* Posts by onebignerd

33 posts • joined 7 Sep 2017

Here are another 45,000 reasons to patch Windows systems against old NSA exploits

onebignerd

I'm baffled that people are still using unpatched SMBv1 or even SMBv1 at all, letting WannaCry continue to cause havoc. I found UPnP enabled after reading these articles.

GCHQ pushes for 'virtual crocodile clips' on chat apps – the ability to silently slip into private encrypted comms

onebignerd

If the Governments will use the same encryption algorithms for state secrets that they back door to survial the public and which is verifiable to oversight and to the people, I will support it. With all their insistence that it is safe, lets see them step up.

Have to use SMB 1.0? Windows 10 April 2018 Update says NO

onebignerd

Re: Fix it, don't disable it

Lazy? They released a patch for SMBv1 after WannaCry 2007 and there are newer versions of the protocol. SMBv1 (1990) is 28 years old, Microsoft can't support a protocol developed originally for DOS, O/S2 and later for Windows 3.1 (1992) forever.

onebignerd

Not sad to see SMBv1 gone, don't let the port hit you in the most significant bit on the way out! Should have been put to death 20 years ago.

Personally have it all turned off, SMB, File Sharing, Microsoft Networks, IPV6 and it's Tunneling.

Bruce Schneier: You want real IoT security? Have Uncle Sam start putting boots to asses

onebignerd

IoT should be cremated, it's ashes entombed in concrete and buried in a deep hole. WannaCry is still causing problems because people and businesses will not apply a simple patch or upgrade their systems. We certainly don't need fridges, thermostats, toys, toasters, lights...etc connected to the Internet unpatched.

Facebook's CEO on his latest almighty Zuck-up: OK, we did try to smear critics, but I was too out-of-the-loop to know

onebignerd

Clueless

Zuckerberg just collects a paycheck, cause he doesn't seem to know about anything going on in that company. His promises are wearing very thin!!!

Citation needed: Europe claims Kaspersky wares 'confirmed as malicious'

onebignerd

Re: Ahh the ignorance.

The U.S has become the same operation, with the secret national security letters and the black bag NSA, FBI and CIA hacking and heavy handed tactics against companies and persons since 9/11. The Patriot Act allows a judge to sign a warrant to spy on the computer/Internet activity of hundreds or millions of people nation wide based on a suspicion w/o proof against any one person. The push to back door encryption has little to do with crime solving. Do you realize that even using encryption puts you on the NSA watch list permanently?

The NSA has hacked and backdoored into equipment, routers, switches and PCs that make up U.S critical infrastructure. The same infrastructure that can be hacked by nation states or a high school kid that discovers these backdoors. The FBI and CIA are building their own massive databases, consolidating data from the NSA, license plate readers, facial recognition, finger prints, dna, drivers licenses, consumer databases...etc. Yet in the same breath they claim to value the rights and freedoms the Constitution provides. Suspension of habeas corpus since 9/11 and now permanent law in the Patriot Act, which endangers law abiding citizens. Read what China in doing in this article and compare to where the U.S is heading.

https://www.businessinsider.com/how-china-is-watching-its-citizens-in-a-modern-surveillance-state-2018-4#9-tracking-peoples-social-media-posts-which-can-be-linked-to-the-users-family-and-location-10

The NSA has cracked all a/v suites to enable spying on Internet activity, probably even Kaspersky which was one of a very few they couldn't crack as of the Snowden leaks. And since the U.S shares intelligence information with the other five eyes nations and other intelligence sharing countries, so can other nation states. It is hard claim the U.S is less corrupt or allows more free choice than Russia when when they are entrenched in the same tactics.

onebignerd

Kaspersky can thank the U.S Government for starting this paranoid panic. Do a Google search and find that the U.S Government is having a difficult time removing Kaspersky from their systems as it is integrated into routers, switches and third party software (e.g: Check Point, Bluecoat, Juniper Networks, Microsoft Forefront,[54] Netintelligence, Clearswift, FrontBridge, Netasq, Wedge Networks and others as more than 120 companies are licensing technology from Kaspersky). But since most of these Government agencies can't or won't apply security patches to their systems regularly, Kaspersky should hardly be their biggest concern. Most recently is the Department of Homeland Security passport fraud division.

Microsoft still longs to be a 'lifestyle' brand, but the cupboard looks bare

onebignerd

Microsoft needs to stop trying to be the Windows of every tech market, phone, cloud, game console, computer hardware, search engine...etc. The only reason Windows still has a large hold on PC operating systems is that any other software maker that tries to challenge it gets pushed out or bought up by Microsoft. Their long history shows they don't like competition, even within the partnership with IBM creating O/S2 they couldn't play nice. Now with Windows 10 and the Edge browser they have resorted to bullying of their own users rather than embracing change and competition.

