Windows 11 silently copies your "My Documents" "My Pictures" "Desktop" to OneDrive cloud storage

Some pointers to "secure boot" :

https://support.microsoft.com/en-us/windows/windows-11-and-secure-boot-a8ff1202-c0d9-42f5-940f-843abef64fad
https://support.apple.com/en-us/102522

https://www.redhat.com/sysadmin/secure-boot-systemtap

https://support.apple.com/guide/deployment/system-and-kernel-extensions-in-macos-depa5fb8376f/web

(for windows, mcos, linux) and discussing the T2 chip, signed kernels and kernel drivers

2 minutes ago, jabbr said:

Yeah my point about Linux is that anyone has kernel access and its less subject to these disasters than Windows.

 

and as I've suggested you can gain access to MacOS kernel if you are sufficiently determined.

 

If windows wasn't so hackable there wouldn't be a need for third party security 'solutions'. No one is preventing Microsoft from making windows 'as is' secure ... MacOS doesn't get viruses to nearly the extent and there is no need for essentially mandatory third party anti-virus. Linux has an entirely open kernel and also isn't as subject to viruses.

 

Ummmmm .... ***hardware*** can require kernel drives to be signed eg NVidia graphics

Only much earlier versions of Windows didn't require drivers to be validated/signed (Windows 7, I believe). The problem in CrowdStrike case was that while their driver was signed, it obviously had a bug that went undetected until some specific payload update was delivered to it by the company. Based on the EU agreement, Microsoft isn't allowed to sandbox/virtualize CrowdStrike drivers. So, I blame this disaster on EU, CrowdStrike, and then on Microsoft, in that order 😁

3 minutes ago, pkane2001 said:

 

Only much earlier versions of Windows didn't require drivers to be validated/signed (Windows 7, I believe). The problem in CrowdStrike case was that while their driver was signed, it obviously had a bug that went undetected until some specific payload update was delivered to it by the company. Based on the EU agreement, Microsoft isn't allowed to sandbox/virtualize CrowdStrike drivers. So, I blame this disaster on EU, CrowdStrike, and then on Microsoft, in that order 😁

 

For our purposes just use @Miska's HQPlayerOS which is ??EU based?? and there's no need for Crowdstrike ... indeed I don't know what Crowdstrike does because I've never needed it.

Just now, jabbr said:

 

For our purposes just use @Miska's HQPlayerOS which is ??EU based?? and there's no need for Crowdstrike ... indeed I don't know what Crowdstrike does because I've never needed it.

Never used Crowdstrike myself and none of my equipment was affected... But I was still directly impacted by this failure in many ways, from a hospital that had to turn away patients, to checks that were delayed, to flights that got cancelled. It's a connected world, and unfortunately, has way too many single point of failure dependencies.

7 hours ago, jabbr said:

Not true, you can compile your own Linux kernel including whatever you want.

Now ... your computer might want things *signed* ... in any case if you really want to you can do what you want with your kernel but not causually

 

also in case you want to spend time and effort: https://www.freecodecamp.org/news/build-a-hackintosh/

I agree about kernel modifiability of Linux, I read lengthy linux/Documentation/Configure.help and had build small sized kernel (400KB) that includes functionalities only I use, when Linux was version 2.0.28.

On Apple computers, I actually don't know about recent MacOS or iOS... Clearly they don't welcome hobby amateur programmer. I don't understand why I should pay money to Apple to write free app and deliver it to friends' iPhone. (On Android, it is free)