How Much Harm Can One Web Site Do? 501
Ben Edelman has written extensively on issues including censorship and spyware. He's got a very interesting piece on his site now about who profits from spyware, and how much spyware can be installed on a Windows XP machine when the user simply visits a single Web site using Internet Explorer.
not much... (Score:5, Informative)
Re:not much... (Score:4, Informative)
Re:not much... (Score:3, Informative)
Re:not much... (Score:5, Informative)
I'm running SP2 and nothing has broken thus far. Normally when people complain about SP2 breaking stuff (like a game that will not play online after patching to SP2) it has to do with the upgraded firewall. Tweaking the firewall is all that is needed to get your game (and 9 times out of 10 X app)running agian.
All in all, I think Microsoft did a good job with SP2. The security center is something that should have been in the control panel to begin with. Its good to have some centralized location.
But yeah, SP2 fixed a lot of things in Windows and it really didn't *break* things, it just tighten some bolts that then required the user to go and loosen what he/she wanted to use. (instead of leaving the whole damn computer open)
Re:not much... (Score:3, Informative)
That said, we'll be going to SP2 where I work when all of the testing is finished, but there are non-game business critical software packages that do break under SP2. I recommend it for home users, but I'm far more hesitant in the business environment, particularly if some custom or very old softwa
Re:not much... (Score:3)
I work as 2nd level UNIX support for a major telco. Our sister team that handles the Windows boxes did tests on a wide variety of systems (and these are all Dells - not noname grayboxes). At least one third died with the installation of SP2. Not "couldn't run a given game or app", but "went
apeshit on reboot".
Keep in mind this was not Joe Average installing SP2. These were very capable, highly skilled people, who know what they're doing, and it sti
Re:not much... (Score:5, Funny)
No network, no spyware!!!
Re:not much... (Score:4, Funny)
Re:not much... (Score:3, Informative)
Wow, you really don't have a clue, do you?
http://www.newsfactor.com/story.xhtml?story_id=263 44 [newsfactor.com]
http://news.com.com/Microsoft+lists+SP2+conflicts/ 2100-1016_3-5311280.html?tag=nl [com.com]
http://news.com.com/Microsoft+tackles+AMD+conflict +in+SP2/2100-1016_3-5326707.html [com.com]
From this article: Microsoft had advised AMD users to remove SP2 altogether.
Re:not much... (Score:5, Informative)
Re:not much... (Score:2)
Really? I never heard of anyone having a problem with it, save for with insecure software[1], and I'd advise anyone running windows to upgrade to SP2 ASAP. From those I have contact with, this seems to be by far the prevailing wisdom.
[1] And personally, I'd rather my software stopped working rather than kept running in an insecure manner. Besides, I haven't yet found a program that doesn't work with SP2. I'm sure they exist, but they're rare.
Re:not much... (Score:2, Informative)
I know it's a pain to have to click on the icon tray and then select 'Repair' but it's a small price to pay. Also, I don't usually switch my network connection more than once if I move my laptop.
Re:not much... (Score:2, Insightful)
Re:not much... (Score:4, Insightful)
On the other hand, requiring absolute security is not an appropriate standard. This standard does not apply anywhere else; your home insurance probably does not cover you for some "acts of nature or God". You cannot say that a meteorite will not fall on you and kill you; you have no absolute security in your daily life. I agree that "Security is a process, not a product." However, experience so far suggests that runing Linux would be much more secure than running Windows.
Re:not much... (Score:5, Interesting)
I am personally responsible for the software on 67 windows computers at a university. I am jointly responsible for almost 400 of same.
On the image I created and support, there are 93 applications loaded on top of a base XP install. These range from silly stuff like DivX player to Pro/Engineer. I had to test each and every one of them for SP2 compatibility.
A grand total of 4 applications wouldn't work at all. 2 or 3 more had minor problems. Every one of those with problems were corrected by getting updated versions of said app.
Any other usability problems are strictly a function of the firewall and if you (being a
Re:not much... (Score:5, Funny)
You guys on the "don't install SP2!" bandwagon need to wise up.
You straight up office/cube/lab support guys need to wise up. There's more to life than IE/Outlook/Office. Where I work, we use PCs to analyze genomic data and communicate and control robotic devices that gather DNA information. Often, esp the control software, is written specifically for a version of Win2K, let alone be able to update to XP S2. You heard me right--there's still lots of instances of NT, and even some Mac OS 7.5.3. In many cases, the original vendor is non-existent, hard to reach, or they specifically recommend against updating to a newer version. Often, security updates will break functionality that these applications depend on.
