Posted on 06/28/2024 11:02:47 AM PDT by ShadowAce
I've been pointing out Windows security bugs since Windows for Workgroups showed up in 1992 and I showed how you could steal data from your coworker's spreadsheets using Object Linking and Embedding (OLE). You'd think Microsoft would have figured security out by now.
But no. It's only gotten worse – much worse.
In June 2023, Chinese hacking group Storm-0558 stole US government "secure" messages from Microsoft's Exchange Online. I was only surprised that the Feds managed to catch them – Microsoft certainly didn't figure it out.
Former senior White House cyber policy director AJ Grotto said it best: he asserted it was fair to classify Microsoft and its products as a national security concern.
Think about it for a minute. What other business could get away with having products that are so bad that every month – every month – we have a day, Patch Tuesday, devoted to the latest fixes to their seemingly endless flaws?
These problems don't tend to be small corner cases either. No, take for example the latest one: CVE-2024-30080, a Microsoft Message Queuing (MSMQ) remote code execution (RCE) issue, which earned a 9.8 out of 10 CVSS severity rating. A 9.8 on that scale, for those who don't know it, is a "Patch it now or you will be pwned" level.
Let's not forget CVE-2024-30078, a Wi-Fi driver remote code execution hole, rated 8.8. Microsoft admitted this one could enable an attacker to hack your PC to remotely, silently, and wirelessly run malware or spyware.
Boy, does that make me feel warm and fuzzy about Microsoft or what!?
Really, that's just life with Windows. In the decades I've been covering technology, I've seen this level of security crapola over and over again.
What's really annoying me today is the security holes Microsoft is adding – by design – into Windows.
I mean of course Microsoft Recall. This delightful AI addition to the next generation of Windows PCs would have taken regular snapshots of everything you do on your computer.
Let me emphasize the word "everything." Your bank account numbers, your passwords, your cheat codes, your My Little Pony porn stash, how much money you lost betting on real-life ponies, etc. What would your partner think if they could scroll through your entire online life? Your mom? Or your boss using Microsoft Purview?
GDPR? What's that?
But, hey, who needs to worry? It's all safe on your computer, right? No one could get into your PC over Wi-Fi and start hoovering up all your Recall data, right?
Oh, wait.
Recall, which will now be optional, is a security hole pretending to be a feature. Even if it were not such an invitation for privacy invasion, I'm hard pressed to imagine what practical use it would be for anyone. We have more than enough useless data clogging up our drives without adding even more.
Finally, thinking of over-filling our storage, in another "What were they thinking!?" moment, with the latest releases Microsoft made it nigh on impossible to install Windows 11 without a Microsoft online account. I'm not happy about that, but I could tolerate it.
What I can't stand is Microsoft automatically sets up OneDrive to back up my folders whether I want it to or not. Not cool, Microsoft! Not cool at all. If I want to back up my files, I'll decide where I want them to go – not you.
I only have 5GB of free OneDrive storage, while I have terabytes of data in my personal directories. And, no, I won't be paying you for more storage, thank you very much. Instead, I'll use one of my Rocky Linux servers running Nextcloud, and I won't have to worry about Microsoft looking over my shoulder.
Besides, consider what the OneDrive automatic backup could do if paired with Recall? I, for one, don't want all my files open to Microsoft or Windows hackers. Do you?
Is it any wonder I've been a Linux desktop user for over 30 years? The only question I have is: Will any of these latest Windows security fiascos finally get the rest of you to join me? I mean, how much punishment are you willing to take? ®
Have you tried Arch Linux?...I am looking at starting with it...I have decided in my old age to learn a new language. And I know very little about operating systems...so it is going to be interesting. I have a “new” refurbished computer to play with it on.
Or maybe I should go with Mint...?
I put 64G of memory on my laptop last year for the purpose of running VMs. with some health issues this year, I have not been able to get to that. Maybe I can start with Arch....
Mint is based on Ubuntu, which is based on Debian. So is my Pop!_OS that I'm running. Debian-based systems are ok-ish, but I personally prefer Red Hat-based systems like Fedora. I find their package management easier to use and less clunky.
“Or maybe I should go with Mint...?”
As a first time Linux user I would highly suggest Mint and here is why. Easy to use right away, and the included default reviewed and trusted app repository is HUGE. The Ubuntu/Mint repository has anything anyone would ever want with one click installs and uninstalls internally with the software manager. Other Distros just cannot compare with the variety and number of internal repository apps available for Ubuntu and Mint.
Start with something easy and then one can always go play with other stuff even at the same time. With Linux there is no law that you have to only use, play with, or be loyal to any one Distro. You can mix and match all you like and still use external USB OS systems to experiment and play with others to see how you like them. The “only one OS at a time” perspective is deep set subconscious ideology based on Microsoft policy all these years. Linux will even let you install several different on the same internal drive if you like so you can boot from a list of different Distros.
