Bonum Certa Men Certa

Featuritis as Threat to Computer Security

posted by Roy Schestowitz on Jun 10, 2024

Featuritis

They say too much of a good thing can be bad for you. And "apropos OpenSSH," an associate said, "I suspect traces of Microsoft in that growing mess".

Like Mesa and Linux, Microsoft has in effect infiltrated (by payment) OpenSSH, which puts it at risk. They add Windows code to otherwise-simple and relatively secure bits of software to "extend" them to platforms with NSA back doors.

Here are some old articles about creeping featurism, featuritis, or feature creep [1, 2, 3].

Featuritis, also known as feature creep or creeping featurism, refers to the phenomenon in technology wherein a product does many things poorly rather than doing one thing well. At the very least, features will be “hidden” from the user among other features. In UX terms, this might manifest as poor information architecture, but it could lead to an unusable product.

When I think about avoiding featuritis I’m thinking about minimalism. What’s my MVP? How does “less is more” apply to my design? Of course, there are a certain number of affordances and features that belong to this product, but it’s my job to make sure users are not overwhelmed by a product that is poorly thought out.

1. Describes a systematic tendency to load more chrome and features onto systems at the expense of whatever elegance they may have possessed when originally designed. See also feeping creaturism. “You know, the main problem with BSD Unix has always been creeping featurism.”

2. More generally, the tendency for anything complicated to become even more complicated because people keep saying “Gee, it would be even better if it had this feature too”. (See feature.) The result is usually a patchwork because it grew one ad-hoc step at a time, rather than being planned. Planning is a lot of work, but it's easy to add just one extra little feature to help someone ... and then another ... and another.... When creeping featurism gets out of hand, it's like a cancer. The GNU hello program, intended to illustrate GNU command-line switch and coding conventions, is also a wonderful parody of creeping featurism; the distribution changelog is particularly funny. Usually this term is used to describe computer programs, but it could also be said of the federal government, the IRS 1040 form, and new cars. A similar phenomenon sometimes afflicts conscious redesigns; see second-system effect. See also creeping elegance.

“Creeping featurism is the tendency to add to the number of features of a product, often extending the number beyond all reason. There is no way that a product can remain usable and understandable by the time it has all of those special-purpose features that have been added in over time.”

― Donald A. Norman, The Design of Everyday Things

K.I.S.S. (Keep It Simple, Stupid) is essential for real security and outsourcing is the very opposite of security because it is compromising oneself based on trust in some unverifiable, inauditable entity, i.e. the antithesis of self-determination. It is imperative that we collectively reject the doctrine of fake security, wherein people controlling their computers is "sideloading". This morning we mentioned this in relation tom CAs.

Other Recent Techrights' Posts

IBM's Payroll: Cannot Even Pay the People What They're Legally Entitled to
How financially-stressed is IBM at this point?
IBM 'Dinobabies' Speak Out
"They want newbies out of school at a much cheaper rate"
 