So thanks for the info. I'm sure XP SP2 makes a good kiosk. However, the guy that decided to run a $300K sequencer off a $700 Dell using some bastardized version of Java, and also can't be upgraded to XP or anything reasonably secure needs to have their head examined. I'm looking at you, ABI.
Re:not much... (Score:5, Interesting)
virgin install (Score:5, Interesting)
It bothers me that some people still install windows while connected to the internet.
Re:not much... (Score:5, Insightful)
Some of us don't install SP2 because we're not using Win/XP or Win/XP Professional. I am currently running Win/2000 Professional when I am on the Windows side of this machine.
Unfortunately, Windows/2000 Professional is vunerable to these exploits and there is no patch available. I have a fully patched system, run the latest version of Norton's, and sit behind a Linksys router/switch. If I use IE or Outlook I run the risk of getting spyware, viruses, and trojan horses. There are no patches.
Fortunately, I do not use IE on Windows/2000 except to check my web authoring. I do not use Outlook in any form. In fact, I do not read mail on my Windows/2000 side.
However, I have real problems with all of this. As far as I know, Windows/2000 Professional has not reached end of life. I didn't find any information on the Microsoft web site, but you never know. Until Windows/2000 Professional hits end of life, I expect to have at least the same level of security that the latest patched Windows/XP Professional has.
I am comfortable using alternate tools, and in fact I prefer them (Firefox, Thunderbird, OpenOffice, etc.). However, I do not think that having my computer exposed to malware that I can do nothing about is reasonable, esepcially when the same fixes are available for Windows/XP Professional.
I know that one solution is to upgrade to Windows/XP Professional. There are really no advantages to me in upgrading to Windows/XP Professional. I can test ASP.NET, develop C#, run Tomcat/Apache, write Perl, and use MySQL or PostgreSQL quite nicely on Windows/2000 Professional. For my $200 retail price I get an OS with a bigger footprint, menus that purposely hide non-Microsoft software, and a host of other impediments to computer usage.
Ah . . . but I do get the latest security upgrades from Microsoft, many of which are not available for Windows/2000. This is true even though Windows/2000 Professional is a fully supported product.
An average user is not going to be aware of these considerations when using a computer. An average user will not be aware that while Windows/XP SP2 is patched properly, the same diligence will not suffice for Windows/2000.
A lot more can be said about Microsoft's marketing, planned obselence, and deceptive business practices, but that would probably be off-topic.
Re:not much... (Score:4, Informative)
It isn't a real hard thing to do most times as long as you know what you are looking for and the machine doesn't touch any form of a network during cleaning.
Yes, it takes awhile. Then again, would you upgrade an OS on a virus infested machine? Of course not!
Re:not much... (Score:5, Funny)
Re:not much... (Score:2, Insightful)
Re:not much... (Score:2)
Re:not much... (Score:2)
If it's actually 80-160 spyware processes, I'd be surprised if the machine could boot at all.
Re: (Score:2)
Re:not much... (Score:3, Interesting)
/me laughs maniacally. Oh, the naivette...I do desktop support in an University setting for students and faculty. Amongst my duties is supporting the students XP laptops (we don't technically support other windows versi
How much harm? (Score:5, Funny)
http://www.benedelman.org/ is the debil? (Score:2, Funny)
In Case It Gets Slashdotted... (Score:5, Informative)
Re:In Case It Gets Slashdotted... (Score:5, Insightful)
If you can install 1 piece of spyware you can install 1000 or 1000000. Once you're pwned you're pwned, "how much" is entirely irrelevant.
Re:In Case It Gets Slashdotted... (Score:3)
I've been saying this for years about spam, corporate fraud, political corruption, and any number of unwanted irritations in society. No one's ever going to follow the money trail. The money trail is good for the economy. Attempting to hamper business by restricting the money trail makes you a terrorist... yadda yadda yadda.
It's amazing. Get a room full of politicians and ask,"Which one of
Umm... (Score:5, Funny)
Re:Umm... (Score:5, Insightful)
("warning! you're in danger! all you do with computer is stored forever in your hard disk
OK, if you're going to make fun of someone's English, don't turn the Latin word sic into an acronym. Super Intelligent Comment? Sick Internet Creep? Silly Immature Cretin? Sadly Impoverished Credibility?
