Focusing on the Lesser Dangerous Security Problems

Dr. Roy Schestowitz

2014-06-04 16:26:04 UTC
Modified: 2014-06-04 16:32:25 UTC

Summary: The obsession with security flaws that are immediately addressed by FOSS developers helps distract from deliberate flaws in proprietary software (back doors)

FOSS-hostile sites/tabloids like ZDNet happily cover security issues when they are already fixed and briefly affected Free software. The latest GnuTLS flaw (flaws in it are nothing new and they get addressed quickly [1, 2]) is starting to receive coverage in expected places (other than Microsoft-connected [1, 2, 3]). It is not just CBS sites but also Condé Nasty, another neighbour of Wall Street (where all those large media companies are based). There are provocative photos as usual from Dan Goodin, not to mention the Linuxwashing of this cross-platform issue. IDG does this, but IDG [1] also alludes to back doors in Windows without naming them as such.

Why don't they spend more time covering deliberate back doors from Microsoft/NSA or even Apple? It does not seem to serve their sponsors as much as FOSS FUD. Ever since the NSA leaks came out (it started a year ago) it seems like much of the technology/corporate media looks the other way and tries to turn every little bug in FOSS into headlines, claiming that FOSS is less secure. Perhaps there is fear that many people will walk away from software with back doors, necessitating alternatives (spooks cracking in more clever ways, trying hard to put back doors without being noticed in freely-available source code). ⬆

Related/contextual items from the news:

Beware the next circle of hell: Unpatchable systems

Microsoft's decision to end support for Windows XP in April was met with a collective gulp by the IT community. For good reason: Approximately 30 percent of all desktop systems continue to run XP despite Microsoft's decision to stop offering security updates. Furthermore, a critical security flaw in Internet Explorer 8 disclosed recently by HP's TippingPoint Division opens the door to remote attacks on XP systems that use IE8.

Hard Evidence Reinforces Suspicion That Mark Shuttleworth May Have Worked Volunteers to Death: Today we start re-publishing articles that contain unaltered E-mails
A Discussion About Suicides in Science and Technology (Including Debian and the European Patent Office): In Debian, there is a long history of deaths, suicides, and mysterious disappearances
[Video] Why Microsoft is by Far the Biggest Foe of Computer Security (Clue: It Profits From Security Failings): Microsoft is infiltrating policy-making bodies, ensuring real security is never pursued
Harassment Against My Wife Continues: Drug addict versus family of Techrights authors
[Meme] A Way to Get No Real Work Done: Walter White looking at phone: Your changes could not be saved to device
Modern Measures of 'Productivity' Boil Down to Time Wasting and Misguided Measurements/Yardsticks: People are forgetting the value of nature and other human beings
Countries That Beat the United States at RSF's World Press Freedom Index (After US Plunged Some More): The United States (US) was 17 when these rankings started in 2002
Record Productivity and Preserving People's Past on the Net: We're very productive these days, partly owing to online news slowing down (less time spent on curating Daily Links)
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Monday, April 29, 2024: IRC logs for Monday, April 29, 2024
Links 30/04/2024: Malaysian and Russian Governments Crack Down on Journalists: Links for the day
Frans Pop Debian Day suicide, Ubuntu, Google and the DEP-5 machine-readable copyright file: Reprinted with permission from disguised.work
Axel Beckert (ETH Zurich), the mentality of sexual violence on campus: Reprinted with permission from Daniel Pocock
[Meme] Russian Reversal: Mark Shuttleworth: In Soviet Russia's spacecraft... Man exploits peasants
Frans Pop & Debian suicide denial: Reprinted with permission from disguised.work
The Real Threats to Society Include Software Patents and the Corporations That Promote Them: The OIN issue isn't a new one and many recognise this by now
Links 30/04/2024: OpenBSD and Enterprise Cloaking Device: Links for the day
Microsoft Still Owes Over 100 Billion Dollars and It Cannot be Paid Back Using 'Goodwill': Meanwhile, Microsoft's cash at hand (in the bank) nearly halved in the past year.
Workers' Right to Disconnect Won't Matter If Such a Right Isn't Properly Enforced: I was always "on-call" and my main role or function was being "on-call" in case of incidents
[Teaser] Ubuntu Cover-up After Death: Attack the messenger
The Cyber Show Explains What CCTV is About: CCTV does not typically resolve crime
[Video] Ignore Buzzwords and Pay Attention to Attacks on Software Developers: AI in the Machine Learning sense is nothing new
Outline of Themes to Cover in the Coming Weeks: We're accelerating coverage and increasing focus on suppressed topics
[Video] Not Everyone Claiming to Protect the Vulnerable is Being Honest: "Diversity" bursaries aren't always what they seem to be
[Video] Enshittification of the Media, of the Web, and of Computing in General: It manifests itself in altered conditions and expectations
[Meme] Write Code 100% of the Time: IBM: Produce code for us till we buy the community... And never use "bad words" like "master" and "slave" (pioneered by IBM itself in the computing context)
[Video] How Much Will It Take for Most People to Realise "Open Source" Became Just Openwashing (Proprietary Giants Exploiting Cost-Free or Unpaid 'Human Resources')?: turning "Open Source" into proprietary software
Freedom of Speech... Let's Ban All Software Freedom Speeches?: There's a moral panic over people trying to actually control their computing
Richard Stallman's Talk in Spain Canceled (at Short Notice): So it seems to have been canceled very fast
Links 29/04/2024: "AI" Hype Deflated, Economies Slow Down Further: Links for the day
Gemini Links 29/04/2024: Gopher Experiment and Profectus Alpha 0.9: Links for the day
Debian 'Cabal' (via SPI) Tried to Silence or 'Cancel' Daniel Pocock at DNS Level. It Didn't Work. It Backfired as the Material Received Even More Visibility.: know the truth about modern slavery
Lucas Nussbaum & Debian attempted exploit of OVH Hosting insider: Reprinted with permission from disguised.work
Software in the Public Interest (SPI) is Not a Friend of Freedom: We'll shortly reproduce two older articles from disguised.work
Syria, John Lennon & Debian WIPO panel appointed: Reprinted with permission from disguised.work
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Sunday, April 28, 2024: IRC logs for Sunday, April 28, 2024
[Video] GNU and Linux Everywhere (Except by Name): In a sense, Linux already has over 50% of the world's "OS" market
[Video] Canonical Isn't (No Longer) Serious About Making GNU/Linux Succeed in Desktops/Laptops: Some of the notorious (or "controversial") policies of Canonical have been covered here for years
[Video] What We've Learned About Debian From Emeritus Debian Developer Daniel Pocock: pressure had been put on us (by Debian people and their employer/s) and as a result we did not republish Debian material for a number of years
Bruce Perens & Debian public domain trademark promise: Reprinted with permission from disguised.work
Links 28/04/2024: Shareholders Worry "AI" Hype Brings No Income, Money Down the Drain: Links for the day
Lawyer won't lie for Molly de Blanc & Chris Lamb (mollamby): Reprinted with permission from disguised.work
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Saturday, April 27, 2024: IRC logs for Saturday, April 27, 2024

Focusing on the Lesser Dangerous Security Problems

Beware the next circle of hell: Unpatchable systems

Recent Techrights' Posts