Bonum Certa Men Certa

Featuritis as Threat to Computer Security

posted by Roy Schestowitz on Jun 10, 2024

Featuritis

They say too much of a good thing can be bad for you. And "apropos OpenSSH," an associate said, "I suspect traces of Microsoft in that growing mess".

Like Mesa and Linux, Microsoft has in effect infiltrated (by payment) OpenSSH, which puts it at risk. They add Windows code to otherwise-simple and relatively secure bits of software to "extend" them to platforms with NSA back doors.

Here are some old articles about creeping featurism, featuritis, or feature creep [1, 2, 3].

Featuritis, also known as feature creep or creeping featurism, refers to the phenomenon in technology wherein a product does many things poorly rather than doing one thing well. At the very least, features will be “hidden” from the user among other features. In UX terms, this might manifest as poor information architecture, but it could lead to an unusable product.

When I think about avoiding featuritis I’m thinking about minimalism. What’s my MVP? How does “less is more” apply to my design? Of course, there are a certain number of affordances and features that belong to this product, but it’s my job to make sure users are not overwhelmed by a product that is poorly thought out.

1. Describes a systematic tendency to load more chrome and features onto systems at the expense of whatever elegance they may have possessed when originally designed. See also feeping creaturism. “You know, the main problem with BSD Unix has always been creeping featurism.”

2. More generally, the tendency for anything complicated to become even more complicated because people keep saying “Gee, it would be even better if it had this feature too”. (See feature.) The result is usually a patchwork because it grew one ad-hoc step at a time, rather than being planned. Planning is a lot of work, but it's easy to add just one extra little feature to help someone ... and then another ... and another.... When creeping featurism gets out of hand, it's like a cancer. The GNU hello program, intended to illustrate GNU command-line switch and coding conventions, is also a wonderful parody of creeping featurism; the distribution changelog is particularly funny. Usually this term is used to describe computer programs, but it could also be said of the federal government, the IRS 1040 form, and new cars. A similar phenomenon sometimes afflicts conscious redesigns; see second-system effect. See also creeping elegance.

“Creeping featurism is the tendency to add to the number of features of a product, often extending the number beyond all reason. There is no way that a product can remain usable and understandable by the time it has all of those special-purpose features that have been added in over time.”

― Donald A. Norman, The Design of Everyday Things

K.I.S.S. (Keep It Simple, Stupid) is essential for real security and outsourcing is the very opposite of security because it is compromising oneself based on trust in some unverifiable, inauditable entity, i.e. the antithesis of self-determination. It is imperative that we collectively reject the doctrine of fake security, wherein people controlling their computers is "sideloading". This morning we mentioned this in relation tom CAs.

Other Recent Techrights' Posts

LLM Slopfarms: LinuxSecurity.com and FUDZilla Doing 'Linux' (Fake Articles)
It's 2025. Everything on the Web is getting worse, except SPARTAN.
Red Hat's Bluewashing to be Further Completed This Year
Do not wait for some announcement from redhat.com - it's already covered by IBM
LLM Slop is Now Filling the Web With Pure Fiction/Fabrication/Misinformation About Linux
The timing of this lie/fiction is curious because Torvalds is being brigaded for defending C
FUDZilla Has Turned Into LLM Slop and Machine-Generated FUD (New York Times Has Also Just Admitted Moving in That Direction)
Failing news sites, instead of calling it quits with some remaining dignity, are handing control over to LLM slop (pretending to still be active)
By Buying Twitter, MElon and Cheeto Now Control EU Politicians, Even at the Highest Levels
"the top level politicians make the egregious mistake of trying to treat Xitter as if it were a communications medium"
How to 'Sell' Software Freedom to People
In my experience, it helps when one speaks about control, not freedom, including confidentiality
 