Re:Umm... (Score:3, Informative)
Here's what's happening:
Wallpaper: Your computer is broked.
Author: The wallpaper says, "Your computer is broked." [s.i.c.]
The author should have written: "Your computer is broked [sic]"
See the difference and where the mistake is?
Windows XP? (Score:5, Funny)
how much spyware can be installed on a Windows XP machine when the user simply visits a single Web site using Internet Explorer.
Am I safe if I am on a win2k machine?
Re:Windows XP? (Score:3, Funny)
Re:Windows XP? (Score:4, Funny)
Re:Windows XP? (Score:2, Funny)
Re:Windows XP? (Score:2)
What was the actual web page? (Score:5, Insightful)
I mean, I'm guessing most people would visit a reputable search engine, or the default MSN page when they first installed Windows and opened up IE, instead of what I'm guessing must be a fairly dodgy site in order to install so much spyware.
That's not to discredit what he's done - I'm sure novice users would easily get onto these sort of spyware laden pages by mistake pretty quickly...I'm just interested, that's all.
Re:What was the actual web page? (Score:2, Informative)
http://xpire.info/fa/?d=get [xpire.info] Entering this in Mozilla 1.8a4 gives me an authentication dialog. Hitting Cancel pops up a Moz file save dialog for a file containing an authentication error message.
Re:What was the actual web page? (Score:5, Informative)
Re:What was the actual web page? (Score:2)
Re:What was the actual web page? (Score:3, Informative)
Your right. If you did download the video you likely would not have been able to play it. It uses a non-standard codec and every player I have, including MS Media Player for Mac, could not play it...
How people get infected (Score:3, Informative)
Browsing to the site I showed in my video is one way to get infected. But that's not the most typical infection method. Instead, other sites can and do point to this site (and other similar sites), typically via IFRAMES. I was recently looking at a post in a web-based threaded messaging site, which used a 1x1 pixel IFRAME (basically, hidden) to reference the site shown in my video. Whe
Re:What was the actual web page? (Score:2, Informative)
Silly AC, the goatse site just displays a domain registry TOS page now.
wait...
You could always use a Mac. (Score:2, Insightful)
Re:You could always use a Mac. (Score:2, Insightful)
It's because there's no money in it. Someone is getting paid to bombard you with spyware installations. They want to hit as many workstations as possible. And that means aiming for Windows users.
Your post suggests everyone should use OS X or Linux. The day Windows looses majority share of the desktop market is the day spyware and viruses will start to pop up on your OS X and Linux workstations.
The sol
Re:You could always use a Mac. (Score:5, Insightful)
The main defense is their structural strenght, i.e. being thinked from the basis as multiuser, where you have very separated the system admin (the one that have some permission over i.e. what programs are installed) over the user that browses internet.
And dont forget that here the blame goes both for the operating system author (Microsoft) and the browser author (Microsoft again), both good examples of what happens when security is the least priority.
Ha. (Score:2)
Really?
It's to .. fortify the OS against spyware and viruses by closing security holes
Sounds just like getting rid of Windows, or at least IE and ActiveX. Every IE / Windows patch just makes things worse.
Re:You could always use a Mac. (Score:2)
Bullshit. The only real difference is that (in KDE/Gnome) a popup occurrs to type in your root password before installing. Big fucking deal. You think for a second that if windows had that, Bonzai Buddy and that stupid temperature tray thingy wouldn't end up on windows workstations? Dream on. The GP is correct -> windows is targeted becuase of two reasons: 1) Market
Re:You could always use a Mac. (Score:3, Insightful)
I think we're actually talking about two different things. You seem to be referring to things a user is stupid enough to say yes to. RTFA. These are things that the user never even gets a prompt for.
IE runs under a user with administrator privileges (press ctrl-alt-delete and see who's running what) and has the ability to run activ
Re:You could always use a Mac. (Score:5, Informative)
No, IE runs under whatever user you are logged in as. One should definately learn to manage users. No argument there.
, but I am of the opinion that users have every right to be stupid,
Yet we all own cars... If you are too stupid to add oil to your car and you burn out your engine... It's not the manufacturers fault. There's a certain level of responsibility the users should bear as well. Users have a right to be stupid, but should pay up when they screw their computers up the same way car owners should pay if they don't maintain their vehicle or use it correctly.
