 |
Puppy Linux Discussion Forum Puppy HOME page : puppylinux.com "THE" alternative forum : puppylinux.info
|
FAQ
Search
Memberlist
Usergroups
Register
Profile
Log in to check your private messages
Log in|
The time now is Wed 19 Jun 2013, 09:12 All times are UTC - 4 |
 Forum index » Advanced Topics » Puppy Projects |
|
The Official Release of Lucid 5.25 (Lucid Five Twenty-Five)
Moderators: Flash, JohnMurga |
 
|
View_previous_topic :: View_next_topic |
| Page 86 of 129 Posts_count | Goto page: Previous 1, 2, 3, ..., 84, 85, 86, 87, 88, ..., 127, 128, 129 Next |
| Author | Message | |||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
RandSec
Joined: 10 Aug 2009 Posts: 81 Location: Austin, Texas |
They could make such a law, but they cannot make malware obey. So this may not really be about malware. Microsoft made a similar suggestion in the recent RSA conference, where they drew a parallel between laws to help stop biological epidemics and laws to prevent computer malware "epidemics." The proposal was for each computer to have a "health certificate" to be interrogated by the ISP. "No certificate" presumably would mean "no Internet." The Microsoft proposal is particularly ironic, since Microsoft owns our malware epidemics, yet cannot provide a tool to certify a Windows installation as uninfected. Microsoft thus cannot provide a "health certificate" for their own products, yet argues that every computer should have such a certificate or not endanger the public Internet. Basing "computer health" on whether the computer has recent updates and anti-virus is like talking about a recently-closed barn, where previously the door had been wide open. The issue is what is hiding in the barn, not whether the doors are open now. There is no program which can find any possible infection. If there was such a thing, we could just run that before banking, and the online banking problems would be over. We are past the era when antivirus on an infected computer is likely to find serious malware. As a former "hardware guy," I blame the current computer equipment designs for not providing serious hardware security. This sort of agitation, for a law which intrudes but does not help, would seem to be the typical signature of an intelligence operation. The idea is to get something they want which would not normally occur through improving technology. Microsoft Windows will never be secure, and some organizations might might want to keep things that way. The coming "SSL everywhere" and man-in-the-middle detection revolution will not much inconvenience an organization which can get through the OS at will. In terms of malware, Linux has a small footprint and criminals avoid looking our way. However, in terms of raw vulnerability, Windows has had decades of interactive toughening which Linux has not had. We have relative safety NOT because we are stronger, but because we are a group the attackers do not want. But individual, targeted attacks are likely to succeed in any OS. Security is my reason for using Puppy (I am using a LiveDVD right now, with no hard drive). Recently I have been pointing out that the Puppy firewall should be up and ON before the first network transaction. More generally, I would like to see the DVD file system used for a flash-drive boot, so I can (safely) pull out the flash drive after booting. I use Firefox because add-ons provide security features not available on other browsers. But I generally see little or no support for these issues. If security is important to you, you need to speak up to help define and support the changes you want. |
|||||||||||||||||
|
||||||||||||||||||
 |
||||||||||||||||||
Terryphi
 Joined: 02 Jul 2008 Posts: 700 Location: West Wales, Britain. |
Opera incorporates security features in the browser and always has done. Firefox is a Johnny-come-lately! |
|||||||||||||||||
|
||||||||||||||||||
|
||||||||||||||||||
|
willem1940NLD
Joined: 06 Jul 2010 Posts: 205 Location: Sittard, Limburg, The Netherlands |
@666PhilB: Last Lucid with puppylinux / IRC freenode chat (and/or automatically part of Pidgin) was 520. |
|||||||||||||||||
|
||||||||||||||||||
|
||||||||||||||||||
|
RandSec
Joined: 10 Aug 2009 Posts: 81 Location: Austin, Texas |
But does it really have the best lineup of security features? Since I know nothing about Opera security, let me traverse what I do know about Firefox: 1) NoScript whitelists JavaScript by source URL on each web page. (There are often a dozen or so different URL sources on each page.) It also controls Java, XSS attacks, and other details not handled by Firefox. 2) Adblock Plus basically avoids ads, since ads are one vector malware can use to get executed. 3) Better Privacy removes "super cookies." 4) URL Tooltip puts link URL's in a visible tooltip. Normally the results toolbar will show the URL, but sometimes the URL will not fit there. It does fit in the tooltip. 5) Google Docs Viewer supports showing .PDF files as web page files, instead of downloading a Trojan. 6) Safe puts a colored border around an SSL-protected page. This simple addition is surprisingly important. Blue is full SSL security. Red shows that some items on the SSL page are insecure. No border means no security. 7) Certificate Patrol monitors changes to certificates, as are used to support man-in-the-middle (MITM) attacks on SSL. 8) Perspectives is crucial for SSL security. It compares the URL we see for a page to the URL for the same page as seen at other locations and over time. Finding a difference between URL's can be a sign of a MITM attack. This avoids some of the need to trust our fundamentally compromised certificate issuing infrastructure. 9) NoSquint is perhaps especially attractive for older users, since it supports independent page zoom and text font zoom for each web page. This allows the various site layouts to each be customized for reading, and the same layout to be recovered automatically upon return. |
|||||||||||||||||
|
||||||||||||||||||
|
||||||||||||||||||
|
willem1940NLD
