By the way: Did you observe how I did that without incorporating a juvenile insult?
I believe you mean, "without a juvenile insult until the last line, at which point I revealed my hyper-sensitivity and irrationally accused you of a juvenile insult"?
Sounds like you're confused. There are no "good guys" trying to track me, only pragmatic reasons I might chose to allow some limited tracking for some limited time (like for street navigation). The "bad guys" are by definition whomever is trying to track you.
I personally find it funny when people use Tor and then leave behind the same cookies, the same user-agent, LSO and Flash cookies, same system configuration, same screen size, same fonts, same installation and versions of plugins, same MAC address, don't change DNS servers and countless amount of other things that make it very easy to identify your other activity or what you're doing. Especially to Google via Google Analytics.
Nevermind also that half of the TOR network end nodes are monitored and sniff your traffic and can modify your browsing session in various ways. Just imagine the fun when you happen to use an end node that serves you a drive-by download exploit instead of the page you requested.
You have some good points, though some of those concerns are easily addressed in your privoxy config. I use tor regularly BTW, and am impressed with its performance compared to a few years ago. I don't drink the kool-aid, but between privoxy and tor you can certainly avoid being tracked by all but the most devoted bad guys. However, if someone competent is targeting you specifically you're screwed no matter what you use, unless you're an uberhacker with access to some heavy hardware.
Or maybe we don't have the budget for testing iOS devices, and all the employees who own them are lusers who can't help with testing because they don't know memory from storage, plus have a chip on their shoulder so no-one wants to help them beyond what the job description requires. Ever think of that, genius? No, of course not. Just "me me me, I want I want!!!!". So typical... Doesn't it ever occur to you attitude wielding fartknockers that maybe you get shitty service out of IT because IT doesn't like being treated like shit? You're probably the type that pisses off food servers and hotel maids, too. Not very smart.
It's not being a self entitled asshole to ask that IT do their job so that I can do mine. My job brings money into the company, and that is what keeps us all in business.
Your sense of entitlement is quite apparent to everyone but you. IRL you don't make money without IT. IT doesn't make money without you. It's by nature a marriage of equals, but you sound like an abusive spouse. Get real.
Why is it that we in IT have people that are so resistant to change instead of being the change advocates we need to be?
Because of the laws of physics: shared collision medium, higher latency, etc.
Don't forget security! You know, that magickal thing nearly all users take for granted, assuming it's just automagically built-in to networking or perhaps there's just an app we all use that handles all security issues. People who rage against IT because they can't have their way are usually (not always) frakking morons who need to be locked down for their own and everyone elses' safety.
"The post-exploitation modules (post for short) are designed to run on systems that were compromised through another vector, whether its social engineering, a guessed password, or an unpatched vulnerability," HD Moore, Rapid7 chief security officer and Metasploit chief architect told InternetNews.com. "This module requires iTunes to be installed and for a backend to be accessible that has not been encrypted."
Correct. Slashvertisements are annoying enough, at least they should be reasonably accurate. This one falls into the "sensationalist blurb" category.
What are you talking about? Opera has NotScripts. In fact, opera has almost everything, including a lot of powerful config options only available in Firefox via addons -- the one critical missing element (for me) is pentadactyl. If it had that I'd switch back to opera in a heartbeat (pentadactyl is why I switched to firefox, now I'm totally spoiled).
I stopped at the exact same spot. This is one of the many reasons why you can't say "Well I know logic, so that must supersede someone who knows the law". He also made no attempt to actually break his argument down into actual logic statements, he just basically said "Here's the way I assume things to be, and here's the way I think they should be, and I think I'm really smart so I must be right". Upon a little further reflection, I'm pretty sure that statement is an accurate summary of every Bennet Haselton post ever.
Yes, Bennet Haselton is a pretty smart guy, but he's not as smart as he thinks he is and as a result is constantly falling victim to fallacious logic,unwarranted assumptions, and erroneous suppositions. He obviously lacks the training to do research into the issues he's always claiming to be researching, and probably should stick with math.
I think my original point stands though. If it's so easy to compromise Linux, why isn't it being done? Why can't the very people who like to crow about how easy it is (and even hurl accusations of "security through obscurity") just put up or shut up?
