11.28.11

Gemini version available ♊︎

Android/Linux Not a Security Concern, Windows Definitely and Demonstrably Remains #1 Target

Posted in GNU/Linux, Security, Windows at 4:00 am by Dr. Roy Schestowitz

Chris DiBona
Photo by Joi Ito

Summary: Why the weakest link is Microsoft Windows (which therefore should not be used for storing sensitive information), whereas Android is just the target of a lot of FUD this month

TECHRIGHTS targets and addresses FUD, but sometimes the FUD is already sufficiently debunked by others, so a citation would do. There is some new FUD about Android and we put many links about it in our daily summaries, notably those which cite Chris DiBona.

Matt Asay says: “In the case of Android, which is apparently a malware-maker’s dream, Google’s open-source programs manager Chris DiBona has already gone on the defensive, arguing: “Virus companies are playing on your fears to try to sell you BS protection software for Android, RIM, and, iOS.””

The short story is (for those who missed it), rogue applications that the users themselves have to foolishly install can do bad things. Surprise, surprise. These are not viruses, not even when the BBC uses this lie. If people want programs that spy on them and occasionally ask for more money, they can install Windows. Heck, many OEMs already install this malware whether the user wants it or not, due to secret bundling agreements.

In other headlines we find reports of Windows allowing intrusion into NASDAQ: [via “FBI Blames NASDAQ Hack on UnPatched Windows, Bad Firewalls”]

Forensic investigators found some PCs and servers with out-of-date software and uninstalled security patches, Reuters reported, including Microsoft Windows Server 2003. The stock exchange had also incorrectly configured some of its firewalls.

Microsoft ‘quality’ at work. Here is a warning about putting Microsoft in charge of people’s medical records (where leakage can have devastating effects on the public). Mr. Pogson has this to say:

In an attempt to persuade Australia to allow Australian government documents to be stored off-shore, M$, in a discussion paper wrote, “Any company with a presence in the United States of America (not just those with headquarters or subsidiaries in that country) may be legally required to respond to a valid demand from the United States Government for information the company retains custody over or controls, regardless of where the data is stored or the existence of any conflicting obligations under the laws of the country where the data is located”.

Only a few days ago we explained why governments should not do business with Microsoft (and other proprietary software vendors for that matter).

Share in other sites/networks: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Reddit
  • email

Decor ᶃ Gemini Space

Below is a Web proxy. We recommend getting a Gemini client/browser.

Black/white/grey bullet button This post is also available in Gemini over at this address (requires a Gemini client/browser to open).

Decor ✐ Cross-references

Black/white/grey bullet button Pages that cross-reference this one, if any exist, are listed below or will be listed below over time.

Decor ▢ Respond and Discuss

Black/white/grey bullet button If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

11 Comments

  1. Will said,

    November 28, 2011 at 9:45 am

    Gravatar

    I can easily believe Asay about the anti-virus vendors (and those that sell their products).

    I know a small computer shop that used to primarily a Windows PC retailer up until Vista, when public reaction forced them to switch over to being about 90% Mac shop to stay afloat. They’ve been almost a pure Mac shop ever since.

    They happen to also sell anti-virus products for OSX. Privately, and off the record, every employee there knows that Norton for OSX is a joke and a scam. Publicly, they’ll push anti-virus for Mac on every customer that comes in the door. Since almost all of their Mac customers are people switching from Windows that can’t fathom the concept of a computer that’s intrinsically safe from viruses, it works more often than not.

    Dr. Roy Schestowitz Reply:

    So Norton is the Chopra is computing and “anti-virus” turns out to be more like homoeopathy.

    Dr. Roy Schestowitz Reply:

    s/is computing/of computing/

    mcinsand Reply:

    If I had to use a Windows PC at home (no choice at work), choosing between installing Norton or running with no virus protection would be tough; in my experience, the headaches that Norton brings are not much better than the viruses.

    A few years ago, a neighbor had a problem installing a DVD drive, and he asked me to take a look. After several hours’ frustration, we were just going to do a clean install. I took the hard drive home to back up his data, and ClamAV found four viruses that his updated Norton missed. After delousing, the hard drive went back in and the DVD drive installed flawlessly.