. If XP needs all of these security patches just to keep going, where a mac or linux box could stand like a column of basalt for years
Again, Bullshit! There's security holes in Linux and FreeBSD. That's why we have utilities in Fedora like up2date, portupgrade, etc. So you can automate the patching of those security holes.
Re:You could always use a Mac. (Score:3, Interesting)
November 23, 2004 (1:39 PM EST)
Java Bug Makes IE, Firefox Vulnerable
By TechWeb News
A flaw in Sun's Java Virtual Machine can open up the two most popular browsers, Microsoft's Internet Explorer and Mozilla's Firefox, to attack, security researchers said Tuesday.
Re:You could always use a Mac. (Score:4, Insightful)
Re:You could always use a Mac. (Score:2)
One word:
Spector [spectorsoft.com]
One website (slashdot.org) (Score:2)
Nuff said.
How much damage can one web site do? (Score:3, Funny)
How much harm can ONE site do?!! (Score:5, Funny)
Apparently we're forgetting the word "slashdot" as a verb.
No surpises here. (Score:5, Insightful)
s.i.c. (Score:5, Funny)
"warning! you're in danger! all you do with computer is stored forever in your hard disk
Anyone else find the improper spelling of "sic" (used by an editor to mark improper spelling or usage in a quoted piece of text) to be humorous, or is it just me?
Re:s.i.c. (Score:3, Funny)
Perhaps we should club together and buy the author of this little article a copy of Eats, Shoots and Leaves [amazon.com].
John.
Re:s.i.c. (Score:4, Funny)
Re:s.i.c. (Score:3, Insightful)
Here's a good rule of thumb: if any term is older than a century or so, it's very unlikely to be an acronym. Port outbound, starboard home? For unlawful carnal knowledge, or fornication under consent of the king? To insure prompt
Depends... (Score:2)
Oooooh you mean by spyware. Sorry, I use Safari, and Konqueror or Netscape when I'm on Linux.
Why not a site "death sentence" (Score:3, Insightful)
Why can't this be done?
Just cut them off entirely.
The big players need to get together on this.
Re:Why not a site "death sentence" (Score:2)
No way - that is a slippery slope. I don't wany any of the internet censored from me [google.com], thank you very much.
Even aside from that, it is a fairly complicated problem. Say SiteA is a source of trojans... what happens if they clean up their act and go legit? Is there a time limit that they are blacklisted for? Who decides what qualifies a site for blacklisting an
Not impressed (Score:4, Insightful)
This is akin to throwing matches at a tub of gasoline and writing an expose' when it catches fire. Either this guy had too little to write about, had too much time on his hands, or had to win a bet and is trying to slip this one by someone.
Even he admitted his lousy methodology in his last sentence.
This isn't news. It's just a bone thrown out to keep the resident "gotta flame microsofties" happy with a fix for the day.
Re:Not impressed (Score:2, Insightful)
My last Linux install included an automatic upgrade of the latest packages that had been upgraded for security reasons - even before X was started for the first time.
How are the first round of patches applied when you install XP? My guess is after you finish the installation, you must:
1. Start Windows Updater
Which, I imagine is where we lose pretty much everybody because:
a) users just want to get going already - not install secuirty pat
Re:Not impressed (Score:3, Insightful)
Obvious to anyone who has dealt with end users: they will stop performing maintenance work the very moment they are capable of surfing the web. As soon as an installation is "good enough", they stop.
Obvious to anyone who has ever actually performed this sort of work: Digrieze is an astroturfing liar.
You're missing both points (Score:5, Insightful)
If I leave my door unlocked, I'm an idiot, but if you then walk in and steal my TV while I'm gone and sell it at the local pawnshop you're still just as much a criminal as if you smashed a steel door in with an APC: an unlocked door is not in itself an invitation to enter and make oneself at home. The same principle applies here: the sites and software authors are not the legitimate businesspeople they try to convince everyone they are.
Re:Not impressed (Score:4, Insightful)
Basically, the guy was loading and emulating what is probably 80% of the internet users out there (think AOLers
Gnome + spyware? (Score:4, Interesting)
Who profits? (Score:2)
Class Action? Small Claims? (Score:2)
I've heard of spammer suits in small claims court being won thanks to the fax abuse law. Has anything similar been done with spyware? If infection and installation can occur and cripple a machine without user permission...req
Re:Class Action? Small Claims? (Score:2)
You can resort to the old standby of car analogies.
The red globe is a nice new car. The blue E looks like a nice new car but there's a bomb under the hood that has a percentage chance of exploding and messing up your computer whenever you use it.
