Comment Re:Seriously? (Score 2) 252
This gets trotted out, but it isn't the reason. Small and stores lots of data is GOOD.
Here's the problems with thumb drives. This is why they can't be trusted:
1)- NO READ-ONLY MODE
Unlike CDs, which are read only without giant hoops to jump through, there's no write-protect switch for thumb drives, or ability to trivially make them read-only.
2)- USB drive, or viral keyboard?
Nothing inside a USB drive can make sure it's actually a damned USB drive. An infected CD won't run without autorun, but an infected USB stick could reasonably and actually become a keyboard and launch a binary itself by TYPING IN ITS OWN COMMANDS (this can really happen, easily). Since the U in USB is universal, and there's no reasonable way to force it to behave as a passive drive in a physically inspectable manner, it can't be trusted.
3)- Terrible OS design (mostly gone)
For whatever reason, most OSes properly treat removable media as removable, but often have a soft spot in their hearts for USB sticks. This is mostly fixed by now, but was absolutely an issue for years and until the older conception is gone, who knows.
tl;dr: Thumb drives being small and holding a lot isn't the issue, the idea of them secretly being generic USB devices (aka, absolutely anything) that are generally auto-trusted and can reasonably press OK to their own confirmation dialogs is, as is their entire lack of hardware accountability. Unlike a floppy or a CD, a USB stick can always be written to and can actually be any goddamned thing at all.