    One more thing, and I don’t know if it’s true or still true. Our IT at work used to warn us against using Norton at home. Their information was that Norton is used as a QC method for significant fraction of the virus-writing community; if a virus can get past Norton, then it’s ready to fling out into the world (their philosophy, not mine).

  2. Michael said,

    November 28, 2011 at 1:48 pm

    Gravatar

    Google says Android malware is not a concern.

    Whew. I am relieved. :)

  3. twitter said,

    December 1, 2011 at 3:18 pm

    Gravatar

    There are now some accusations of preinstalled malware.

    http://franken.senate.gov/files/letter/111201_Letter_to_CarrierIQ.pdf

    That would be a carrier and non free software problem, not an Android problem. The good Senator should have a look at the wonderful world of Windows one day.

    Michael Reply:

    This is a problem on, if you believe the reports, most Android devices.

    There are also some reports of it being on iOS at the insistence of the carriers (I believe) but it is set to *not* phone home unless set in a mode to do so – with user permission.

    Any company who is putting this on phones and having it phone home without permission should face steep fines – including Apple, of course, if they are doing so. Shame on any company who allows this.

    twitter Reply:

    I believe it’s a problem, thanks, but I can also smell an organized FUD campaign when I see it. Just a few months ago, Google caught Microsoft spying on ordinary home users and offered screen shots to prove it. Microsoft’s EULA has long demanded the ability to read and delete user files at will and non free software always been this way. So what’s an abusive monopolist to do about a more open rival? Mirror troll them. Microsoft has nothing to lose by destroying the cell phone market and everything to gain telling people that Android and Google are evil because third parties have bugged user phones.

    The only good thing that can come of this is that people recognize that software freedom is the only way to fight malware. iOS, OSX, and all versions of Windows are even more bugged than Android is. Non free software can not be verified and should never be trusted. Wikileaks has started to weigh in on the issue of known government spying through non free software backdoors. The issue is explosive because people have died when tech companies betrayed them to dictators and all of us have been sold to companies that seek to exploit us.

    http://www.huffingtonpost.co.uk/2011/12/01/wikileaks-security-spyfiles-surveillance-spying-bugs-_n_1122983.html?ref=uk

    Michael Reply:

    You are excusing Android devices (and others – it is not just Android) because Microsoft has also done things which are wrong.

    That is silly. The whole idea of this being some grand conspiracy by Microsoft and their “boosters”, as Roy calls anyone who disagrees with him, is borderline paranoid.

    If Android devices (and others) are doing as has been reported it is wrong. Those whom have does this should be punished.

    Not sure why this would even be open to debate – esp. from people who claim to be against such stuff.

    The fact is Google’s income comes from collecting data on people so they can target ads. I am not saying Google is behind this particular episode of tracking user data, but tracking such data is what Google *must* do to be profitable. It is more likely they are behind it than MS is (which is not to say either is). But do not think for a second that Google is not doing a whole heck of a lot to track users – it has more incentive to do so than any other company.

    twitter Reply:

    I’m not excusing anyone, I’m trying to give credit where it belongs. Windows itself is spyware and malware. Android itself is free software. That carriers have added nasty things to Android, if that’s what happened, would a carrier problem. It would be nice if you had some kind of proof of what you say about Google, but it’s obvious that you are just here to say nasty things about Roy, free software, Google and everything that’s not Microsoft.

    Michael Reply:

    I’m not excusing anyone, I’m trying to give credit where it belongs. Windows itself is spyware and malware.

    It has had it included as well… though to say it is by itself is a bit silly. Or are you counting the fact that it, like so much other software, needs to be registered.

    Android itself is free software. That carriers have added nasty things to Android, if that’s what happened, would a carrier problem.

    Has anyone said otherwise?

    It would be nice if you had some kind of proof of what you say about Google, but it’s obvious that you are just here to say nasty things about Roy, free software, Google and everything that’s not Microsoft.

    What have I said about Google that you think is in question? That they make their income from targeted ads? Is this something you are not aware of? That to target ads you have to collect data on people? What is it you are questioning?