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Wednesday, March 11, 2026
IRC logs for Wednesday, March 11, 2026
Gemini Links 12/03/2026: "on Urbit" and the True Cost (or Criticism) of "Social Control Media"
Links for the day
Slop About "linux" in Google News
Once people recognise that those sites are fake it's hard to 'unsee' what they are
An American War on GNU/Linux, Software Freedom, and British Investigative, Science-Based Reporting - Part V - Attempts to Take Down and Suppress Criticism of Back Doors Controlled by Microsoft and the American Government
The cost of maintaining illusions
Slides From the European Patent Office (EPO) Explain Why They're Striking, How They're Striking, and What Comes Next
A week from now the strike will go ahead
GAFAM Datacentres Are Facilities of War, So Risk of Downtime by Missiles or State-Sponsored Cracking Has Vastly Increased
How safe is your business in "clown computing" or DCs marked as some "legitimate targets" at wartime?
Companies That Take Away Blood and Sweat From the Community to Sell a Ponzi Scheme to Everybody
We need Free software that is run by communities
1,234 People Gather Online to Plan Next EPO Strikes and Other Industrial Actions
yesterday an online gathering orchestrated the next moves by EPO staff
Links 11/03/2026: Fake Videos Swarm YouTube, "Ukraine Can Now Manufacture ‘China-Free’ Drones"
Links for the day
Gemini Links 11/03/2026: Lagrange for iOS and Android and "Turning a Folder of Git Repos Into Project Launcher"
Links for the day
Kafkaesque: Unlawful Activities in the UK to Cover Up Unlawful Activities in the United States of America
Why is bribery and even extortion seen is OK? Because rich people do those things?
Former IBM Executive, Ron Hovsepian, Doomed S.u.S.E. (SUSE)
SUSE is like a child nobody wants to raise
Quiet Layoffs or Silent Layoffs Alleged at Microsoft
Will some investigative journalists do their job now and ask Microsoft tough questions?
After a Long Lull LinuxTeck (linuxteck.com) Came Back Only as a Slopfarm
Unlike Linuxiac, LinuxTeck wasn't very active in recent years
Links 11/03/2026: EPO and USPTO Software Patents Thrown Out Again, Copyright Concerns Over Slop (Plagiarism Using Buzzwords)
Links for the day
Microsofters' SLAPP Censorship - Part 9 Out of 200: 5RB Barrister Does Not Even Know the Name of His Own Client (That He Was Paid Well Over $200,000 to 'Speak' or 'Cover' for)
If you assault women in the United States, there's a barrister available for you in the UK
IBM's Fedora is Now Led by GAFAM Slop
The official word of Fedora is partly slop
Links 11/03/2026: "Drill, Baby, Drill" and Social Control Media Recognised as Threat to Democracy
Links for the day
5 Years Since Freenode Conflict
IRC isn't going away
A Week Ahead of Next EPO Strike the Staff Representatives Show the Administrative Council That the Office Lost the Best Staff, It's No Longer Attractive
the message circulated regarding the open letter to the Administrative Council
Jeff Bezos as an Individual Said to Have Enough Capital to Buy IBM
Assuming a market capitalisation of 234.70 billion
Starting Soon: Another New Series About Richard Stallman
There are some inside stories we can tell
Gemini Links 11/03/2026: School, Code Slop, and "Fancy Weapons"
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Tuesday, March 10, 2026
IRC logs for Tuesday, March 10, 2026
Geminispace Continues to Grow
Geminispace Will Soon Have 5,000 Capsules
Very Little Slop About "Linux"
We hope to see slop eradicated by year's end
BBC Lied for Its Longtime Sponsor (Bribes for 15+ Years) Bill Epsteingate, in Effect Covering Up Sex Trafficking of Underage Girls
The state of the media is truly awful
Microsoft GitHub is Not Free Hosting and It Won't Last
Not for much longer [...] Microsoft is afraid to say that it is pulling the plug, but it seems inevitable
Mass Layoffs at Microsoft, March 2026
When will the media properly investigate this?
An American War on GNU/Linux, Software Freedom, and British Investigative, Science-Based Reporting - Part IV - Escalating to Ministers, Explaining the Severity of These Matters
British Sovereignty at Stake
"The Lost Generation" Came Back, This Time Literally
Based on my limited experience with young people ("alphas"), they're lost
IBM is Not Likely to Survive Another Decade
Despite having already survived over a century [...] Last week we saw claims that some company would likely acquire IBM for its remaining assets
IBM Has Just Been Sued Again by Its Own Staff (This Time a Manager, Stephen P. Gutierrez)
IBM's behaviour towards its staff can prove costly
When a Company Says Its Layoffs are "Due to AI" Check the Debt (Typically the Real Reason for Mass Layoffs)
The mass layoffs at Microsoft continue, but Microsoft hides those in some of the same ways IBM does
Doing More With Less
primacy of concepts rather than bells and whistles
Andy and Helen in Cybershow on Divesting From the United States' Technology and Politics
It is no longer considered a taboo to say this and it's not "anti-American" because many Americans can relate to and agree with such criticism
Links 10/03/2026: "GEMA v. Suno Copyright Case" and "Valve Faces PRS Lawsuit Over Allegedly Unlicensed Steam Music"
Links for the day
Gemini Links 10/03/2026: Woods in UK, Slop Laziness, and "Small Technology and Small Economic"
Links for the day
Garrett Announces LibreLocal Instance in Northampton, Massachusetts (USA)
his message was the only one last month
Microsofters' SLAPP Censorship - Part 8 Out of 200: Gross Misuse of UKGDPR to Protect the Agenda of American Back Doors (Mass Surveillance)
Responding to bunk claims regarding UKGDPR and claims of 'analytics' in our sites
Links 10/03/2026: Oil Prices Rising, South Korean/US Military Assets Redirected
Links for the day
Links 10/03/2026: Rust Rewrites by Slop "20,171 Times Slower", "You MUST Review LLM-generated Code"
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Monday, March 09, 2026
IRC logs for Monday, March 09, 2026