Announcement

Collapse
No announcement yet.

XZ Struck By Malicious Code That Could Allow Unauthorized Remote System Access

Collapse
X
 
  • Filter
  • Time
  • Show
Clear All
new posts

  • JosiahBradley
    replied
    Edit: At the very end of user account settings is a way to manually block users. Took me almost 18 years to find out how. Didn't need it before.

    How do I block the troll accounts? Come to read the forum once a month if that and there's these anti open source trolls from newer accounts I really don't want to deal with. I'd like to read about the XZ backdoor and the security issue as a whole, not weed through the childish back and forth.
    Last edited by JosiahBradley; 03 May 2024, 11:40 PM. Reason: Editing as I found out how to block people after all these years.

    Leave a comment:


  • Markelov69
    replied
    Originally posted by avis View Post

    By the same token you can make an argument that Google/Apple/MS distribute malware via their App Stores. No, that's not what I meant and if I didn't make myself clear at first, I'll make it clear now: I only meant software which is developed, distributed publicly and signed by these three companies.

    "Distributed publicly" is also quite important. I can imagine all three companies have security researchers/engineers who have written exploits/malware/viruses just for fun and for testing purposes.



    Here's the full story: https://grahamcluley.com/microsoft-stab-macro-viruses/web https://www.cnet.com/deals/the-88-be...ill-remaining/

    Not really malware, more like a stupid joke perhaps from someone who was heavily reprimanded. I'm still thankful you've unearthed it as I never knew about it. It was back from the time when the Internet wasn't yet a thing.

    Here we are talking about a freaking backdoor to access a system remotely.
    You could have just been straightforward from the start instead of shifting the goalposts and behaving in a manner that resembles trolling.

    Leave a comment:


  • mSparks
    replied
    Originally posted by MorrisS. View Post
    this event further highlights the need for control. free software or anyway the open source software must be subjected to approval before being distributed.
    How do you come to that conclusion?

    there was nothing malicious in the source to find.

    Why should we trust some self appointed approvers (with nothing to lose from malicious behavior) more rather than less than the original authors (with everything to lose from malicious behaviour)?
    Last edited by mSparks; 06 April 2024, 04:09 AM.

    Leave a comment:


  • MorrisS.
    replied
    this event further highlights the need for control. free software or anyway the open source software must be subjected to approval before being distributed.

    Leave a comment:


  • mSparks
    replied
    Originally posted by HEL88 View Post

    Linux, too, was written 30 years ago based on an architetcture from 60 years ago. In addition, it was done by a student. It must be safe and thoughtful LOL .
    Sounds like you should familiarise yourself with the differences in the architectures.

    Notre dam was built in the 1100s, your mums basement in the projects isnt better just because it was built some 800 years later.

    Leave a comment:


  • qarium
    replied
    Originally posted by lateo View Post
    Microsoft doesn't push for LTSC adoption **at all**, they make it sound like it's for medical or industrial usage, a somewhat uncool system you shouldn't use for desktop.
    That alone should make you think about it. Consider LTSC a "bare Win10", without bells and whistles. It's completely free of crapware.
    YOU may be surprised if using your privacy tool on it
    As far as I remember, Edge isn't even installed by default ; media components stuff sure aren't.
    yes you are right and it is like you say. its clear why microsoft do not want to advertise it they want to sell windows 11 and they make a lot of money with the users data. and as you say with windows 10 LTSC people could use windows 10 much longer than the normal windows 10 version.

    but... we fight against disinformation here and this kind of disinformation as you rightfully say comes from microsoft themself. they have no interest in the truth at all.

    if in the end of 2024 the regular windows 10 supports end many people will be forced to buy new computer with windows 11 because their hardware is incompatible with windows 11... they should use linux or as you say windows 10 LTSC instead.

    sadly this forum is used by people who spread misinformation the 2 worst posters in my point of view is avis and sophisticles...

    Leave a comment:


  • lateo
    replied
    Originally posted by qarium View Post

    i did not try win10 LTSC but i am 100% sure if you start W10Privacy on win10 LTSC you will be surprised.
    Microsoft doesn't push for LTSC adoption **at all**, they make it sound like it's for medical or industrial usage, a somewhat uncool system you shouldn't use for desktop.
    That alone should make you think about it. Consider LTSC a "bare Win10", without bells and whistles. It's completely free of crapware.

    YOU may be surprised if using your privacy tool on it
    As far as I remember, Edge isn't even installed by default ; media components stuff sure aren't.

    Leave a comment:


  • qarium
    replied
    Originally posted by lateo View Post
    Win10 LTSC with 10 years support is not bad stuff.
    Not much unwanted requests catched by network firewalls.
    Then you harden it with gov level security policies.
    Then you're as ok as you can be considering the US gov interest and meddling in this business.
    i did not try win10 LTSC but i am 100% sure if you start W10Privacy on win10 LTSC you will be surprised.



    also see this startup-boost problem with Microsoft edge... its 100% sure that this harmfull and dangerous function is active in Win10 LTSC

    Leave a comment:


  • lateo
    replied
    Originally posted by qarium View Post
    only expensive business licenses have some options disabled by default.
    Win10 LTSC with 10 years support is not bad stuff.
    Not much unwanted requests catched by network firewalls.

    Then you harden it with gov level security policies.
    Then you're as ok as you can be considering the US gov interest and meddling in this business.
    Last edited by lateo; 02 April 2024, 08:21 PM.

    Leave a comment:


  • qarium
    replied
    Originally posted by lateo View Post
    I liked your post for the fun provided.
    Have a nice life, wherever it's happening.
    avid/birdie is known to be resistance to proof provided to him. just see how he ignores my post about W10Privacy.

    just install a windows 10 or windows 11 and then run W10Privacy and then you can see what spy option you can officially turn on or off in the windows registry.

    and if you know the toggle key names in the registry you do not need the software W10Privacy you can use regedit from microsoft and toggle the on/off switches yourself.

    but spoiler allert on consumer based windows licences any and avery spy option is active. only expensive business licenses have some options disabled by default.

    Leave a comment:

Working...
X