    As far as my saying nasty things about free software, that is just silly (though I prefer the term “open source”). I use and advocate open source software: my websites are all hosted on Linux because it is the best choice, I use WebKit and Gecko based browsers because they serve my needs best, I use an open source FTP client and I use VLC; I use GIMP for working with favicons because it does so well, I suggest LibreOffice for those I think it will work well for – heck, I even suggest desktop Linux (generally Mint these days) to those people for whom I think it is the best choice. So your claim that I am against open source is just flat out wrong. Same thing with any claim that I am against Google: sure, they do “bad” things, just as Apple does – but both companies are innovative and understand the importance of user experience. Heck, look at the default Google home page compared to, say, the Yahoo page. Google gets it!

    What I am against is false “advocacy” – lying about the competition to make Linux and OSS look better. It is this form of false “advocacy” that Roy and his ilk engage in – and it bothers me how it hurts the open source movement. I am against Roy working to hurt open source under the guise of trying to help it. At least with Microsoft and others who work against open source they are open about their wanting people to use a different solution – Roy is “closed” – he does not admit to his biases (though he also does not hide them well). But even with Roy you can find examples where I have sided with him when he is not practicing his false “advocacy”. Heck, just yesterday I congratulated him on dropping his unsupported claim that Apple had falsified data it presented to a court. This is a step in the right direction for him and evidence that he is learning, even if he will never acknowledge it. That is fine: if I can help him back away from his behavior that hurts the open source movement I am not concerned about him giving me credit.

DecorWhat Else is New


  1. Becoming Robust to Censorship is a Technical Challenge for Web Sites That Publish Suppressed Information and Supportive Material

    Being at the mercy of third parties indebted to corporate patrons (or banks), sometimes in "reputation" or "political correctness" or "safety" clothing, is a topological issue; we need to teach more people to self-host and exercise full control over speech and information (never let those with money and power decide who can speak and who cannot)



  2. Links 28/10/2021: Raspberry Pi Zero 2 W Released and Mesa 21.3 Reaches RC3

    Links for the day



  3. [Meme] The EPO's “New Normal”

    The rule of law is being thrown out the window/door, people send rude letters, and we’re meant to think that this is the “new normal” (laws and regulations ceasing to exist); brought by the same people who try to force-feed people all around Europe the unlawful UPC



  4. [ES] Spanish: Richard Stallman's Speech From This Past Saturday

    The new bits (in Spanish) start at 14m:42s from the start



  5. This New Edward Snowden Video is Relevant to Media Cover-up in Service of EPO Management

    We’re long mentioned the 'conspiracy of silence' regarding EPO corruption (bribes and threats from Benoît Battistelli and António Campinos contribute to this silence), so the above video, which is new, seems relevant to us



  6. EPO Home-Working (or 'Remote' Working or 'Teleworking') Isn't an Act of Generosity But of Exploitation

    Contrary to what staff may be led to believe, allowing folks to work from home is just a workaround (as the law forbids some human-to-human contact/interaction) and pretext for screwing the workers a little bit more while crushing basic rights, such as strike and protest abilities (exercising or expressing dissent)



  7. IRC Proceedings: Wednesday, October 27, 2021

    IRC logs for Wednesday, October 27, 2021



  8. [Meme] False Choices and False Dichotomy Designed for Self-Harm

    The self-serving EPO surveys, which Benoît Battistelli and António Campinos design to justify their own policies, have severe flaws in them



  9. Links 27/10/2021: XOrg Server 21.1 and Makulu Shift Ubuntu Variant Released

    Links for the day



  10. Links 27/10/2021: Murena for /e/ and Red Hat Condemned for Its Nationalism/Racism

    Links for the day



  11. [Meme] EPO Presidential Surveys

    The 'social democracy' of Benoît Battistelli and António Campinos as demonstrated by a controlled survey (controlled by the subject of the survey, EPO governance)



  12. 'Shaping the New Normal' Survey at the EPO Got 5,554 EPO Staff to Participate, But It Was Controlled by Liars With an Agenda

    Last year’s EPO ‘study’ (hogwash about “quality” and other unscientific junk) was likely biased by virtue of autocrats controlling it and exploiting it for nefarious agenda and brainwashing of national delegates. The Staff Union of the EPO (SUEPO) has a new survey in the making.



