Page 1 of 4

What software do you feel paranoid about?

PostPosted: 2017-04-01 17:42
by sjukfan
I'm the first one to admit this, some of my paranoia might be unjust. Some I haven't really bothered to think of why I'm feeling the way I do about, and as long as I don't have to run them I don't really bother to look into it.

Only rule, no systemd because we don't need another of those threads.

* Electron
No idea why really. I just have this feeling that it will blow up some day and be the next Heartbleed.

* WordPress
It's so popular so people will always try to find new exploits in it. If I have to use it I prefer to run it in a container, on a different computer, in another room, preferably without internet connection.

* Anything Facebook/Google/Microsoft
It might have nice feature and all but their main goal is to earn money out of your surfing habits so they will use it in some way you didn't think they'd use it.

* Node.js
What I've heard its dependency hell and I feel a bit paranoid whenever people download things from the net without checking it for harmful code. Even containers break sometimes.

* Telegram messenger
Sorry, but the whole thing with closed source servers rub me the wrong way. Feels like the authorities just are waiting for The Reason to break it and log everything.

Re: What software do you feel paranoid about?

PostPosted: 2017-04-01 18:06
by Head_on_a_Stick
Bash

Also, anything with a GUI :mrgreen:

Re: What software do you feel paranoid about?

PostPosted: 2017-04-02 00:33
by sunrat
* Anything Facebook/Google/Microsoft

I'm with you on these. No FB here. I do have a Google account as it's essential for several things I do. I like to think I'm like an amoeba floating down the digital stream amongst the school of fish that are Google's main data scraping/advertising targets. I use Startpage to avoid their targeted advertising.
As for MS, I use Win10 for gaming and have it stripped out within an inch of it's life using the Win10Privacy utility.
Also use Telegram and Slack, but for some incomprehensible reason I'm less concerned about Telegram.
As for native Linux programs I have no particular concerns but I always install security updates promptly.

Re: What software do you feel paranoid about?

PostPosted: 2017-04-02 02:18
by NFT5
Anything that I have to pay for but then find that I don't own it.

I don't have a problem with paying for software, well, within reason anyway. But the price gouging that happens with anything MS related is just that. To be asked to pay a thousand dollars, or more, and then find that it's only good for a year and comes with crippleware if operated beyond that time or on more than one machine is just beyond my ken. Commercial accounting products are the worst offenders and I simply refuse to use them.

More recently, not just software but also websites where my privacy is not respected and my personal information is seen as a commodity that can be had for free but sold for their profit. My attitude here is that it's my information and isn't for sale.

Re: What software do you feel paranoid about?

PostPosted: 2017-04-02 06:57
by sjukfan
Oh yeah, Dropbox. If I was an evil mastermind I would totally invent that only to get hold of people's bits and pieces and secrets. Hm... That sounded a bit overly paranoid, let's say I don't like it because it's a probable target for hacking instead :D Any information I save to "the cloud" I prefer to have encrypted. Not that I think I have anything worth stealing, I just think it's better to have good routines for externally saved data.

I also don't use web based password managers, I don't want to have to change all my password just because someone else forgot to upgrade their server.

Re: What software do you feel paranoid about?

PostPosted: 2017-04-03 18:36
by debiman
directly correlates to their user base.
more users == more reason to be paranoid
usually the facts also correlate with that.
examples:
ubuntu more than archlinux
whatsapp more than facebook

Re: What software do you feel paranoid about?

PostPosted: 2017-04-03 18:50
by annadane
Well, really, non free software. Both because I can't be assured of who is/who isn't listening at the other end, and also free software just tends to work better.

Re: What software do you feel paranoid about?

PostPosted: 2017-04-03 20:18
by sjukfan
My personal paranoia (wow, that sounds like a whole other meeting) depends a lot on the people behind the software. As an example, even if Windows was open source I wouldn't trust it mostly because Microsoft don't own up on their bugs. I can understand if they're not open about it while they're working on a fix, but Microsoft have kept quiet about bugs for months and straight out denied the existence. Not good for my future trust.

Re: What software do you feel paranoid about?

PostPosted: 2017-04-06 08:27
by millpond
Paranoia?

Anything hooked up to a CAT5 or wireless connection.

Someone is listening and logging.
Either corporations to monetize you, or governments to control and surveil you.

Though the Redmond garbage is infested with backdoors to every greedy scammer in creation, the Unix platforms are certainly open doors to government actors. Snowden had no new news when he stated that Debian had been pwned by the Feds.

Think about it.
It was Darpa that started the internet itself, and slowly morphed into Western oversight agencies in charge of net development. Mod-heartbeat was one such project. take a good look into its developers. And similar folk. Academics and musicians. Yeah, right.

The other thing I absolutely do not trust is updates. The ideal attack vector. Comes in as unsourced binary code, in an era when 'certificates' can certainly be spoofed if one has the tech to manipulate certificate servers.

The only platform I come even barely close to trusting these days is XP. Newer boogers cant run on it, as all the new stuff is using .Net4.

I'll start to trust my newer Linux system after a few years. In the meantime I will try to kill anything with a login promt to the WAN on it.


Time to run off and shine my tinfoil hat.

Re: What software do you feel paranoid about?

PostPosted: 2017-04-06 18:34
by /tmp
Anything related to Fitbit/exercise applications: I am uncomfortable with highly sensitive personal health data being transmitted over unsecured wireless connections to who knows where.

"Cloud" storage: Do companies own the rights to uploaded content? My biggest fear is to work on something I pour my heart and soul into (e.g. a digital painting) only to have some company claim it as their own because I uploaded a backup copy online.

Re: What software do you feel paranoid about?

PostPosted: 2017-04-08 01:34
by Chiefahol2
Pretty much any service or software made by any of the PRISM partners. (Facebook/Google/Microsoft/Apple/Amazon)

I don't like Telegram just because the default mode is insecure, secure chat should be the default. It's not really a secure messenger, more like a messenger that had some security pinned to the side of it later on.

debiman wrote:directly correlates to their user base.
more users == more reason to be paranoid
usually the facts also correlate with that.
examples:
ubuntu more than archlinux
whatsapp more than facebook


Facebook has more users then Whatsapp, also it's owned by Facebook. Also sometimes more users means more ability to resolve security issues.

Re: What software do you feel paranoid about?

PostPosted: 2017-04-08 06:09
by pylkko
If you are really paranoid about microsoft, like some seem to be, I wonder what you think about the fact that Microsoft sponsors Linux and also Debian.

Re: What software do you feel paranoid about?

PostPosted: 2017-04-08 07:34
by debiman
I'm paranoid about everything.

Image

Re: What software do you feel paranoid about?

PostPosted: 2017-04-08 07:39
by phenest
pylkko wrote:Microsoft sponsors Linux and also Debian.

Don't you mean supports? Giving us money is one thing. Giving us code is entirely different. And if that code is open source, I'm ok with that.

Re: What software do you feel paranoid about?

PostPosted: 2017-04-08 11:09
by wizard10000
sunrat wrote:...I use Win10 for gaming and have it stripped out within an inch of it's life using the Win10Privacy utility.


I use w10privacy on my sub-$100 Win10 tablet; I use Ublock Origin on all my browsers and not only do I not get targeted ads, I don't get ads at all for the most part. One or two may sneak through occasionally, but so far I've been pretty happy with Ublock.