|
MS-DEFCON 2:
Patch reliability is unclear. Unless you have an immediate, pressing need to install a specific patch, don't do it.
|
-
The PIFTS Norton conspiracy
Posted on March 10th, 2009 at 22:44 3 commentsSANS Internet Storm Center reports that Norton has been caught with its pants down, again.
It seems that an update yesterday to one (several?) of the Norton products includes a file called PIFTS.exe that phones home, to stats.norton.com. ISC says that many people have reported the problem – PIFTS’s aberrant behavior was detected by Norton’s Firewall.
That’s just stupid. Here’s what makes it a conspiracy. Hundreds – perhaps thousands – of messages posted on Norton’s support forums regarding PIFTS have been deleted.
More info shortly.
3 responses to “The PIFTS Norton conspiracy”
-
Good grief.
The burnt smell coming off Norton today reminds me of the ZoneAlarm 6.0 phone-home fiasco two years ago:“ZoneAlarm Security Suite has been phoning home, even when told not to. Last fall, InfoWorld Senior Contributing Editor James Borck discovered ZA 6.0 was surreptitiously sending encrypted data back to four different servers, despite disabling all of the suite’s communications options. Zone Labs denied the flaw for nearly two months, then eventually chalked it up to a “bug” in the software — even though instructions to contact the servers were set out in the program’s XML code.”
Read all about it:
http://www.infoworld.com/article/06/01/13/73792_03OPcringley_1.htmlWho will watch the watchmen?
You’d have to be nuts to trust ZoneAlarm or Norton: They create a phone-home, fail to catch it in pre-release trials of the firewall (did they even try?), and actively do a cover-up. That’s not security *for you*. That’s security *for them, at your expense*.
-
Bob Primak March 11th, 2009 at 13:09
Even if this issue had not surfaced, Neil Rubenking of PC Magazine is investigating reports that Symantec/Norton techs in India are ripping off Live Chat customers and using unauthorized non-Symantec software in Remote Assist sessions. Pretty scary stuff!
http://www.pcmag.com/article2/0,2817,2342634,00.asp
Title: “Symantec Support Goes Rogue”
And that’s from one of the biggest cheerleaders for Norton products on the Internet.
-
Bob Primak March 11th, 2009 at 15:18
The Conspiracy Theory about those posts to the Symantec Forums is pure FUD. See the PC Magazine News Story which clears up the entire PIFTS episode. It was an innocent programmer oversight regarding not digitally signing or assigning permissions to a normal Norton update.
http://www.pcmag.com/article2/0,2817,2342809,00.asp
Norton products have always phoned home constantly (it’s called Live Update), which is one reason why I removed them from my laptop a couple of years ago.
Leave a reply
-
Support AskWoody.com
Click on this list to get
Woody ’s books at Amazon.com
- Windows 7 All-In-One For Dummies
- Green Home Computing For Dummies
- Windows Vista All-In-One Desk Reference For Dummies
- Windows Vista Timesaving Techniques For Dummies
- Windows XP All-In-One Desk Reference For Dummies
- Windows XP Timesaving Techniques For Dummies
- Windows XP Hacks & Mods For Dummies
- Windows Home Server For Dummies
- Special Edition Using MS Office 2007
- Special Edition Using MS Office Home & Student 2007
- Special Edition Using MS Office 2003
- Office 2003 Timesaving Techniques For Dummies
- Special Edition Using MS Office 2003, Student-Teacher Edition)