You are viewing a single comment's thread.

view the rest of the comments →

0
10

[–] 3548477? 0 points 10 points (+10|-0) ago 

My doctors offices use windows 10. I wonder how much of my personal information has been compromised and given to microsoft and the NSA about my burgeoning mental illness and psoriasis on my dick.

0
5

[–] Bindlestiff 0 points 5 points (+5|-0) ago 

should probably bring that up. if your private medical info is shared with a third party without your consent your doc could be liable. otoh your doc might also be able to sue microsoft if he finds out they compromized your private info too.

0
2

[–] tomlinas 0 points 2 points (+2|-0) ago 

If your business CBA to buy the business version and use the business class control built for the scenario (GPO) then they deserve the audit finding they'll receive...

1
-1

[–] Foobarbaz 1 point -1 points (+0|-1) ago 

I wonder how much of my personal information has been compromised and given to microsoft and the NSA about my burgeoning mental illness and psoriasis on my dick.

If you honestly wonder that then you know very little about developer access to those kinds of reports. I know the Linux fantasy that everyone who works at Microsoft has access to every personal detail of everyone's life -- but it's simply not true.

The vast majority of reports contain no private information. There are going to be two kinds of reports that may have private information. One of which is a full memory dump. If you have 8GB of memory that means you're uploading, UP-FUCKING-LOADING, 8GB (it'll be compressed, of course, but still) or more of stuff. That's if you went out of your way to set that up and have auto-turn in reports enabled. If your file was opened and stored in memory when the OS crashed (not just Firefox, IE, or your audio driver -- the fucking OS) -- then there's a change your personal data is in there. Developers aren't really looking for that though, they are looking for what caused the crash.

The other type of report is "oh hey, this random app crashed, want to send some data to Microsoft?" -- that data varies and is usually useless. It's rarely looked at because 999/1000 it's the private developers fault and not Microsoft's. It's not worth their time because it's not something they can fix.

These are bug reports. You're fantasizing about Windows 10 streaming data to some datacenter without anyone noticing. I said it before and I'll say it again: That's way too much data to not get caught. WAY too much. You are, of course, welcome to look into it yourself. It's trivial enough and plenty of people that have combed through it already can step you through the process.

But let's back all that up for a second. How many times, in your entire life, have you ever read an article about Microsoft releasing private data or leaking private data from bug reports?

If the NSA and Microsoft and doing the hanky panky, don't you find it at least a little odd they've been able to keep it perfectly under wraps this long? Without ever making a mistake? I'm pushing you to admit that the NSA and Microsoft are the pinnacle of security --or-- aren't doing the hanky panky.

Remember... the NSA, FBI, Military, etc -- all use the same OS predominantly. China, Russia, North Korea, you name it -- also has access to this OS. Don't you find it a little strange not even they have found some super uber hidden secret so far? Wouldn't that be something amazing for them to find and announce to the world?

On to another very important topic -- your doctor cares about doing doctor things, and if they don't then why the fuck are you seeing that doctor? They aren't IT experts and in fact many are IT-idiots (My GP actually used to be a programmer 15+ years ago, I'm not sure about my cardiologist and my other two specialists are plain IT idiots) -- they just hire a consultant and simply trust the consultant. There really isn't much else they can do but trust them. The doctors have no idea how insecure or how secure they are. Fuck, I once found a server and 2 computer. One computer was on the domain and the other wasn't. I shit you fucking not. deep sigh. That's my doctor and those are my records, though I could give a flying fuck if someone reads my shit -- I doubt they'd understand 90% of it anyways.

It's not like IT folks have some form of formal rating (A+/Network+ means fuck all), clearance (doesn't exist), or certifications (I can't think of a place that gave two fucks about certifications with the exception of CCNP and higher) that actually matter. In addition those, like me, who know a lot about various things -- are NOT cheap. We're ridiculously expensive -- more than your doctor can afford usually because our target is large corporations (I'm retired now but before that...). They pay pretty dimes. Doctors pay shitty pennies. So they end up with the bottom of the barrel folks who know just enough to get the job done but not enough to walk into the corporate world (yet, they either mature up and move on... or move to another field in my experience -- which further leads to more problems because the doctors always have new people who don't know WTF the last guy did). Though, admittedly, I REALLY do wish we could standardize on computer knowledge and have a formal degree / certification somehow. CompTIA just isn't taken seriously.

And if you've been in IT long enough you know this: Never work for a church, never work for a lawyer, and never work for a doctor. Churches want you to work for free (or stupid cheap, or pay you in things that aren't get you food at Burger King), lawyers can out-lawyer you, and doctors seem to have lawyers on retainers. This is also why doctors get the shaft.