Now it appears that the Illionois Attorney General is also investigating Sony in relation to the recent DRM software debacle related to their XCP Digital Rights Management software.
her office has requested information from the company regarding anti-piracy software it included on music CDs that experts have shown exposes Microsoft Windows users to security holes and computer viruses.
Incidents.org has a note on a recently noted trojan.spaxe.exe, that when on a system will mimic the windows notification dialogue “bubble” near the system tray with the following text.
“Your computer is infected!
Windows has detected spyware infection.It is recommended to use special antispyware tools to prevent data loss.
Windows will now download and install the most up-to-date antispyware for you.Click here to protect your computer from spyware.”
Once more in the continuing story…. According to freedom-to-tinker, the “fix” released today for the SunnComm/Mediamax DRM software (the “other” DRM software on sony/bmg discs). Is fatally flawed. The problem the software initially poses is much worse than the company lets on in their release and their advise is…. 1) don’t play a mediamax protected disc in your pc. 2)don’t use the fix, 3) don’t use the old uninstaller.
Think about it: one pc, 3 monitors, 3 keyboards, 3 mice, 3 users all on the same machine at the same time doing different things. Ah yes, some of you are saying terminal clients, been there… Think of a standard whitebox pc powering it and a full graphical user interface and you have what’s known as multiseat X. There’s a mini-howto up at blog.chris.tylers.info on setting this up with XR11 v. R6.9/7.0
There is an interesting story at the SecurityFix on an individual who has been sentenced for using access to non-public LexisNexis searching to do background checks on, among other’s police who she though was investigating her for prostitution.
I really don’t know how a SMALL operation can do any kind of software scanning with all the…. legal challenges to have to answer to. Of course, I suppose some don’t, they just cave and their scanners suffer in effectiveness. Anyway, Sunbelt Software blogs about ANOTHER cease and desist letter they’ve received from the makers of CasinoontheNet, Cassava. I still think there should be class action suits against spyware/malware/difficult to remove-ware/makers that use deceptive practices to get their software installed/make it a nightmare for an end-user to remove and generally wind up COSTING end-users money having their pc’s cleaned.
Somewhere along the line, there was a review up of Mandriva 2006 where the reviewer mentioned extremely slow performance in KDE, but on loading GNome instead, things were just fine. I’ve seen some slow KDE performance on the laptop that I upgraded and thought I’d pass along some of what I’ve done to help the situation. For starters, it’s probably a good time to review the main system services (yes I know it seems to be just KDE, but it never hurts to ask “do I really need to leave the webserver running all the time?”)
The securityfix has a post on the “dirty little secret” about antivirus. Eugene Kaspersky of Kaspersky antivirus has posted an introspective article on the antivirus industry and it’s current problems. The biggest problem with antivirus is that it’s always one step behind the virus writers. Antivirus software only can prevent you being infected by those viruses that the antivirus software knows about. In other words a quick, fast spreading infection can hit you anywhere between hours-days before your AV vendor has an update.
A little while back I talked some about TightVNC which for a long time has been my favorite implementation of a remote framebuffer, or remote desktop viewing protocol known as VNC (Virtual Network Computing.) The original VNC (now realvnc) came out of AT&T research labs in the UK and has developed quite a following as a pcanywhere alternative depending on what you need to do. Now, tightvnc has been a favorite of mine for a couple reasons. 1) it’s well supported under linux which is a must for me…, 2) it excels at slower speed connections. Which is also fairly important to me.