Welcome back me... MIA for ~10 years... ;)

fourth · n00b Joined: 26 Nov 2004 Posts: 48

I guess I'm 'new' to gentoo... though I used Gentoo many years ago when running a HTPC on a miniitx board. Back then I used gentoo to run the os\decoder as efficiently as possible so I could use a really lowly specced CPU for the HTPC (low specs = less heat = passive heat sinks = quite)
It was a simple system, but did have some tricky bits like using LIRC to record my TV remote to use on both the panel and also the HTPC at the same time. (worked well).

Having being an MCSE since the NT3.50 days I've finally thrown in the towel. While each subsequent windows release just felt ever more obtuse than the last it was never enough to dislodge me. I followed on with the Microsoft vs Linux war of ~10 years ago with interest and considered MS to be an aggressive company. Then came Snowden, and I recalled paranoia 15 years earlier when this was released http://archive.wired.com/science/discoveries/news/1999/09/21577 . So carefully controlled what came out of machine, 127.0.0.1'ed sites, ad tracker lists, etc,, etc... But it;s near on impossible. Netstat ALWAYS showed enormous amounts of weird connections usually with almost nothing running. rerun malware scanners, etc, recheck running processes, recheck services, autoruns, etc... Reran my data through a VPN, added a second vendor firewall. Rebuilds... Now, MS W10 trumps all this, they own my data once I get windows 10. I can block them, but the next windows update may well silently just disable my OS hack... I could block them on my firewall, a PITA to start with, but I have to admit... MS is now hostile to it's own users. I'll never know the next channel they open back to themselves

For the past year I have watched data flowing out to unknown locations. To be clear I'm a minimalist, and often break something by disabling too many services or by hacking off something needed. I have always done this.

But the Windows 10 intrusion was too much. I vowed to never install it. Then found that win7 updates were pushed to my machine, which I caught in time(thanks slashdot) and disabled windows update. Then I drifted for a while considering my next steps. I always considered gentoo the 'most secure' distro, if only because all source is exposed to the end users. We do this at banks, we force programmers to send source to a release manager who then runs the compile script and stores the source. Just in case something dodgy is in there it can be analysed. Keeps them honest(er). I came close to choosing Arch if it wasn't for this point. It's certainly possible to deliver compromised code to my PC, but thankfully I'm a c++ coder, so worst case I can actually read and understand the code(not that I want to).

It just bothered me that I had to consider my laptop a 'hostile platform' as I had little control over what it did, who ran what and when. Mysterious lockups, constant malware scans looking for what process is revving the CPU fans when unattended just left me unsettled. Not paranoid, just annoyed that I had to consider my own computer potentially hostile to my basic usage.

So, with all gaming now on the console (not much really) I decided to try rebuilding the laptop.

You don't need to know all this... but I imagine sitting on the gentoo side of the fence looking at the Windows 10 mess you HAVE to be wondering about how many people must be getting annoyed by all this. I'd say about 20% of this IT department are concerned about the 'free' upgrade... but it seems I'm the only one jumping to linux. A few more are moving to OSX, a handful at most...

So, at the very least there is one new user directly linked to Windows 10 privacy.

Yamakuzure · Posted: Thu Oct 08, 2015 9:45 am Post subject:

Welcome back!

Just a few "2 cents" that came to my mind:

A) The free upgrade is for private users only. Windows 7/8 in company domains never get the GWX update.

B) Microsoft always collected data. Nothing new. They just do it openly now, because of

C) Windows 10 is just a lot nearer to what is considered normal on mobile phones and tablets. You can switch it all off. The only thing that annoyed me, is that all this mobile stuff like speach recognizing, camera control and GPS location were enabled by default.

D) Anybody who owns a smart phone with Windows, Android or iOS has it worse for years than anybody using windows 10 who has disabled all the (useless, in my eyes) applications from the mobile world.

Microsoft is not a company of saints, and they surely want data and control, like you said, but calling them "hostile" is a bit much in my opinion. They do not actually try to harm you.

