Believe me, they are not just "throwing features in" to try and attract buyers; the feature-set has been 100% community driven, this is exactly what everyone wanted.
Yes, that is exactly what I meant. Just because it's a community instead of a committee does not make it a good design process.
Well, the Super Mario Galaxies was total bullshit too, so that does seem to be their modus operandi. Take a popular game, bullshit something that sounds plausible to someone who's not experienced with game programming, and get linked on social media sites.
That thing is suffering HORRIBLY from feature checklist mentality. Just throw more and more features at it in the hope of attracting people who just read the feature list, without any regard for making a system that makes sense as a whole.
To think that there are comics out there which are worse than User Friendly is every way, when User Friendly was already pretty bottom-of-the-barrel in all departments!
Can it prevent an application the user installs themselves from doing what I described? Because a whole lot of zombie infections are caused by users installing the malicious software themselves.
Most families these days would have more than one computer.
And even so, it hardly matters. One infection is one infection. The fact that one infection is not automatically several infections is hardly very praiseworthy.
Not if you don't have access to the firewall settings which will open the port that allows someone to connect to your relay.
The program can just make the initial connection to the spammer server itself. This is the same on Windows and Linux, and these programs operate just fine under Windows.
Yes, but without access to the system FF folder, that plugin will go in your per-user plugin directory, and will only run for you.
How many computers do you honestly think there are out there that have more than a single user?
PS: It's pretty disingenuous to make a point of that the Windows virus doesn't let you "search for help online", when your Linux scenario was all about asking help from a friend in the first place.
The Windows cleanup is a merely a little longer, as it requires an OS re-install and backup restore (also, that is what most people would do on Linux anyway). The vast majority of systems out there are single-user, you know.
So cleanup is easier. But the damage may already be done, as criminals may now have your passwords, your credit card numbers, and your personal information. Plus you were probably sending spam up until the moment you noticed the infection.
The point is, there's no need to change system files or bind to privileged ports.
Your documents contains LOTS of yummy personal information for people to steal. Identity thieves and credit card thieves will love all that stuff.
Spammers need relays to send their spam through. You can run a relay just fine as a normal user. Same thing with the DDoS bot for exortotionists and script kiddies.
You can mess with the internals of Firefox without root access too, through plugins. Easy to put a password stealer in there. Or you could mess with your desktop settings so that when you try to launch a browser, you get a compromised version instead.
I'd say I've covered all the major reasons somebody would want to infect your machine here, and not a single system file or privileged port was needed for it.
There's absolutely nothing to stop anybody from installing an executable that runs automatically under a user account, without ever needing root. And that executable can do a lot of the things it may want to do without ever needing root access, either.
You see, self-signed certificates are only wide open to MITM attacks if the person monitoring you was replacing all certificates pro-actively before you even visited the website once.
I don't know about you, but personally I have not yet visited the majority of the sites on the internet. Thus this is a pretty significant attack vector for me.
Furthermore, and this is the part that people like you donot seem to grasp, there IS use for encryption beyond protection from MITM attacks. Using SSL encryption protects me from password sniffers that sit on my network, or in my wireless neighbourhood or from some comprimised router my request travels over.
Except of course if that router MITM's you instead of just trying to eavesdrop. Or if that password sniffer on your local network manages to redirect your traffic through itself so it can MITM you too.
b) Most experienced users are very happy with self-signed certificates - they are mainly trying to avoid middleman secutiry issues (ISP, employer and other big brother types).
Uh, self-signed certificates are WIDE OPEN to MITM attacks. That's kind of the point here? Maybe you're not as experienced as you think?
Slashdot Mirror
Believe me, they are not just "throwing features in" to try and attract buyers; the feature-set has been 100% community driven, this is exactly what everyone wanted.
Yes, that is exactly what I meant. Just because it's a community instead of a committee does not make it a good design process.
Yes, the kind that people have been playing on ASCII terminals for decades?
Uh... That's game programming 101.
velocity_z += gravity * delta_t;
position_x += velocity_x * delta_t;
position_y += velocity_y * delta_t;
position_z += velocity_z * delta_t;
Then again, with the rest of the article being absolutely elementary bullshit, maybe it is a wonder they didn't cover that, too.
Well, the Super Mario Galaxies was total bullshit too, so that does seem to be their modus operandi. Take a popular game, bullshit something that sounds plausible to someone who's not experienced with game programming, and get linked on social media sites.