Linux? Well I had high hopes for Linux in the '90s, but without standardization of the platform and consolidation on the fragmenting I don't expect it to make any inroads into the desktop market. Microsoft will never allow Linux to be anything more than a subsystem within Windows 10, an add-on, anything more would pose a direct threat to Microsoft.

Trump's axing of cyber czar role has left gaping holes in US defence

onebignerd

Nothing new

DHS was caught not updating their systems just last month. This is something the U.S Government has failed at since President Regan first saw the movie War Games and asked if it was possible.

The whole nonsense with our Government taking Kaspersky off their systems (which they are STILL struggling with) and Russia hacking, was just a diversion to cover up the fact that they can't secure an unplugged Playstation.

Microsoft: You don't want to use Edge? Are you sure? Really sure?

onebignerd

Only shows Microsoft's desperation to get Edge users. Didn't use IE will NOT use Edge.

Won’t patch systems? Never run malware scans? Welcome to the US State Department!

onebignerd

This has been an issue since President Regan first saw the movie War Games and asked if that was really possible. Ever since it's been an endless stream of studies, oversight committees, presidential recommendations, passing the buck, endless bureaucracy, political posturing and tens of millions of dollars going no where. Military, White House, Pentagon, DOJ...etc. it's all one big insecure mess. Purging the Government of Kaspersky has proved to be more challenging than expected, since it is embedded into other software and hardware. The agencies charged with protecting the country can't protect even a single PC. SCARY!!

Read Dark Territory by Fred Kaplan

On Kaspersky’s 'transparency tour' the truth was clear as mud

onebignerd

The U.S Government needs to publish their evidence (if any) and settle this crap once and for all, since they are the ones who stirred up this panic. Personally I find no cause for concern, nor reason or evidence to stop using Kaspersky.

Actual control of Windows 10 updates (with a catch)... and more from Microsoft

onebignerd

Maybe it's different in Europe, but the percent (%) they are referring to is one word not per cent. Per cent is per penny which does not fit into the context they are using.

It's guaranteed Microsoft will ruin GitHub!

Windows 10 Spring Creators Update team explains the hold-up: You little BSOD!

onebignerd

Re: Windows insider Program

YAWN! The constant claims of the flawless perfection and bullet-proofness of Linux is beyond unimpressive, tiring and insulting to others intelligence.

Maybe it is the exotic hardware that causes the problems?

Are you telling me that Linux never, ever has problems with releases, patches or kernels? I remember several times reading articles about Linux having trouble with new kernels.

Nobody ever runs into a hardware incompatibility problem with Linux?

Claims like that are nonsensical!

Ubuntu wants to slurp PCs' vital statistics – even location – with new desktop installs

onebignerd

Called it!

I knew this would happen eventually with a Linux distro! I'll bet by years end it will be rampant through out Linux. Wouldn't be surprised if the tracking code is removed from the open source license, so it can't be changed or removed. Everybody is addicted to data collecting and tracking of users, like a plague.

Mozilla's opt-out Firefox DNS privacy test sparks, er, privacy outcry

onebignerd

Mozilla/Firefox jumping on the data sucking bandwagon. Not surprised!

Stopped using Firefox, too many problems.

We're Putin our foot down! DHS, FBI blame Russia for ongoing infrastructure hacks

onebignerd

Is this round of blaming Russia carrying the same lack of evidence as with the Kaspersky fearmongering?

Sounds like alot of bullying from Washington trying to provoke Russia. I thought Trump and Putin were BFFs, why are we antagonizing them? Like the U.S is so innocent and pure!! *dry heave*

If DHS is so concerned about security, maybe they should get their own systems secured. Their last audit was a big fail. Why do we need the so much infrastructure connected to the Internet?

Five things you need to know about Microsoft's looming Windows 10 Spring Creators Update

onebignerd

Big Data Suckers

All of Corporate America and Government sell, share, trade, market your data. We are just data, numbers, percentages and dollars to them, no such thing as customers anymore. They tell us they value our trust and privacy, but every data breach shows that they don't take the effort to patch, secure, monitor or even encrypt the data.

"When are the American people going to realize the Government (or Corporate America) doesn't give a f*** about them?" -George Carlin

Here we go again... UK Prime Minister urges nerds to come up with magic crypto backdoors

onebignerd

As Ron White said; "You can't fix stupid."