Apart from that I use Windows 10 for gaming only, and for everything serious, Gentoo. ;-)

_________________
Important German:

"Aha" - German reaction to pretend that you are really interested while giving no f*ck.
"Tja" - German reaction to the apocalypse, nuclear war, an alien invasion or no bread in the house.

fourth · n00b Joined: 26 Nov 2004 Posts: 48

"A) The free upgrade is for private users only. Windows 7/8 in company domains never get the GWX update. "

As an professional who works in banking in this space I agree, but I would presume that the security+compliance guys will have to spend a bit of time nutting through this. When Windows Desktop Search was released back ~2002-3ish I remember the reaction was so strong that most companies blocked it with an AV policy. The reason was potential data leakage of sensitive\customer\etc data. I presume many of the same conversations are being held.

"B) Microsoft always collected data. Nothing new. They just do it openly now, "

The wording on the collection of metadata on the modern equivalent of desktop search and microphone processing(cortana et al) was loose enough IMHO that they would effectively salt the raw data and upload it under the new agreement. To me this takes things to a new level. I have always maintained a conceptual difference between Internet and local machine, and understood where my data lives, and what my locally executing code can (should) be doing. With this new update I'm no longer sure about what is on my machine and what was keyword scanned \uploaded. Of course once microsoft has this data, who do they then pass it on to? Is it possible personal financial data could end up in the dragnet? The EULA will certainly give me no guarantees of this.

"C) Windows 10 is just a lot nearer to what is considered normal on mobile phones and tablets. You can switch it all off. The only thing that annoyed me, is that all this mobile stuff like speach recognizing, camera control and GPS location were enabled by default. "

Many were annoyed by the defaults, but most techo's would eventually get a hold of a select\enterprise iso at some point and 'fix' their home systems. However, once you turn them off on a home system, how long before they are re-enabled? Would you know? Would you even bother rechecking? Would a enterprise build remain disabled if it was registered to a dodgy KMS?

"D) Anybody who owns a smart phone with Windows, Android or iOS has it worse for years than anybody using windows 10 who has disabled all the (useless, in my eyes) applications from the mobile world. "

Completely agree and to me it;s really concerning. I turn everyone I can to Wickr or worst case telegram.org. I've moved to protonmail from gmail, prefer redphone over clear communications, prefer alternative search engines. But I know that it's mostly fruitless. I'll have iceberg sized gaps all over. Android is mostly a black box and I would not even be able to tell if something wanted to upload anything or even if a single thing is private.

"but calling them "hostile" is a bit much in my opinion. They do not actually try to harm you. "

Hostile just means opposed. They are opposed to whats best for me. My privacy is valuable. They openly oppose this, just as google does. Where does that data go besides Google or Microsoft? Is my browsing history just sold off to ad marketers? Are the political views I write about sold to governments? Would they be key word scanned by my governments intelligence department and a 'threat' weighting defined? Just because I want to know about how the Israeli leviathan gas field ties in to the syrian pipeline.

Before you consider it all harmless... My best friend in high school (many years ago) was born in Cambodia. Just a normal Asian country. A radical Junta took over. Everyone considered potential problems was identified, removed and shot. Overall about 5 million from memory... a decent portion of the country. How did they find the 'problem people'? For one... Glasses. They were a sign of 'intellectuals'. He went though hell escaping the country and ended up here as a refugee. At present, almost anything you do online is visible. But black spots exist, direct encrypted communications, tor, etc mask activity. Imagine if you could scan what people read and wrote at the source?

http://www.pcworld.com/article/2974057/windows/how-to-turn-off-windows-10s-keylogger-yes-it-still-has-one.html
"Microsoft pretty much admits it has a keylogger in its Windows 10 speech, inking, typing, and privacy FAQ: “When you interact with your Windows device by speaking, writing (handwriting), or typing, Microsoft collects speech, inking, and typing information—including information about your Calendar and People (also known as contacts)…” "

Idle wondering... when a device (pc\phone\etc) can convert your voice to text, and can send that to a central server, when can you assume it's 'not' doing that? Does the hardware just not record unless you say ok google, siri, etc... or in order to hear those commands is it necessary for it to run continuiously?

