You are viewing a single comment's thread from:
RE: Create a Safe Operating System!
In the latest post I got bashed for warning people about an actual threat that could expose people's money to huge risks.
No, you got bashed for giving misleading advice, and hyping the fear.
Your example here is also faulty. A key logger is a very very old utility. However, someone has to crack into your computer and install it, then have it run and report back what it finds. I guess, if you download from non-trusted distros, you get what you get.
Your information, although it may be that you genuinely want to help, is mostly hype.
Why are you people so dismissive? Do you really think that ignoring the problem is better than facing it?
It's not hype, it's not misleading. It is what it is. The danger is real, and people who have large sums at risk don't think this way.
You have a $55.18 worth Steemit account, other's have a 500,000$ Steemit accounts, so please don't take decisions for others. Different people have different threat models and risks that they have to consider.
If you have a flat tire, you don't pull out the engine and start rebuilding it.
You misrepresented the problem. You then gave a bad way of fixing the actual problem.
You then gave a poor example trying to make your case that you are legit, and there is something to fear.
Your advice above should be how to properly download, verify and install the new patch loader. You never talked about that, the real issue. If people followed your suggestion, they would still need to properly download, verify and install a new patch loader. So, after your trying to make everyone afraid, you then give bad advice.
Furthermore, everyone who has any real money in digital currencies KNOWS THEIR COMPUTER IS COMPROMISED. Anyone who thinks differently is a fool. So, we have things like multiple signatures, two party authentication and cold storage.
So, you misrepresented the threat; it was not all linux users, it was only about half. You misdiagnosed the threat; saying you need to completely rebuild your linux system. You then went on a snipe hunt trying to tie in a known virus, that has no association with this current problem. All in all, bad advice is bad advice.
That is not a good analogy, because a flat tire is a limited problem, a malware is a full blown problem, since it can have total control over the computer.
Going with the car analogy, it would be like if the car is not starting, you cannot know if it's the engine, the pipes are clogged or what. And the car mechanic can look at the problem externally and see the broken part.
In a PC you can't look at the problem externally, unless you have a trusted OS booted from DVD, and even then you have BIOS malware and crap like that that could happen.
If a PC is exposed, it's exposed, you have to treat it like if it were some contagious biological virus in a lab , you don't just wash the jar with soap, sometimes you have to irradiate the entire building with if a contagious disease has escaped. And sometimes you have to quarantine an entire continent.
It's always about a threat model. You probably don't need to do this, and people who have smaller funds at risk. But some people here have millions of dollars at risk, and they have a different risk level entirely.
So the risk that is acceptable to 99.9% of the people is not acceptable for 0.1% of the people.
Of course, and long term keys you keep offline. But passwords and online authentication codes are exposed every single day when you login, the only defense against such threat is a clean PC.
I did correct this , it's more like 80% though, Mint Ubuntu and Debian are the most popular.
I haven't said such things. Certainly rebuilding from scratch everything would be too paranoid. Although it would be good if determinisic ISO builds would be available.
No I was just talking about vulnerabilities and malware, that come in all shapes and sizes. From phishing sites, to social engineering to keyloggers and worse. People on reddit reported such occurences many times, so we have to take these threats seriously not just shrug it off.