The ability to play with as many different Distros as you like is now unlimited when you start playing with Linux. But it is just logical to start with the easiest Distro with the largest repository to become familiar with Linux it’s self first. And that is Mint... It is logical to learn how to drive in the more reliable and easy to drive family car first rather than just jumping right into a race car to learn how to drive. With all due respect to ShadowAce because he is a Linux genius and I personally put him on a pedestal and have learned a lot from him, but his perspectives and choices are that from a highly technologically advanced and experienced race car driver and not always from the perspective of someone just learning how to drive. :)
Sadly, no. people are generally clueless to the extreme about computers. Just look at the number of people still wearing face diapers like idiots. I have been trying to tell people how amazingly insecure windows is for ages.They don't care. In many cases, they just have no idea at all how bad it is.
One would think businesses would care, but they don't. Even in the face of strong alternatives, they won't even think of abandoning windows because of institutional inertia.
“One would think businesses would care, but they don’t. Even in the face of strong alternatives, they won’t even think of abandoning windows because of institutional inertia.”
What I found is that many are locked in with contract agreements. Especially those who cannot do it themselves and have to rely on 3rd party security/IT service providers.
And the security/IT industry is not very keen on destroying the demand for their services by actually setting up secure and reliable systems that never break. They operate on the drive for job security so that they will always have problems to fix and keep them working.
what are you using to run VMs? I have used VMWare for years, but I had to reload my main desktop due to a drive issue, and have been unable to get it working, and since their sale to Broadcom, there is zero support, even for the paid product I have. I can't even get workstation to run existing VMs. Frustrating.
I heard that Mint doesn’t enable SNAP by default. Do you know if that is true? I’m using Kubuntu as of the reload I had to do because of a drive failure. I do not like snap doing app upgrades silently and other things. Might have to switch to Mint with XFCE.
“I heard that Mint doesn’t enable SNAP by default.”
Yep, And they disassociated from it for the same reasons you mention. They also had a problem with the security issues with it being perpetually tied to SNAP services in the background, it is a risk they want no part of. They are still allowing direct Flatpacks though. And as you know almost everything that is available for SNAP is also available as a Flatpack.
I'll probably go with either VirtualBox or qemu.
My workplace is starting to shop around for a replacement for VMWare. The issue we have right now is we are running multiple thousands of VMs, so the conversion process will take a while.
“The issue we have right now is we are running multiple thousands of VMs, so the conversion process will take a while.”
Sounds like you are not retiring anytime soon then? :)
Want to hear one of the oddest complaints I have heard from those who have used Ubuntu and other Ubuntu based Distros after they install Mint?
“I don’t like the panel being on the bottom.”
Well so right click it and move it where you want it. You can move it to top bottom or along either side. Instead they dismiss the Mint altogether just because the panel is on the bottom by default. lol
My biggest problem is that my work laptop =has= to be Windoze, because of corporate lunacy. I installed Vmware Player on it so I can do actual useful work from within a VM of linux.
I built the VM I use on the laptop under VMware workstation on my desktop, then copied it over.
Do you know of a reliable way to convert from a Busybox VM to something that will work with vmware player?
I’m pretty pissed at Broadcom at the moment, as I have had a heck of a time to even find the binaries for installing workstation, and then I get freaking errors trying to compile the modules on launch.
Not sure I understand the question--BusyBox is not a VM format. It's a small (or embedded) system set of utilities. Can't you just install it on a vmware VM?
Sigh. brainfart on my part. I was thinking virtualbox
Thank you!!! Yes, I am very much a beginner...but still willing to explore at my age...(kinda elderly...lol)
Well at least “kind of sort of” is not actually putting out a true number... Well done! lol
There are a lot of us here. But you sound like the perfect candidate for a Linux operating system that is easy to use, stable, creates no added hardships once it is set up, and isn’t constantly trying to self destruct every time it updates. :)
There is only one slightly complicated operation to worry about when getting Linux, the rest are fairly simple. Making the live install/test USB drive is pretty easy with the right steps explained. The only harder issue would be setting up your machine bios to boot from an external drive. This is where everyone just backs out of the Linux test drive because they are afraid they will goof up something in the bios. And every PC maker is different so there is no industry standard. It sometimes takes a little bit of research on how to boot from an external USB on your particular device.
But fortunately most computers now days have a “boot option list” feature that will let you choose from a list of boot devices it detects as plugged in. Just have to find out what button to push as you power it up to get this boot option list so you can boot from the Linux USB.
On my HP it is F9, on my Asus it is DEL. But each maker has it’s own default for this if the boot list option is indeed available on it. One would have to do a search to find what it is per device. But after that you are off and running. You can just run it from the stick and browse the net and check out what apps and features it has and how they work. Basically you have full system running from that stick. Only thing is... It won’t remember any changes you made.
But there IS a way to also make it remember everything if you like! And this can be done when the stick is first created. But seriously, it is not at all as complicated as folks assume it is. and once you test drive it you will smile big. I know I did, I kicked myself for not doing it many years sooner. :)
Here's a how-to on moving from VirtualBox to vmware. Let me know how it goes.
Thanks! I knew you’d be familiar with this!
Boeing is a fast 2nd.
Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.