Joined: 06 Jul 2010 Posts: 205 Location: Sittard, Limburg, The Netherlands |
Firefox uses all my standard mediaplayers |
|||||||||||||||||
|
||||||||||||||||||
|
||||||||||||||||||
myke
 Joined: 15 Mar 2011 Posts: 101 Location: Québec |
You said Linux in its 'infinite wisdom" doesn't defrag, while M$ Windows does. Let me explain why. "Defrag" is an abbreviation of "defragment". When Windows saves files, it looks for a physical place to put the file. If there is no room to put the file in one piece but overall there is room, Windows will split the file into pieces that fit and store the pieces. In Linux, when there is no room to store the file in one piece but there is room overall, it will move the files on disk to create enough room to store the file in one piece. So Linux doesn't create fragments like Windows does, hence there is no need to "defrag". If you want to understand why this came about, you need to recall the "cultural" heritage of the two operating systems. Windows evolved from a company that in the '70s used to make compilers for hobbyists building microprocessors, while Linux imitated Unix, built originally by researchers in the late '60s at Bell Labs in the US, who had access to the best of everything at the time (Cadillac -- luxury car -- model) with a telephone company paranoia for security. myke _________________ AA1 D255E-keucr slacko 5.3;luci;mijnpup; tw-os; with:Emacs,gawk,noteboxmismanager,treesheets, freeplane, libreoffice, tkoutline, Sigil, calibre, calendar. magic&Noteliner(wine), kamas (DOS) Edited_time_total |
|||||||||||||||||
|
||||||||||||||||||
|
||||||||||||||||||
|
PaulBx1
Joined: 16 Jun 2006 Posts: 2308 Location: Wyoming, USA |
I wrote a script a long time ago to do this sort of thing (attached). It might need a bit of tweaking to handle "lupusave" instead of "pupsave", or something like that. Is this the bug thread for 525? If so, a couple of us have run into a xdg menu bug (actually been around since the start of version 5). It is very annoying. See here:\ http://www.murga-linux.com/puppy/viewtopic.php?p=510938#510938
|
|||||||||||||||||
|
||||||||||||||||||
|
||||||||||||||||||
|
nooby
Joined: 29 Jun 2008 Posts: 9477 Location: SwedenEurope |
Ooops My bad so sorry, Now we have derailed for a long time so back to the OP which is this The Official Release of Lucid 5.25 (Lucid Five Twenty-Five) Sorry I do apology. We have to start a new thread about these attempts to make us totally owned by the software provider Ms or Google or Apple whatever. _________________ I'm a noob so I use Google Search of Puppy Forum |
|||||||||||||||||
|
||||||||||||||||||
|
||||||||||||||||||
playdayz
 Joined: 25 Apr 2008 Posts: 3705 |
Have you tried Menu -> Internet -> Stay Connected to internet? |
|||||||||||||||||
|
||||||||||||||||||
|
||||||||||||||||||
|
RandSec
Joined: 10 Aug 2009 Posts: 81 Location: Austin, Texas |
Puppy Linux has a once-in-a-lifetime opportunity to become a real alternative to Microsoft Windows, albeit in the particular area of online banking security. I suspect that some of us do not see a massive influx of newbies as an advantage. For those who do, however, security issues exist in 5.2.5 which need to be recognized and fixed on the way to yet another version. In addition, operational confusion needs to be simplified for use by ordinary people and their bankers. That needs discussion, and this seems to be the place where discussion gets results. |
|||||||||||||||||
|
||||||||||||||||||
|
||||||||||||||||||
bigpup
 Joined: 11 Oct 2009 Posts: 3692 Location: Charleston S.C. USA |
Do we have an official Bug Report topic for Lucid 5.2.5 or is this it? |
|||||||||||||||||
|
||||||||||||||||||
|
||||||||||||||||||
|
scsijon
Joined: 23 May 2007 Posts: 948 Location: the australian mallee |
don't know about a bugs, but this may do for a start if Playdayz is happy. http://murga-linux.com/puppy/viewtopic.php?t=66525 there are a few in the bugs topic already. |
|||||||||||||||||
|
||||||||||||||||||
|
||||||||||||||||||
|
nooby
Joined: 29 Jun 2008 Posts: 9477 Location: SwedenEurope |
RandSec then do that I don't mind. How can we make Lupu as secure as possible. One can use CD or DVD but as soon as one use USB or HDD then one risk that somebody put some keylogger on it. what the approach Seaside have using SFS and no normal pupsave file at all? He makes a small one that he change into an sfs instead and load that way. So nothing is ever saved when he shut down? But I guess while it is booted an intruder can place things on the HDD or in RAM at least so how could that work out? But even if one use CD/DVD can not the intruder have the keylogger program going in the RAM without puppy or the user knowing about it? Coming in through the browser or through some port 80 25 and such well known ones? _________________ I'm a noob so I use Google Search of Puppy Forum |
|||||||||||||||||
|
||||||||||||||||||
|
||||||||||||||||||
|
dawg
Joined: 09 Aug 2009 Posts: 106 Location: still here |
In order not to derail the thread I'll just say this:
_________________ I used to only like Puppy as a friend, but now I think our relationship is starting to develop into something more...  |
|||||||||||||||||
|
||||||||||||||||||
|
||||||||||||||||||
|
nooby
Joined: 29 Jun 2008 Posts: 9477 Location: SwedenEurope |
About User of hardware and software being in 100% control over their transactions online so that is the goal of Puppy hopefully. Would be cool to have. Late at night here so I friendly bow out of the thread just now. _________________ I'm a noob so I use Google Search of Puppy Forum |
|||||||||||||||||
|
||||||||||||||||||
|
||||||||||||||||||
| Page 86 of 129 Posts_count | Goto page: Previous 1, 2, 3, ..., 84, 85, 86, 87, 88, ..., 127, 128, 129 Next |
|
|
View_previous_topic :: View_next_topic |
|
Forum index » Advanced Topics » Puppy Projects |
Rules_post_cannot Rules_reply_cannot Rules_edit_cannot Rules_delete_cannot Rules_vote_cannot You cannot attach files in this forum You can download files in this forum |
Powered by phpBB © 2001, 2005 phpBB Group