Sorry if this sound rude but to me this whole discussing has been unimportant.
The only good part was the explanation of exactly how this works.
I partially disagree with you, if he didnt bring his concerns we wouldnt have the explanation you state you find as 'good'. If a user has a valid concern, we ned to separate ourselves and
calmly discuss the factors behind it. We also need to explore their concerns as if we knew nothing about the subject
. The biggest problem Iv faced in getting support (I also provide support so I try to remeber this myself) is the tech we end up dealing with dont have either the capacity or the knowledge to realise they dont understand everything.
Also, just because something is irratating to us
DOES NOT mean it has no validity. There are TONS of exploits using 'remote connection' protocols. I, myself, am concerned if Avast is using P2P netowrking to provide this feature
. However, to announce this brings
GREAT resistance from those still trusting file share(s). As well, SSL ceretifacte use brings little comfort and here is why:
http://www.zdnet.com/blog/security/ssl-broken-hackers-create-rogue-ca-certificate-using-md5-collisions/2339http://betanews.com/2011/08/30/google-microsoft-block-diginotar-for-fake-ssl-cert-company-halts-all-certification-sales/http://www.eweek.com/c/a/Security/Fake-Google-SSL-Certificate-Emerges-With-Ability-to-Hijack-User-Accounts-270126/http://thenextweb.com/microsoft/2011/03/23/9-fake-ssl-certificates-loose-in-the-wild-microsoft-claims/And then there is Comod's owners remarks on the subject as well:
http://www.melih.com/2011/03/23/I suppose these hackers figured it out by going with the status quo, that it couldnt be done, eh
?
Unforunatly, right now, SSL is the only thing we got. I will state again it would be awesome to see Alwil develop a better, more secure standard, but that will never happen
if things just like what the OP has brought to bear (regardless of our own thoughts on its security), simply end up riduculed and ruled out because 'we' think its impossible. I know tech's that think the SSL fake is just rumor creted by the
'Great Media Mill' to cause paranoia... all due to thier own arrogance
.
It was stated in this post that there are always some group/individual trying to hack the current standards. This is just a part of life. But to ignore such knowledge simply because 'we' dont think it can happen is plain iggnorance. I would hate to see my favorite company... ARGGGHHH!!!
... become the example of why 'we' need to calmly address factors like this.
All Im trying to point out is NO TOPIC should be thought of as useless. I, myself, tried to point out to my OWN ISP that DNS hijacking;
www.fbi.gov/DNS-malware.pdf , was beginning or already occuring, along with the Playstaion Network and a few other vendors I trust in my network. They laughed (not out-loud) and served me with patronizing statements
.
Now, they pay a bit more attention to the conrcerns I point their way.
Either way, I would like to thank the OP for this subject, as it has shed light on whether I want to use this feature or not. I have to provide assistance to a few folk that I have recommended Avast to (goin on 6-7 years now). As well as my 60+ year old mother who cant stop from opening emails from unknown solicitors. Im still curious as to whether this is P2P remote assistance, or Avasts own design (praying they took the time do make their own
)?
Anyhow, this may help others understand why sometimes the GREATEST change can be made by those that think differently because they arent pinned down by pre-existing thoughts on the matter (such as myself and my feelings about P2P).
Thank you InDoctor for helping this process be explained in depth. Now I just worry about a hacker reading the remarks and figuring out how to fake the SSL cert(s) involved here. Thats not your fault though so really, THANK YOU
.