What does this have to do with MS or Google scanning everything you do or say? It's not like they are part of the government: http://www.youtube.com/watch?v=ZTC_RxWN_xo or represent hostile potential to other nations http://www.wsj.com/articles/eu-court-strikes-down-trans-atlantic-safe-harbor-data-transfer-pact-1444121361

For me personally, I feel put out that being an IT guy I can barely control my own data or systems. Like a nutritionist who subsists on McDonalds, I feel that I 'should' at least try to do whats right. It's certainly easier to just sit back and cross my fingers... I'd find plenty of company...

Yeah, yeah... ship me a roll of tin foil... I'll make 'em myself

Yamakuzure · Posted: Fri Oct 09, 2015 6:33 am Post subject:

Roman_Gruber · Posted: Fri Oct 09, 2015 9:47 am Post subject:

welcome back.

fourth · n00b Joined: 26 Nov 2004 Posts: 48

I think we're pretty much on the same page

As someone living in Germany you may have your own local cultural idea's over excessive government monitoring of the population from a historical perspective.

Over here you may or may not know our 'public servants' pretending to be overlords have decided that everything I do and say should be recorded to be used against me forever:

http://www.theregister.co.uk/2015/01/28/ours_once_ours_forever_asio_doesnt_have_to_delete_your_data/

Sorry to go off on such a tangent... overall I just wanted to mention that whilst you might imagine that at least some Windows users should have left due to the new policies and toolsets installed I'm living proof that at least one per did get off

. A good friend of mine runs a SMB consulting firm here in sydney. His business is close to 100% linux these days. We used to sit shoulder to shoulder in a an aussie bank running the Windows server fleet... so I'm not the only one....

steveL · Posted: Sun Oct 25, 2015 3:46 am Post subject:

Welcome back!

Crashing out, but there's some interesting discussion (well, interesting for a crufty like me..;)

This brought back memories, though, and a chuckle:

fourth · n00b Joined: 26 Nov 2004 Posts: 48

I have a mate who has been doing linux consulting for a few years. He mentioned something about it, and I recalled reading something about Systemd a while back. I knew nothing about it other than apparently the primary dev was a megalomanic etc... So I went off looking and eventually found this:

http://suckless.org/sucks/systemd

... which seems to be a very thorough list of gripes.

. I recalled seeing OpenRC on boot, so assumed I had limited exposure to all these problems. Went off and checked and found I had udev despite a -systemd in make.conf

So.. https://wiki.gentoo.org/wiki/Gentoo_Without_systemd suggested a mask file. ... and that was that.

When I look around at most of the big problems in the world today it appears as though centralisation is the problem. Corruption, high gini ratio's, war, unbalanced socialism, ideology, mass spying, etc. Pretty much all these problems can only result when you have excess centralisation. So.. I always try and decentralise. Usually, decentralisation also means personal empowerment. I've found it's good for me. Whats the downside? A small loss of convenience had in laziness.

kalebbbb · n00b Joined: 26 Nov 2015 Posts: 2

Welcome back!

gentooP4 · Apprentice Joined: 20 Sep 2010 Posts: 182 Location: NZ

Syl20 · l33t Joined: 04 Aug 2005 Posts: 619 Location: France

Maffblaster · Posted: Mon Feb 29, 2016 7:16 am Post subject:

Welcome back to the best, most flexible distribution available.
_________________
Lets make Gentoo better together!
wiki: https://wiki.gentoo.org/wiki/User:Maffblaster
blog: http://dev.gentoo.org/~maffblaster/

ameko · n00b Joined: 05 May 2005 Posts: 19

Whatever I do, I always come back to you, Gentoo

Welcome back fourth, I've also been away for a while.