I think we both know the answer to that. The PEBKAC is still there for the average user, no matter which system they use. But in Linux the system isn't designed to make it trivial to run any code from any location, as windows historically has been -- it's a bit better with 7 than it was previously, and XP SP3 is also a major improvement over previous versions. But it's still fairly trivial to generate windows malware, going by the sheer volume of infected machines. I personally have one person in my contacts running win7 whose machine is spamming me daily. Oops. Windows is still the lowest hanging fruit, and as criminals are pretty much always lazy people looking to get rich quick that's what they go for. When that's gone, they'll move on to other scams (assuming OS X has been locked down, otherwise that's hanging a bit low as it is). They will not learn to be 1337 for reelz and finally code that Linux virus. That's not the criminal MO.
It's interesting that the feds think going after a redirector browser plugin is worthwhile. Maybe it's a preview of how "thorough" they plan to be in the future. If DNS blocking/misdirecting is all they've got, this should be even more futile that the War On Drugs.
We really need to get some of that military budget re-purposed for education -- for gov't employees first!
Last I checked, most Linux distros don't have noexec on home, so you most certainly can install and run arbitrary code without having root.
If that's the whole story and you're so knowledgeable then prove me wrong by whipping up a little malware for Linux and post the link so I can try it out. Oddly, after several years of proposing this obvious way to prove that "point", not one person has done it. Must not be as easy as you like to imagine.
How imaginative. Why, when this fallacious "reasoning" defeated in every single slashdot story in which it comes up, do people persist in trying to promote this myth? You *can't* unwittingly install and run arbitrary code on Linux the way you can on windows, unless you're incompetent and running as root all the time (which incredibly, I do know of at least one person who does -- but it's rare).
I don't know why you persist in trolling me, but your illogic is "My experience is not what yours is, that makes you a liar!". And frankly, that makes you an idiot. I'm just sharing my experience. My posting history shows that while I am not infallible, I am sincere. If that's not good enough for you go read someone else's posts.
But I will say, the OSX machines, that you didn't try to change anything, ran much better than XP. It's when you had to start customizing things, then OSX breaks.
I think you may have just pinpointed the problem. That would explain why so many people want to call me names every time I mention how buggy OS X has become, if they're out-of-the-box style users maybe they have a different experience. Of course, I never used it (or any other system) as it comes "out-of-the-box". But honestly, toward the end of my Snow Leopard days I couldn't help but notice that even my "crappy" windows XP testing machine was less trouble to maintain, and it's heavily modified with cygwin and all sorts of dev stuff on it.
No, actually -- OS X Tiger was the pinnacle, and Leopard and Snow Leopard are buggier than Tiger -- speaking as someone who uses OS X for pro audio and also has an abundance of experience with Linux, BSD, and windows.
So, you've got nothing to contribute but trolling, I take it?
Slashdot Mirror
I believe you mean, "without a juvenile insult until the last line, at which point I revealed my hyper-sensitivity and irrationally accused you of a juvenile insult"?
;)
Yes, good job.
Sounds like you're confused. There are no "good guys" trying to track me, only pragmatic reasons I might chose to allow some limited tracking for some limited time (like for street navigation). The "bad guys" are by definition whomever is trying to track you.
You have some good points, though some of those concerns are easily addressed in your privoxy config. I use tor regularly BTW, and am impressed with its performance compared to a few years ago. I don't drink the kool-aid, but between privoxy and tor you can certainly avoid being tracked by all but the most devoted bad guys. However, if someone competent is targeting you specifically you're screwed no matter what you use, unless you're an uberhacker with access to some heavy hardware.
Or maybe we don't have the budget for testing iOS devices, and all the employees who own them are lusers who can't help with testing because they don't know memory from storage, plus have a chip on their shoulder so no-one wants to help them beyond what the job description requires. Ever think of that, genius? No, of course not. Just "me me me, I want I want!!!!". So typical... Doesn't it ever occur to you attitude wielding fartknockers that maybe you get shitty service out of IT because IT doesn't like being treated like shit? You're probably the type that pisses off food servers and hotel maids, too. Not very smart.
Your sense of entitlement is quite apparent to everyone but you. IRL you don't make money without IT. IT doesn't make money without you. It's by nature a marriage of equals, but you sound like an abusive spouse. Get real.
Don't forget security! You know, that magickal thing nearly all users take for granted, assuming it's just automagically built-in to networking or perhaps there's just an app we all use that handles all security issues. People who rage against IT because they can't have their way are usually (not always) frakking morons who need to be locked down for their own and everyone elses' safety.
Correct. Slashvertisements are annoying enough, at least they should be reasonably accurate. This one falls into the "sensationalist blurb" category.