A qwerty keyboard? Is that some kind of joke?
That thing is suffering HORRIBLY from feature checklist mentality. Just throw more and more features at it in the hope of attracting people who just read the feature list, without any regard for making a system that makes sense as a whole.
although I can't think how a rich gaming experience can be created in under 600x400 resolution.
Yeah, nobody ever enjoyed a game before PCs with VGA hardware!
Because a virus can infect your normal account, and it doesn't matter one bit that it can't spread to the rarely-used guest account.
Actually, what I was doing was assuming that most people who have at least one computer are pretty "middle-class and white".
The times are changing, though, and I may just be a little behind on that.
And do you see how irrelevant that is to the discussion at hand?
Man, the zingers are flying in here!
My god, my eyes are bleeding now.
To think that there are comics out there which are worse than User Friendly is every way, when User Friendly was already pretty bottom-of-the-barrel in all departments!
Can it prevent an application the user installs themselves from doing what I described? Because a whole lot of zombie infections are caused by users installing the malicious software themselves.
Most families these days would have more than one computer.
And even so, it hardly matters. One infection is one infection. The fact that one infection is not automatically several infections is hardly very praiseworthy.
Not if you don't have access to the firewall settings which will open the port that allows someone to connect to your relay.
The program can just make the initial connection to the spammer server itself. This is the same on Windows and Linux, and these programs operate just fine under Windows.
Yes, but without access to the system FF folder, that plugin will go in your per-user plugin directory, and will only run for you.
How many computers do you honestly think there are out there that have more than a single user?
PS: It's pretty disingenuous to make a point of that the Windows virus doesn't let you "search for help online", when your Linux scenario was all about asking help from a friend in the first place.
The Windows cleanup is a merely a little longer, as it requires an OS re-install and backup restore (also, that is what most people would do on Linux anyway). The vast majority of systems out there are single-user, you know.
So cleanup is easier. But the damage may already be done, as criminals may now have your passwords, your credit card numbers, and your personal information. Plus you were probably sending spam up until the moment you noticed the infection.
The point is, there's no need to change system files or bind to privileged ports.
Your documents contains LOTS of yummy personal information for people to steal. Identity thieves and credit card thieves will love all that stuff.
Spammers need relays to send their spam through. You can run a relay just fine as a normal user. Same thing with the DDoS bot for exortotionists and script kiddies.
You can mess with the internals of Firefox without root access too, through plugins. Easy to put a password stealer in there. Or you could mess with your desktop settings so that when you try to launch a browser, you get a compromised version instead.
I'd say I've covered all the major reasons somebody would want to infect your machine here, and not a single system file or privileged port was needed for it.
There's absolutely nothing to stop anybody from installing an executable that runs automatically under a user account, without ever needing root. And that executable can do a lot of the things it may want to do without ever needing root access, either.
You see, self-signed certificates are only wide open to MITM attacks if the person monitoring you was replacing all certificates pro-actively before you even visited the website once.
I don't know about you, but personally I have not yet visited the majority of the sites on the internet. Thus this is a pretty significant attack vector for me.
Furthermore, and this is the part that people like you donot seem to grasp, there IS use for encryption beyond protection from MITM attacks. Using SSL encryption protects me from password sniffers that sit on my network, or in my wireless neighbourhood or from some comprimised router my request travels over.
Except of course if that router MITM's you instead of just trying to eavesdrop. Or if that password sniffer on your local network manages to redirect your traffic through itself so it can MITM you too.
b) Most experienced users are very happy with self-signed certificates - they are mainly trying to avoid middleman secutiry issues (ISP, employer and other big brother types).
Uh, self-signed certificates are WIDE OPEN to MITM attacks. That's kind of the point here? Maybe you're not as experienced as you think?
No, because if it wasn't for marketing you wouldn't have even heard of the iPhone.
Uh, people were talking about the iPhone for years before Apple even announced it! So yeah, I did hear about it without any marketing.
Whose only notable feature is that it is a phone by Apple, makers of the iPod!
Which implies a little more than just what logo is printed on the package, you know.
Apple is getting a "free pass" from pundit's, media, and most of the public because of past marketing.
It's always "marketing", isn't it? It certainly isn't that people buy their products and honestly like them.
That was the Simpsons reference, see?
It makes Slashdot "more real" if it's badly written, according to CmdrTaco.
Really? We're supposed to read a book review in white-on-teal?