Bonum Certa Men Certa

Featuritis as Threat to Computer Security

posted by Roy Schestowitz on Jun 10, 2024

Featuritis

They say too much of a good thing can be bad for you. And "apropos OpenSSH," an associate said, "I suspect traces of Microsoft in that growing mess".

Like Mesa and Linux, Microsoft has in effect infiltrated (by payment) OpenSSH, which puts it at risk. They add Windows code to otherwise-simple and relatively secure bits of software to "extend" them to platforms with NSA back doors.

Here are some old articles about creeping featurism, featuritis, or feature creep [1, 2, 3].

Featuritis, also known as feature creep or creeping featurism, refers to the phenomenon in technology wherein a product does many things poorly rather than doing one thing well. At the very least, features will be “hidden” from the user among other features. In UX terms, this might manifest as poor information architecture, but it could lead to an unusable product.

When I think about avoiding featuritis I’m thinking about minimalism. What’s my MVP? How does “less is more” apply to my design? Of course, there are a certain number of affordances and features that belong to this product, but it’s my job to make sure users are not overwhelmed by a product that is poorly thought out.

1. Describes a systematic tendency to load more chrome and features onto systems at the expense of whatever elegance they may have possessed when originally designed. See also feeping creaturism. “You know, the main problem with BSD Unix has always been creeping featurism.”

2. More generally, the tendency for anything complicated to become even more complicated because people keep saying “Gee, it would be even better if it had this feature too”. (See feature.) The result is usually a patchwork because it grew one ad-hoc step at a time, rather than being planned. Planning is a lot of work, but it's easy to add just one extra little feature to help someone ... and then another ... and another.... When creeping featurism gets out of hand, it's like a cancer. The GNU hello program, intended to illustrate GNU command-line switch and coding conventions, is also a wonderful parody of creeping featurism; the distribution changelog is particularly funny. Usually this term is used to describe computer programs, but it could also be said of the federal government, the IRS 1040 form, and new cars. A similar phenomenon sometimes afflicts conscious redesigns; see second-system effect. See also creeping elegance.

“Creeping featurism is the tendency to add to the number of features of a product, often extending the number beyond all reason. There is no way that a product can remain usable and understandable by the time it has all of those special-purpose features that have been added in over time.”

― Donald A. Norman, The Design of Everyday Things

K.I.S.S. (Keep It Simple, Stupid) is essential for real security and outsourcing is the very opposite of security because it is compromising oneself based on trust in some unverifiable, inauditable entity, i.e. the antithesis of self-determination. It is imperative that we collectively reject the doctrine of fake security, wherein people controlling their computers is "sideloading". This morning we mentioned this in relation tom CAs.

Other Recent Techrights' Posts

Garrett Announces LibreLocal Instance in Northampton, Massachusetts (USA)
his message was the only one last month
Attacks on Techrights Make Techrights Stronger and Attract More Whistleblowers to Techrights
The harder they attack us, the more productive we become
An American War on GNU/Linux, Software Freedom, and British Investigative, Science-Based Reporting - Part III - Very Strong Legal Basis for an Appeal
The case is now being escalated to a Foreign Secretary and former Deputy Prime Minister
No Slop Found in RSS Feeds, Only in Google News
No slopfarm will survive for very long, certainly it'll go bust as soon as readers (if it had any) know what it is
 