FBI says it can't unlock 8,000 encrypted devices, demands backdoors for America's 'public safety'

onebignerd

Yeah, I'm sure law enforcement would never abuse such a back door for parallel prosecution or to circumvent a warrant. *eye roll* Our Government and law enforcement already have too much power that rages unchecked, despite the promise of usually nonexistent oversight.

Just recently they published secret NSA programs, one of which specifically targeted Americans. http://www.zdnet.com/article/ragtime-program-appear-in-nsa-leaked-files/ Where is the oversight? Congress, so really no oversight.

Your data will get hacked anyway so you might as well give up protecting it

onebignerd

Walt Disney was cremated.

US Congress mulls first 'hack back' revenge law. And yup, you can guess what it'll let people do

onebignerd

Hack back

Yeah this is what we need, tit-for-tat revenge in Federal Laws. I am sure this won't cause any problems.

'There has never been a right to absolute privacy' – US Deputy AG slams 'warrant-proof' crypto

onebignerd

Rights = temporary privileges

"...that's all we've ever had in this country is a list of temporary privileges.", "...because rights aren't rights if someone can take them away." -George Carlin, It's bad for ya

The Constitution DOES say that it's citizens have; "the right of the people to be secure in their persons, houses, papers, and effects, against unreasonable searches and seizures, shall not be violated, and no Warrants shall issue, but upon probable cause, supported by Oath or affirmation, and particularly describing the place to be searched, and the persons or things to be seized."

There is nothing in the Constitution that says the Government can act like a totalitarian dictatorship with the absolute right to know everything it's citizens do and say. Yeah, oversight! Like the oversight of the NSA, DNI, and the FBI in abusing the FISA courts, or maybe the sharp oversight of the bank bailouts where billions if not trillions of dollars was wasted, yet Congress doesn't know how or for what and the banks amazingly didn't keep records or won't say (bonuses and parties). But there is never any consequences for this lack of oversight and the waste of tax money that goes with them. I am curious as to where all that repaid money went, it wasn't paid back into the national debt. Was it really paid back?

So the Government does NOT have the right to look at everything transmitted or written by it's citizens. Back-doors into encryption will be handled with the same careless and reckless attitude and behavior as the Government has done with FISA courts wiretapping, warrants, searches, protection of rights, with a "screw you" attitude!

Microsoft silently fixes security holes in Windows 10 – dumps Win 7, 8 out in the cold

onebignerd

What they are describing in the article sounds like the overhaul I read Microsoft is doing to make Windows more modular and flush out the legacy code still lurking inside. Not fixing security issues is part of Microsoft's strategy to force people to Windows 10 (personal belief).

With Windows XP and 7 being so popular and hanging around for so many years after end-of-life. I would think that would be a clue to Microsoft that the interface, look and behavior of those two versions would be something to put in Windows 10. Crazy, uh?!

Red panic: Best Buy yanks Kaspersky antivirus from shelves

onebignerd

Fearmongering courtesy U.S Government

This is based on nothing, no proof, no code, no Internet trace! I use and will continue to use Kaspersky Internet Security suite. It's the one security suite the NSA can't hack to spy with like they can others (as of the Snowden leaks) and that alone gives me a measure of security. Why don't they take him up on looking at the code? I doubt they are going to screw their reputation and export markets by sneaking spyware into their products, seriously!!

I have less trust in Microsoft and the NSA!

The Government is upset that there is the slightest chance Kaspersky is spyware for Russia, but they violate their own laws, Constitution and treaties to spy on everyone. What a freak'in joke!!

Stand up who HASN'T been hit in the Equifax mega-hack – whoa, whoa, sit down everyone

onebignerd

Joke

Is Equifax going to pay the costs of restoring our credit after our identities are stolen? DOUBT IT!!

Please, pleeeease let me ban Kaspersky Lab from US govt PCs – senator

onebignerd

Re: This coming from the country...

So True! As when Russia invaded Ukraine, the U.S was condemned them for invading a sovereign country. Ignoring the fact we have done it with Iraq and Afghanistan.

onebignerd

Fear mongering

Why don't they take Kaspersky up on examining the code? Yes, Kaspersky could sneak code in later, but I seriously doubt they would risk their reputation and markets by slipping in spyware. They would be poison world-wide and out of business if they got caught doing that. The NSA might be able to see how to hack them like they do with the other security A/V suites. As Kaspersky is one they (NSA) can't hack, as of the Snowden leaks.

It's a lot of fear mongering by the Congress and the Media. Once the U.S, Russia and all countries, learn, understand and respect the cultural differences, there will never be any trust. We are all human, just trying to live, work, raise a family...etc with different beliefs, philosophies, cultures, languages, backgrounds.

Biting the hand that feeds IT © 1998–2019