  13. Many of the National Delegations (or Delegates) in the EPO's Administrative Council Have No Understanding of What They Vote on

    One must consider the possibility that ignorance or gullibility (which lack of qualifications may entail) possibly became a contributing factor — malice and bribery aside — in systemic failure of the EPO’s governance



  14. The EPO’s Overseer/Overseen Collusion — Part XXV: The Balkan League - Fresh Blood or Same Old, Same Old?

    We take stock of "captured states" that voted in favour of unlawful "Strike Regulations"



  15. IRC Proceedings: Tuesday, October 26, 2021

    IRC logs for Tuesday, October 26, 2021



  16. Beatriz Busaniche Speaks Up in Defense of Richard Stallman

    Beatriz Busaniche sent us this comment in July 2021. She wrote it originally in Spanish. Here are both the original text and our translation to English.



  17. Links 26/10/2021: SUSE Linux Enterprise Micro 5.1 and Multi-Distro Benchmarks

    Links for the day



  18. Links 26/10/2021: Vulkan 1.1 Conformance for Raspberry Pi 4 and Tor Browser 10.5.10

    Links for the day



  19. [Meme] Sounds Legit

    When not cheating on the wife, the EPO‘s “doyen” cheats in the exams and makes it into the epi Council, in effect working “[t]owards a common understanding [sic] of quality” with “patent attorneys nominated as “assessors” by the EPO, epi and BusinessEurope” (notorious lobbyists for dictators, litigation, and monopolies, neither business nor science)



  20. [Meme] Mayoral Patent Office Chief

    As it turns out, political 'double-dipping' isn't just a thing in North Macedonia, Austria, and EPOnia



  21. Romania's Patent Office (OSIM): Nine Different Chiefs in Just Eight Years

    The Romanian State Office for Inventions and Trademarks (OSIM), being the equivalent of the U.S. Patent and Trademark Office (USPTO) in the sense that it covers both patents and trademarks, is a very flaky institution with no shortage of scandals; for our English-reading audiences we now have a summary of a decade’s worth of blunders and leadership changes



  22. The EPO’s Overseer/Overseen Collusion — Part XXIV: The Balkan League - Romania

    Romania’s patent office has been in flux this past decade, occasionally led by people with no relevant experience, but rather political connections (like EPO President António Campinos) and sometimes forged documents and fake degrees



  23. IRC Proceedings: Monday, October 25, 2021

    IRC logs for Monday, October 25, 2021



  24. [Meme] “Social Democracy” at the EPO

    Some comments on the current situation at the European Patent Office from Goran Gerasimovski, the new EPO Administrative Council delegate for North Macedonia and Social Democratic candidate for mayor of Centar (a municipality of Skopje)



  25. [Meme] António Campinos Visits the OSIM

    António Campinos visits OSIM Director-General Ionel Muscalu in February 2014



  26. [Meme] [Teaser] Meet the President

    Later today we shall see what Romania did for Battistelli



  27. Links 26/10/2021: Latte Dock 0.10.3 and Linux 5.15 RC7

    Links for the day



  28. Gemini Protocol's Originator: “I Continue to Care About This Project and I Care About the Community That Has Formed Around It.”

    'Solderpunk' is back from a long hiatus; this bodes well for Geminispace, which grew fast in spite of the conspicuous absence



  29. Bulgarian Like Bavarian Serfdom

    Bulgarian politics seem to have played a big role in selecting chiefs and delegates who backed Benoît Battistelli‘s unlawful proposals, which treat workers almost like slaves and ordinary citizens as disposable ‘collaterals’



  30. The EPO’s Overseer/Overseen Collusion — Part XXIII: The Balkan League - Bulgaria

    Today we examine the role of Bulgaria in Benoît Battistelli‘s liberticidal regime at the EPO (as well as under António Campinos, from 2018 to present) with particular focus on political machinations


RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

Recent Posts