"The Lost Generation" Came Back, This Time Literally
Based on my limited experience with young people ("alphas"), they're lost
IBM is Not Likely to Survive Another Decade
Despite having already survived over a century [...] Last week we saw claims that some company would likely acquire IBM for its remaining assets
IBM Has Just Been Sued Again by Its Own Staff (This Time a Manager, Stephen P. Gutierrez)
IBM's behaviour towards its staff can prove costly
When a Company Says Its Layoffs are "Due to AI" Check the Debt (Typically the Real Reason for Mass Layoffs)
The mass layoffs at Microsoft continue, but Microsoft hides those in some of the same ways IBM does
Doing More With Less
primacy of concepts rather than bells and whistles
Andy and Helen in Cybershow on Divesting From the United States' Technology and Politics
It is no longer considered a taboo to say this and it's not "anti-American" because many Americans can relate to and agree with such criticism
Links 10/03/2026: "GEMA v. Suno Copyright Case" and "Valve Faces PRS Lawsuit Over Allegedly Unlicensed Steam Music"
Links for the day
Gemini Links 10/03/2026: Woods in UK, Slop Laziness, and "Small Technology and Small Economic"
Links for the day
Microsofters' SLAPP Censorship - Part 8 Out of 200: Gross Misuse of UKGDPR to Protect the Agenda of American Back Doors (Mass Surveillance)
Responding to bunk claims regarding UKGDPR and claims of 'analytics' in our sites
Links 10/03/2026: Oil Prices Rising, South Korean/US Military Assets Redirected
Links for the day
Links 10/03/2026: Rust Rewrites by Slop "20,171 Times Slower", "You MUST Review LLM-generated Code"
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Monday, March 09, 2026
IRC logs for Monday, March 09, 2026
The Register MS Has Just Taken Money From Google (Where the Former Chief Editor Now Works) for Femmewashing and Ponzi Scheme Promotion
now The Register MS not only promotes a Ponzi scheme but also bags money to pretend Google respects women
People at IBM Are Still Smart Enough to Understand What's Really Going on
"I would never refer someone to work at IBM that I liked! I hope all of you have reviewed IBM on Glassdoor."
European Patent Office (EPO) to "Eventually Eliminate the Tasks Performed by Formalities Officers"; EPO Run by People Without Experience in Patents
full paper
RMS is 73 Next Week
Richard Matthew Stallman (RMS) turns 73 exactly 7 days from now
Iran & FSFE: blackmailing women, from football to the French Government (CNIL)
Reprinted with permission from Daniel Pocock
Police investigations, lawsuits & Debian leader election candidate shortage
Reprinted with permission from Daniel Pocock
Richard Stallman (RMS) Has Defeated Cancel Culture, a Mostly American Phenomenon
RMS is talking now
Links 09/03/2026: Many Security Breaches and a Pandemic of Censorship
Links for the day
People Who Work or Worked at IBM Hate It
bluewashing is only the first step
Richard Stallman (RMS) Talks in 30 Minutes, Next Stop Bern (Last Stop)
We assume he'll travel back to Boston after that
IBM's Fedora as a Booster of Slop Disguised as Code or Computer Programs
Maybe we should also stop seeing a doctor and instead ask chatbots about symptoms?
Richard Stallman (RMS) Talk Five Hours From Now
there is growing recognition for what he really did for everybody
What the Solicitors Regulation Authority (SRA) and Action Fraud UK Have in Common
Don't let London become the world's "crime capital"
EPO Strike 10 Days From Now, Planning Assembly Tomorrow, Last Couple of Strikes Had High Participation Rates (1,500-1,600 Staff Went on Strike)
The next strike is in 10 days' time and then there will be another strike
Dr. Andy Farnell on How GAFAM, NVIDIA and Others Lie to People Via the Sponsored Media to Prop Up Lies Under the Guise of "AI"
Lots of key aspects are covered
Links 09/03/2026: GAFAM Outsourcing, "MAGA Political Meddling" in EU, Indonesia Bans Social Control Media for Children Under 16
Links for the day
Using Slop (and Slop in Articles) to Attack Copyleft 'on Budget'
This article is pure BS from an anti-GPL and anti-RMS 'activist'
Why The Register MS Sold Out to Microsoft: They're Losing Lots of Money, The Register MS is Bleeding to Death, Based on Its Own Financial Records
With over 6 million pounds in debt (nearly 10 million US dollars) we guess it's likely some other company will take over the site (if it deems it worthwhile)
Microsofters' SLAPP Censorship - Part 7 Out of 200: Like With the Serial Strangler From Microsoft, Misuse of UK-GDPR to Try to Hide Embarrassing Facts
They do and say really bad things, then allege it's a "privacy violation" to mention those things
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Sunday, March 08, 2026
IRC logs for Sunday, March 08, 2026
Gemini Links 09/03/2026: Exponentials and Tailscale
Links for the day
Sloppyleft
Article by Alexandre Oliva
Hard to Replace 'Human Touch'
The reason many people insist on using GNU
Richard Stallman Gives Talk in 20 Hours at Ostschweizer Fachhochschule Campus in Rapperswil-Jona
The talk is in English
The Slop Companies Gamble at Our Economy's Expense and They Know It's a Losing Bet (So It's a de Facto Robbery)
The crash of this bubble isn't just inevitable, it's already happening and receding sporadically because of false announcements about money that does not actually exist (to "buy time")
Suppressing Speech by Blackmail, the Iran Story
When Debian wanted to stage a seemingly legitimate election it needed to have more than one candidate running; so eventually the female partner of a geek rose to the challenge (had no coding skills at all, no technical history in Debian) and lost to the "incumbent German"
Too Focused on Buzzwords the Media is Paid to Saturate the Collective Mind With
Just because companies do really bad things in the digital realm does not imply "AI" or follow from "AI"
Discrimination and Prejudice Against Female Journalists
we can shame people who attack a reporter on the grounds of gender
An American War on GNU/Linux, Software Freedom, and British Investigative, Science-Based Reporting - Part II - Trying to Put People in Prison for Committing the Act of Journalism
This is abuse of process
Attack on Copyright and Copyleft by Code Conversion Is Nothing New, It Predates Slop (Code Produced by LLMs) by Several Decades
Even back in the 90s many people converted programs from one language to another. That could invalidate copyleft (and copyright), which already existed
Almost a Slopless Weekend for "Linux"
Let's hope slop will come to an end or sites will cease linking to slop
Insiders Explain Why IBM is Dying and the Inherent Culture Problem
There are many ways to shave this IBM cat
Links 08/03/2026: Microsoft Lost $400 Million on "Project Blackbird" and Half the States Sue Over Illegal Tariffs
Links for the day
Links 08/03/2026: Cisco Holes Again and "Blatant Problem With OpenAI That Endangers Kids"
Links for the day
Activism/Journalism in Our Blood
one must fight for one's principles
Gemini Protocol in Its Prime
What's particularly neat about Gemini Protocol is that it's fast and cheap
Microsofters' SLAPP Censorship - Part 6 Out of 200: Intentionally Misnaming Women, People Who Offered to Testify That They Too Had Been Subjected to Similar Abuse
Today it is International Women's Day
Even Fedora Leadership Cannot Figure Out the Microsoft Kill Switch/Back Door, 'Secure' Boot
It does not actually enhance security
Bruce Perens: Richard Stallman "Has Achieved His Goal"
Stallman's next talk is tomorrow
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Saturday, March 07, 2026
IRC logs for Saturday, March 07, 2026