Obviously all women require that sort of advice from men, so we can hope to be "proper women".
Get over yourself, indeed!
Vimperoperator is basically a set of keybindings, not the complete UI makeover pentadactyl is.
As soon as I saw they had something everyone calls a "cashew" it was clear to me they haven't found their way yet. "Go to the cashew"? Cashew?
What are those guys smoking?
Oh wait, nevermind -- I was distracted and failed to realize this discussion is about *mobile*.
What are you talking about? Opera has NotScripts. In fact, opera has almost everything, including a lot of powerful config options only available in Firefox via addons -- the one critical missing element (for me) is pentadactyl. If it had that I'd switch back to opera in a heartbeat (pentadactyl is why I switched to firefox, now I'm totally spoiled).
Yes, Bennet Haselton is a pretty smart guy, but he's not as smart as he thinks he is and as a result is constantly falling victim to fallacious logic,unwarranted assumptions, and erroneous suppositions. He obviously lacks the training to do research into the issues he's always claiming to be researching, and probably should stick with math.
[blah blah blah]....moot. What's so funny, counselor?"
<butthead> huhuhuhuh you said huhuh "moot". Huhuh huhuhuh</butthead>
<beavis> Yeah! Yeah! He said "moot" heh hehheh hehhehhehhehheh</beavis>
<judge> **bangs gavel**</judge>
I think my original point stands though. If it's so easy to compromise Linux, why isn't it being done? Why can't the very people who like to crow about how easy it is (and even hurl accusations of "security through obscurity") just put up or shut up?
I think we both know the answer to that. The PEBKAC is still there for the average user, no matter which system they use. But in Linux the system isn't designed to make it trivial to run any code from any location, as windows historically has been -- it's a bit better with 7 than it was previously, and XP SP3 is also a major improvement over previous versions. But it's still fairly trivial to generate windows malware, going by the sheer volume of infected machines. I personally have one person in my contacts running win7 whose machine is spamming me daily. Oops. Windows is still the lowest hanging fruit, and as criminals are pretty much always lazy people looking to get rich quick that's what they go for. When that's gone, they'll move on to other scams (assuming OS X has been locked down, otherwise that's hanging a bit low as it is). They will not learn to be 1337 for reelz and finally code that Linux virus. That's not the criminal MO.
It's interesting that the feds think going after a redirector browser plugin is worthwhile. Maybe it's a preview of how "thorough" they plan to be in the future. If DNS blocking/misdirecting is all they've got, this should be even more futile that the War On Drugs.
We really need to get some of that military budget re-purposed for education -- for gov't employees first!
Sucks to be you. Gentoo user here, with a considerable amount of real world experience. Troll harder.
If that's the whole story and you're so knowledgeable then prove me wrong by whipping up a little malware for Linux and post the link so I can try it out. Oddly, after several years of proposing this obvious way to prove that "point", not one person has done it. Must not be as easy as you like to imagine.
Wow that carries so much weight coming from an Anonymous Coward. Maybe when you grow up you'll have a slashdot account and everything!
How imaginative. Why, when this fallacious "reasoning" defeated in every single slashdot story in which it comes up, do people persist in trying to promote this myth? You *can't* unwittingly install and run arbitrary code on Linux the way you can on windows, unless you're incompetent and running as root all the time (which incredibly, I do know of at least one person who does -- but it's rare).
I don't know why you persist in trolling me, but your illogic is "My experience is not what yours is, that makes you a liar!". And frankly, that makes you an idiot. I'm just sharing my experience. My posting history shows that while I am not infallible, I am sincere. If that's not good enough for you go read someone else's posts.
I think you may have just pinpointed the problem. That would explain why so many people want to call me names every time I mention how buggy OS X has become, if they're out-of-the-box style users maybe they have a different experience. Of course, I never used it (or any other system) as it comes "out-of-the-box". But honestly, toward the end of my Snow Leopard days I couldn't help but notice that even my "crappy" windows XP testing machine was less trouble to maintain, and it's heavily modified with cygwin and all sorts of dev stuff on it.
As a matter of fact as a former Apple user I do love my Thinkpad. It's a great machine, and will even run plan9 no problem!
No, actually -- OS X Tiger was the pinnacle, and Leopard and Snow Leopard are buggier than Tiger -- speaking as someone who uses OS X for pro audio and also has an abundance of experience with Linux, BSD, and windows.
So, you've got nothing to contribute but trolling, I take it?