So obviously, use it ONLY if absolutely necessary.
Re:Class Action? Small Claims? (Score:3, Funny)
You can resort to the old standby of car analogies.
Or you can just point the blue E to the red globe's exe file and she'll never know the difference
-matt
Rhetorical? (Score:4, Funny)
How much holes does it take... (Score:2)
Answer: only 1
Wherever you place the line in defining a 'compromised system', truth is: once defined, anything that crosses the definition, means breakage, and once broken, a single or a dozen occurences is just more of the same.
As a user, I regard my system to fail when:
From that view,
Again, sensationalism trumps truth (Score:5, Insightful)
Note that the latest version of Internet Explorer, as patched by Windows XP Service Pack 2, is not vulnerable to the installations shown...
In other words, he's running all this on an unpatched XP machine.
Now, before the Slashdot horde stabs me repeatedly with a big sharp knife for being a Microsoft apologist, consider this situation. I've got an old version of Firefox with a few exploits in it. I report the exploit, and the response I get is that these exploits are already patched. Yet I decide to write a story about the horrific exploits, post it to Slashdot, and stir up a raucus about how bad FireFox's security is.
What I'm proposing is that Slashdot report it's stories with less sensationalism and more professionalism. Put in the story that all this was run on an unpatched machine, and that the said security holes have already been fixed.
Thank you.
Re:Again, sensationalism trumps truth (Score:2)
Re:Again, sensationalism trumps truth (Score:5, Insightful)
The same problem happens on:
A patched Windows 2000 Machine
A patched Windows XP SP1 Machine
A patched Windows XP Machine
A patched Windows 98 Machine
To get browser security from Microsoft requirs a user of Windows 98 to spend $100 to get XP and then spend the next two days trying to install it and getting it to work right with his scanner/fax/printer.
Or our Winodws 98 friend could just download Firefox.
Why Microsoft wont realease a standaline Internet Explorer for its old systems is obvious: The want to suck more money out of people. And they suck.
If Slakware can update thier browser - why in the fuck cant one of the largest companies in the world do the same?
Re:Again, sensationalism trumps truth (Score:3, Funny)
A patched Windows XP SP1 Machine
A patched Windows XP Machine
A patched Windows 98 Machine
What about Win95, you insensitive clod? Hmph.
(Note that I'm *not* volunteering to try it out, though I'm typing this on a 95 box. With Firefox, mind.)
Re:Again, sensationalism trumps truth (Score:2)
Again, Slashdotter posts without RTFA (Score:3, Insightful)
The article is about the scumbags that exploit the flaws, and the lengths they'll go to to get their crap onto your PC. It's also about the money trail that can be followed to nail these suckers. The article was trying to demonstrate that there is a wa
Regarding the Video... (Score:3, Informative)
Glad I didn't have the boss watch it with me in an attempt to convince her of the need to take better anti-spyware measures.
Another good write-up here: (Score:5, Informative)
- Part 1 [sans.org]
- Part 2 [sans.org]
- Part 3 [sans.org]
Part 4 is coming Real Soon Now (tm). The ISC handler's diary is required daily reading; always a lot of good stuff to be found. (And every now and then, there's a tale that'll make your blood run cold [sans.org]...)Does he have a lawyer? (Score:3, Interesting)
I would love to see somebody slap some criminal charges against the site owner. Hiding behind an obfuscated EULA is bad enough, but installing software without any permission whatsoever has to be illegal, doesn't it?
SP2 is immune (Score:3, Insightful)
Re:SP2 is immune (Score:3, Informative)
Outdated products like Windows 2000 Professional?
Microsoft's own product lifecycle chart [microsoft.com] indicates "Mainstream Support" through June 30, 2005, and "Extended Support" through June 30, 2010.
simulating spyware installs (Score:3, Interesting)
My e-mail to the TwainTec Legal Dept (Score:3, Insightful)
My letter (to which I got no reply)
Hello there. As you can see, I have had to take steps to insure my identity remain secret.
Due possibly to an oversight on my part (leaving the security level in the internet zone in IE on Low, then going to an untrusted site), I have been infected with your adware. The uninstall procedure on your website does not work -- your software is not listed in add/remove programs. The twaintec.dll in my windows directory is currently being used, however I have removed all permissions to this file so it will not load after I reboot.
