|FROM ||Ruben Safir
|SUBJECT ||Re: [NYLXS - HANGOUT] Lenovo Superfish
|From owner-hangout-outgoing-at-mrbrklyn.com Sun Mar 1 21:45:23 2015
Received: by mrbrklyn.com (Postfix)
id 6481C161305; Sun, 1 Mar 2015 21:45:23 -0500 (EST)
Received: by mrbrklyn.com (Postfix, from userid 28)
id 55343161307; Sun, 1 Mar 2015 21:45:23 -0500 (EST)
Received: from mailbackend.panix.com (mailbackend.panix.com [18.104.22.168])
by mrbrklyn.com (Postfix) with ESMTP id CB7C6161305
for ; Sun, 1 Mar 2015 21:45:21 -0500 (EST)
Received: from [10.0.0.19] (unknown [22.214.171.124])
by mailbackend.panix.com (Postfix) with ESMTPSA id CCDDC11A51
for ; Sun, 1 Mar 2015 21:45:20 -0500 (EST)
Date: Sun, 01 Mar 2015 21:45:20 -0500
From: Ruben Safir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:31.0) Gecko/20100101 Thunderbird/31.3.0
Subject: Re: [NYLXS - HANGOUT] Lenovo Superfish
References: <20150226172241.GB23384-at-panix.com> <54EF6851.1050101-at-panix.com> <54EF6DD2.3000902-at-panix.com> <54F39C09.9040206-at-panix.com> <20150301232325.5894290.12371.3725-at-gmail.com>
Content-Type: text/plain; charset=utf-8
List-Id: NYLXS General Discussion Forum
On 03/01/2015 06:23 PM, prmarino1-at-gmail.com wrote:
> Ah the dangers of free as in beer applications.
> Get ready every one once all of these are discovered we are going to be hearing about and possibly dealing wit?h a mess that will make heartbleed seem like a pleasant memory.
> ?Smiles :) :) :) every one you will need them while your carrying a sledge hammer around the office to handle those pesky desktops lol.
> No but seriously this one will be bad and every one should be checking their smartphones too. I did and all my devices are clean
I bet I know what this guy at Komodia was trying to do. He was trying
to make something of a parental control for the Orthodox Jewish
community. That doesn't mean that he suggested taking an unvetted
version of his software and embedding it into what is flat out MALWARE
with Superfish. It is a sick prospect that is the rule rather than the
exception, that individual ownership and privacy mean nothing to the
providers of digital software in todays computing environment. The fact
that this software would intercept all httpd communications through
tcp/ip and rewrite it never even occurs to them as being a violent
violation of individual ownership and privacy of the computer. And if
it wasn't for this small minor detail of the certificate swapping, all
would be just Fine and Dandy.
The mindset here, of the acceptance of manipulation and control of the
end user HAS TO END.
> First, don't make intercepting proxies. They are impossible to write
> correctly, and by their very nature lower the security of the whole
> Second, the Komodia one is a particularly bad one, and they should feel
> Third, Komodia should be punished for jeopardizing the users, like
> probably all the companies that didn't do due diligence here.
> More rants on Twitter .