this post was submitted on 28 Jun 2023
236 points (98.4% liked)

Piracy: ꜱᴀɪʟ ᴛʜᴇ ʜɪɢʜ ꜱᴇᴀꜱ

54716 readers
687 users here now

⚓ Dedicated to the discussion of digital piracy, including ethical problems and legal advancements.

Rules • Full Version

1. Posts must be related to the discussion of digital piracy

2. Don't request invites, trade, sell, or self-promote

3. Don't request or link to specific pirated titles, including DMs

4. Don't submit low-quality posts, be entitled, or harass others



Loot, Pillage, & Plunder

📜 c/Piracy Wiki (Community Edition):


💰 Please help cover server costs.

Ko-Fi Liberapay
Ko-fi Liberapay

founded 1 year ago
MODERATORS
 

In the past, most software I used was paid and proprietary and would have some sort of limitation that I would try to get around by any means possible. Sometimes that would be resetting the clock on my computer, disabling the internet, and other times downloading a patch.

But in the past few years I've stopped using those things and have focused only on free and open source software (FOSS) to fulfill my needs. I hardly have to worry about privacy problems or trying to lock down a program that calls home. I might be missing out on some things that commercial software delivers, but I'm hardly aware of what they are anymore. It seems like the trend is for commercial software providers to migrate toward online or service models that have the company doing all the computing. I'm opposed to that, since they can take away your service at any time.

What do you do?

you are viewing a single comment's thread
view the rest of the comments
[–] mikezila@lemmy.dbzer0.com 2 points 1 year ago (1 children)

Yeah, but if your boss or client sends you a document that doesn't work you're not going to tell them "Uh well this is a badly formed document and you shouldn't embed scripts and it's your fault that my FOSS alternative application can't work with this". At least I hope you're not.

[–] heeplr@feddit.de 1 points 1 year ago* (last edited 1 year ago) (1 children)

At least I hope you're not.

Of course I do and I expect my employees to report such incidents to IT. Such documents are common attack vectors.

In my experience, customers are not aware of failing interoperability or possible security threats and often grateful for such hints.

There's a reason why libreoffice (and I guess other office suits aswell), evince or antivirus show a big, fat warning when opening such documents. Surely there are cases were macros are useful or necessary, but if they have to leave the company, you're doing it wrong.

This talk might be interesting for you: https://www.youtube.com/watch?v=4F2xMw3987I

[–] lukas@lemmy.haigner.me 1 points 1 year ago (1 children)

The accounting department loves you. I'm sure the government will bow down to your demands, respect your security concerns, and adopt a more secure approach swiftly.

If you must deal with an organization that doesn't give a shit about security, then you're SOL. We live in the real world. If you don't submit the government forms how they want you to, they shrug and fine the shit out of you. They couldn't care less about the security risks their workflow poses on you.

You can mitigate the risks, but you never have absolute control. While Acrobat poses a security risk, not having Acrobat poses a business risk.

[–] heeplr@feddit.de 1 points 1 year ago* (last edited 1 year ago)

We live in the real world. If you don't submit the government forms how they want you to, they shrug and fine the shit out of you.

Then you just don't know the law. There is no legislation that enforces Acrobat in any civilized country without alternative.

Quite the opposite: Send macroridden documents to any decently secure infrastructure and you get a big fat warning in the subject if it's not filtered entirely. Officials LOVE to do that extra call ensuring that this document is really from you before opening it and no phishing attempt...not.

Source: working >25 years in IT, >15 years for government IT

EDIT: we got some real Adobe Acrobat Fanboy here, eh? ;-)