I was infected with this as well as a myriad of other spyware (toolbars, programs, browser hijackers... I didn't bother to make a list but you should see all the pornographic bookmarks I now have, it's very impressive) by simply going to an internet site. I didn't accept any requests, I didn't read any privacy policies, and now I have your program.
While your privacy policy attempts to divert responsibility by claiming not to allow this, your failure to insure in software that this actually happens makes your company morally, if not legally, complicit. In short, you could have written software that did this, but instead you put the onus on others to ensure that your software was installed on end-users' computers responsibly. Not surprisingly, many third parties do not do this, and privacy policy be damned, *you profit from it*. You acknowledge this by putting, in your privacy policy, instructions to contact your legal department if one should find examples of abuse of your software. I believe that a person of moral integrity would take steps to ensure that your software was not abused, and that by not doing so, you lack moral integrity.
But I'm not here to put you down. I would like you to stop distributing the software, shut down your servers, destroy the source, and find another job. A company that can produce this software could, instead, produce something like, say, PestPatrol, that would make peoples' lives better, not worse. But the purpose of this e-mail is not to request that.
What I want from you is simple. I want you to write me back with instructions on unregistering that DLL. I don't know who wrote this program, but this should be a simple task for someone with programming knowledge, such as must have been required to write the program. If you can do this for me, your moral obligation to me may be considered fulfilled. There is still the greater issue of this software, but one that I'll let you deal with on your own time. If you reply to help me fix what your software has broken, I will forgive you.
If you promise to take steps to ensure that your software is not abused or that you do not profit from it if it is (charitable donations?), I will applaud you.
But I will never trust you.
David
---
Protect yourself from spam,
use http://sneakemail.com
Re:My e-mail to the TwainTec Legal Dept (Score:3, Informative)
Win2K is just as bad. (Score:5, Interesting)
I also killed all the services. and it never ran a web browser. Just mysql. I didn't have any antivirus software on it.
So after placing it on an unfirewalled connection in a locked room, withing 2 hours there were over dozens of virus, worm and spyware installed on the system till it crashed and couldn't even boot. Coming up with 100's of DLL errors!
Again we never open a single web page.
Specificaly some of what was installed was:
alte.exe
beird.exe
c.bat
clonzips.ssc
clsob
cvqaikxt.apk
cult.exe
cygwin1.dll
dgss
dual.exp
emoti.bat
enotxa2.exe
explorx.
ger.exe
gt.x
hosts was altered
knlps.exe
knlps.sys
ksat.bat
medo.dl
nonzipsr.noz
ntcnsl.dll
orrl.exe
Odi
repcale.exe
riqa
scheduler.exe
sysm
svcshost.exe
titlex.exe
w.e
wshield.e
winguard.exe
ymnz.exe
unmt.exe
vnicmon.exe
a qsws directory
zippedsr.piz
Re:Win2K is just as bad. (Score:4, Insightful)
You might as well have blessed it with the wave of your hand.
You must visit windows update to get the post SP4 patches or the very least enable auto-update.
You probably got all this stuff from the lsass and rpc vulnerabilities which SP4 does not address.
Re:Win2K is just as bad. (Score:3, Insightful)
I also killed all the services. and it never ran a web browser. Just mysql. I didn't have any antivirus software on it.
So after placing it on an unfirewalled connection in a locked room, withing 2 hours there were over dozens of virus, worm and spyware installed on the system till it crashed and couldn't even boot. Coming up with 100's of DLL errors!
Again we never open a single web page.
Specificaly some of what was installe
Reminds me of passthison.com (Score:3, Informative)
My mom (Score:5, Insightful)
While so many are quick to point out that he used an unpatched machine, that he should know better, that he's just doing it to be difficult, that he can fix it. He know's he should install SP2, he knows he should have his firewall set up. He knows he should practice safe surfing....but my mom doesn't know this stuff.
For every computer whiz (like most of us that visit /.), there's a thousand users like my mom who know that you turn on the box, move the little mouse around, and she can type emails to the whole family every day. Then she surfs around on the internet, types something in wrong, clicks on the wrong site, and now can't send the emails to the family and can't order my Christmas presents from Amazon.
Spyware is a pain in the ass for us, but its a nightmare for the computer novices!
Stupid Spyware Companies. (Score:3, Interesting)
Re:Now... (Score:2)
I dunno, think of the fun, adventure and excitement you can have uninstalling, deleting and otherwise tracking down spyware and viruses.
I mean, the possibilities are endless for entertainment right in your own home. The only limitation is your imagination!
Cheers!