Also avoid plugins like flash that caches data on your computer.
All of this we see was basically predicted in the Max Headroom tv series and in the novels by William Gibson - cyberpunk.
The downside is all the bloatware.
Cut down on the bloat and let people download the apps they really want to use.
I have a bricked HTC M9 due to the bloat, need a RUU for the Euro version to see if I can unbrick it.
Now I have a CAT S60, great phone but no Nougat or Oreo update in sight. The camera is however not the best but it's rugged and cope with dual SIM cards.
A home stereo is expected to be working for at least 10 years. It's not unusual to find stuff made in the 70's that's still working fine.
If everyone starts to return their stuff to Sonos then they will be overwhelmed by trying to figure out how to handle it. Add some added junk and make things miserable for them in general.
But what's the internet speed?
Like the Alcatraz escapees. Even tested as being possible by Mythbusters.
The case may be closed from a criminal perspective but it would still be interesting to many from a historical perspective.
I don't think that we will figure out everything that happened in that case, but if we all find enough pieces of the chain then there's a great story to be told.
B.t.w. - modern aircraft has a blocking device called Cooper vane that shall prevent this type of action to be repeated.
Solution: Don't eat fish. Don't eat meat, while we are at it - don't eat.
You spelled Lynx wrong.
The problem is that many sites serving over http only will be listed as insecure even if they aren't serving anything that would need encryption, and may not even have a login - or a login only for the webmaster. That covers many hobbyist sites.
This essentially makes it more cumbersome to run a small website for hobbyist purposes.
https only protects the data channel between server and client, it doesn't make a site more trustworthy today.
Another Tom Robinson had it right: https://m.youtube.com/watch?v=...
OpenVMS before that.
Which indicates that the wrapper he used was bad from a user interaction perspective lacking important warnings.
Poor blender.