Adam Shostack  May 26, 2024

Microsoft could fix ransomware by rate limiting createfile(), the api that’s used to open files. Opening files is a crucial step to encrypting or exfiltrating the data, and very few apps need to open a lot of files at once.

I’ve heard that Microsofts reason for not fixing it is … because user experience shouldn’t change because of windows update… https://wandering.shop/@xgranade/112498285644883431

Xandra Granade 🏳️‍⚧️ (@[email protected])

I remember when Windows 10 mail was local only, before a Windows Update made it cloud-only. I remember Edge didn't have built-in ads, before an update put ads everywhere. I remember when the My Documents folder was local-only by default, until a new version of OneDrive pushed it all to the cloud by default. History suggests that this kind of product is too often a wedge to justify more abuse of personal information in the future.

The Wandering Shop
Show threadSteve BellovinMay 26, 2024
@adamshostack @xgranade As I read this, a large rsync is running to back up my photo archive—and there are a lot of files to back up, because the latest Lightroom upgrade apparently touched O(ℵ₀) files: “new catalog format”…
Show threadafxMay 26, 2024
@SteveBellovin @adamshostack @xgranade One of the many reasons I run Capture One.
Show threadAdam Shostack  

@afx @SteveBellovin @xgranade Does Capture One still demand to run anti-piracy stuff as root?

(Yes, Lightroom does that, and you can disable it all, and LR still runs. Capture threw a fit and exited, if I remember right.)

May 26, 2024 at 2:59pmWeb
Show threadafxMay 26, 2024
@adamshostack @SteveBellovin @xgranade No idea?
At least I see no C1 service in the services list on my box.