Now, wait a minute. Isn't this just sensationalism? To me, a vulnerability is an buffer overflow, or something real. This is just generally bad design. Essentially, they are saying a window that doesn't show where it is from is a vulnerability in browser software? In that case, nearly every windowing system (Windows, X, Aqua, etc) have this 'vulnerability'. It's not hard to pop up a window that on the surface appears to be part of another app.
So again, explain to me how this is a vulnerability. I think MS said it right when they said:
Microsoft has said it is investigating Secunia's claims. It encouraged surfers not to trust pop-up windows that don't include an address bar or a lock icon that verifies that it came from a certified source.
So, even if this is a vulnerability that merits a software change in browsers... which I don't believe is the case... The only real solution is annoying text/windows/popups telling the user 'This window was popped up by Frame7, beware'. Which, they will ignore anyway. Look at the history. Users just hit OK.
With stories like this, I could call myself a security firm and publish vulnerabilities like this every hour on the hour. Then I too, could write scary papers that put fear into the masses for no reason.
I keep telling this to my fiance. I need at least four prostitutes to back her up. I don't know what bothers her more, the idea of being 'backed up' or being 'redundant'.
Sorry, folks. Saying *nix doesn't have viruses is just fan-boy. Believing it is ignorant. As a matter of fact, I run Windows and Linux. Windows does tend to get more, simply because it has more market share. However, I can say that the only virus/worm I've ever gotten that DESTROYED important data was on Linux. God damned phpBB worm that replaces *.html among other things.
Anyway, such generalizations are foolish anyway, since it's usually not the OPERATING SYSTEM level software getting the virus/worms. It's some badly written service.
Slashdot Mirror
Now, wait a minute. Isn't this just sensationalism? To me, a vulnerability is an buffer overflow, or something real. This is just generally bad design. Essentially, they are saying a window that doesn't show where it is from is a vulnerability in browser software? In that case, nearly every windowing system (Windows, X, Aqua, etc) have this 'vulnerability'. It's not hard to pop up a window that on the surface appears to be part of another app.
So again, explain to me how this is a vulnerability. I think MS said it right when they said:
So, even if this is a vulnerability that merits a software change in browsers... which I don't believe is the case... The only real solution is annoying text/windows/popups telling the user 'This window was popped up by Frame7, beware'. Which, they will ignore anyway. Look at the history. Users just hit OK.
With stories like this, I could call myself a security firm and publish vulnerabilities like this every hour on the hour. Then I too, could write scary papers that put fear into the masses for no reason.
Wow, sounds like the United States.
Keith
I feel so misunderstood... -sob-
I keep telling this to my fiance. I need at least four prostitutes to back her up. I don't know what bothers her more, the idea of being 'backed up' or being 'redundant'.
This is Slashdot.... what does this have to do with Linux? :P
Ok, so I'm new to slashdot, I see this was a reply not to me but this other guy. Threshold and threading got me all confuzzled. Keith
Uhm. Ok. What does this have to do with anything?
From your link:
Still doesn't sound like Linux gets no viruses. :P
Keith
Sorry, folks. Saying *nix doesn't have viruses is just fan-boy. Believing it is ignorant. As a matter of fact, I run Windows and Linux. Windows does tend to get more, simply because it has more market share. However, I can say that the only virus/worm I've ever gotten that DESTROYED important data was on Linux. God damned phpBB worm that replaces *.html among other things.
Anyway, such generalizations are foolish anyway, since it's usually not the OPERATING SYSTEM level software getting the virus/worms. It's some badly written service.
Anyway... you get the point. But please, stop being slashdot zombies and claiming Linux is perfect.
Keith