Two Years After Issuing Ridiculous Threats and Choosing a Law Firm in Debt (Probably Desperate for Clients) Matthew J. Garrett Gets Help ('Bailout') From Microsofters
The karma won't be good
How Americans View 'Free Speech' in Practice
"No good deed goes unpunished"
Threats Against Techrights Always Come From Outside Britain
Over the coming days we shall write about an example of our own and we'll show how Americans have the audacity to bully people using a foreign (to them) court
Links 18/02/2025: More DeepSeek Bans and Supreme Court Patent Challenges
Links for the day
Links 18/02/2025: FAA Layoffs and EU Betrayed
Links for the day
On Technical Contracts of Employment and Why People Must Read Before Signing
The wave of layoffs under MElon will worsen prospects of finding alternate/better employment
Gemini Links 18/02/2025: Reading Books and Oneiric Monk
Links for the day
Swiss corruption, Greens, Liip & Debian human rights violations
Reprinted with permission from Daniel Pocock
Swiss police TIGRIS unit, World Cat Day, Swiss-corruption.com & Debian
Reprinted with permission from Daniel Pocock
Links 18/02/2025: “Hey Hi Video Surveillance” and YouTube at 20
Links for the day
The Washington Post (Jeff Bezos) Dies in Darkness
spread it on
Gemini Links 18/02/2025: Downloading Gemini Files with Emacs and Elpher, Gopher on Devuan
Links for the day
Richard Stallman Confirms His Next Talk, "Free/Libre Software and Freedom in the Digital Society" (Next Monday in Free University of Bozen-Bolzano)
He could already advertise this more than a week ago
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Monday, February 17, 2025
IRC logs for Monday, February 17, 2025
IBM's Chronic Neglect Won't Save Anything and It Might Even Get IBM Sued
The problem is likely a lack of manpower, not deliberate shoddiness
Gemini Links 17/02/2025: Ideal OS, AuraRepo Alpha, and Simple Code
Links for the day
The "Cool Kids" Are Already Using GNU/Linux, Microsoft is Just Cheating
The future and the present are Linux
Links 17/02/2025: War on Dissent and Bloggers, Nationalism a Growing Theme
Links for the day
IBM Going International (and India)
It's Monday and a national holiday
GeekWire: Microsoft Bribes Us While We Cover Microsoft Affairs (Spin Doctoring), Hence We Are "Independent"
What good is a "journalist" sponsored by the very same company he or she writes about?
The Attacks on LinuxQuestions.org
Going to Clownflare only worsens the problem
The GNU Manifesto Turns 40 Next Month
The guardian of Free software (definition, licences, philosophy, hosting and so on) has managed to endure and persevere for 40 years. Very few others can say the same.
Microsoft Lunduke Belongs in 4Chan
Assuming Microsoft Lunduke is aware of the full context, he is now trolling not one but two decent organisations
In Europe and in India Richard Stallman Need Not Duck Anymore, People Trying to Cancel His Talk Have No Sway
the last time a talk by Dr. Stallman got canceled was about a year ago
Back From a Short Break
We can now resume and try to stick to the usual pace
Links 17/02/2025: LLMs Failing and Patreon Support Becoming a Burden to Bloggers
Links for the day
Links 17/02/2025: Blogroll Conundrum; Research, Scientists Under Siege
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Sunday, February 16, 2025
IRC logs for Sunday, February 16, 2025
Links 16/02/2025: Nostalgia for Physical Media and the US Government Actively Promotes Pro-Kremlin Politicians in the EU
Links for the day
Gemini Links 16/02/2025:Life, Cynicism, and languages
Links for the day
Links 16/02/2025: Oligarchs "Collect Your Data and Control Your World", Global Temperatures Shoot Up
Links for the day
Promoting Microsoft Windows With LLM Slop
What is the policy at BetaNews regarding LLM slop?
Alex Oliva, the Potential 'Successor' of RMS, Has a New Web Site
More freedom for Alex Oliva
Links 16/02/2025: "Microsoft Is Laying Off Employees" and Internal Dissent Brewing at Facebook Over Regime Complicity
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Saturday, February 15, 2025
IRC logs for Saturday, February 15, 2025