Become a fan of Slashdot on Facebook


Forgot your password?

Slashdot videos: Now with more Slashdot!

  • View

  • Discuss

  • Share

We've improved Slashdot's video section; now you can view our video interviews, product close-ups and site visits with all the usual Slashdot options to comment, share, etc. No more walled garden! It's a work in progress -- we hope you'll check it out (Learn more about the recent updates).


Comment: Ummm, so? (Score 1) 302

by JohnFen (#49128501) Attached to: Moxie Marlinspike: GPG Has Run Its Course

Even though GPG has been around for almost 20 years, there are only ~50,000 keys in the "strong set," and less than 4 million keys have ever been published to the SKS keyserver pool ever.

I've been using GPG heavily for as long as it has existed, but I have never published my keys to the keyserver pool, and probably never will. I suspect I'm far from the only one. I think that his metric may not indicate what he thinks it does.

Comment: Re:Comodo are the biggest Cert issuer (Score 1) 95

by JohnFen (#49128477) Attached to: Advertising Tool PrivDog Compromises HTTPS Security

As near as I can tell, av-totals is just measuring how effective things are in terms of antivirus. They don't appear to be analyzing the AV software itself for security problems such as the bogus cert. That's not a fault with them -- that's expecting them to be doing something they aren't claiming to do.

Comment: Re:Banned from our approved vendors list (Score 1) 266

by JohnFen (#49095715) Attached to: Lenovo To Wipe Superfish Off PCs

Why? The ThinkPads are the business level laptops, which are what you should be buying if you are buying for a business. The ThinkPads did not have superfish installed.

Because Lenovo has demonstrated such an extreme amount of bad judgement with this Superfish thing that it demonstrates that the company cannot be trusted at all. Thinkpads may not have Superfish installed -- but they might have other things that are awful, or Lenovo might start putting awful things into their business products as well. In other words, if Lenovo can think that putting Superfish onto cheap consumer computers is just fine, they are capable of pretty much anything else as well.

Comment: Re:The lesson here (Score 2) 266

by JohnFen (#49095663) Attached to: Lenovo To Wipe Superfish Off PCs

If I were to use Apple products, I'd have to either use OSX, which I loathe, or replace the OS, which means that there is no point, since I can replace the OS on x86 machines too.

As bad as all that shovelware is -- and it is bad -- This Superfish thing is far worse. It is active spyware that opens your machine up to be easily hacked by anybody.

Comment: Re:Lenovo website says they deactivated it... (Score 1) 248

by JohnFen (#49095043) Attached to: Lenovo Allegedly Installing "Superfish" Proxy Adware On New Computers

Showing the user relevant ads is a useful service.

It can be, in the right context. Amazon showing me ads for other Amazon products I might like is acceptable -- I'm already shopping, after all. My computer injecting ads into random web sites is not acceptable, nor is it useful. It's malware. Showing ads in any context where I'm not actually shopping is never actually useful to me, but would be tolerable if there were no tracking going on.

However, as long as Lenovo talks about the benefits of the ad targeting and avoids hinting at possible downsides, they aren't really lying.

I honestly don't see any benefit to what Superfish does whatsoever. So, as I said, they might not be lying -- in which case they're delusional.

Comment: Re:All the more reason... (Score 1) 248

by JohnFen (#49094969) Attached to: Lenovo Allegedly Installing "Superfish" Proxy Adware On New Computers

Yes, but that has nothing to do with why computers don't come with a DVD of Windows anymore. I'd always raged at the OEMs for that, but apparently I should have been raging at Microsoft.

Also, the "signature edition" stuff is just insulting. I'm not about to buy an OS twice just to get what I should have had in the first place.

Comment: Reputation (Score 4, Informative) 266

by JohnFen (#49094915) Attached to: Lenovo To Wipe Superfish Off PCs

Our reputation is everything and our products are ultimately how we have our reputation.

Well, they'll miss it then! Their reputation is now that they are a sleazebag company willing to compromise their customers security so they can make a few bucks injecting unwanted advertising, then lying about the security risk when they got caught.

That's a company I will never do business with again.

Comment: Re:Lenovo website says they deactivated it... (Score 4, Insightful) 248

by JohnFen (#49088545) Attached to: Lenovo Allegedly Installing "Superfish" Proxy Adware On New Computers

Yes, that response was insufficient on a number of points. But what struck me about their statement was this:

The relationship with Superfish is not financially significant; our goal was to enhance the experience for users.

Why in the world do companies keep insisting that datamining and delivering ads "enhances the experience for users"? They can't possibly believe that. If they do, then they're hopelessly delusional. If they don't, then they're scumbag liars. Either way, it does nothing but make them look terrible.

Even bytes get lonely for a little bit.