The Screaming Viking

Ars has an article about some applications sending GPS data to advertisers without the user’s knowledge.  The article identifies the problem using a game as an example.

The Android operating system has an access control mechanism that limits the availability of key platform features and private user information. Third-party applications that rely on sensitive features have to request permission during the installation process. The user has the option of canceling the installation if they do not wish to give the application access to the specific features that it requests. If a user starts to install a simple arcade-style game and finds out that it wants access to the user’s GPS coordinates, for example, the seemingly suspicious permission request might compel the user to refrain from completing the installation process.

It’s a practical security measure, but one critical limitation is that there is no way for the user to discern how and when the application will use a requested feature or where it will send the information. To build on our previous example, the user might decide to grant an Android game access to their GPS coordinates so that the software can facilitate multiplayer matches with nearby users. The user has no way of knowing, however, whether the application is also transmitting that information to advertisers or using it for malicious purposes. Making the permission system more granular might potentially address those kinds of problems, but would also have the undesired affect of making it too complex for some users to understand. Indeed, there are already a lot of careless users who simply don’t take the time to look at the permission listing or don’t understand the implications.

I would expect one of the next incarnations of the ‘droid OS will have some adjustments to this.  Like the article identifies though, it’s difficult to give people more information about something like this…most just don’t understand how these things work.  When we were able to install things on the blackberries I put a few applications on that wanted to query GPS data.  I always told them no, and left the GPS turned off.  It seems like the blackberry is a little more secure and designed for the business environment, so the controls are a little more granular.

link

A buddy sent me an email about these guys last night.  Here is an overview of what they do as explained by the guy that sent it to me:

What it winds up doing is hosting a domain’s DNS, and in doing so it redirects web requests through their filtering network. Known bad hosts (botnets, spammers) are presented a CAPTCHA before they can visit a site. Requests formed in such a way that no real web browser would do also trigger it, so it catches some spam scripts that aren’t even known about yet. It also caches common content (images, etc) so stuff’s supposed to load faster for legit users too.

it’s on like donkey kong…stay tuned…

Next spring I’m hoping to be able to pick up a Road King.  After I get this “new to me” crusing/touring bike I’m going to start acquiring parts and ideas for the V* chopper/bobber project.  The “large” cosmetic changes I’m figuring to make are 16″ apes, dump the front fender, chop the back fender, lower the back end (jslam) and raise the front end a bit.  After that I’ve been looking at what other guys are doing to see what tickles my fancy and cooperates with my budget.  I’m thinking about using an old tractor seat and a few other things that I’ve seen around.  The large over all look I’m kinda going for is similar to:

I’m going to do a different color scheme…my pipes are different and I’m not going to put a turbo on the bike…but the large picture I’d like to come out similar.  I’m still thinking about the paint scheme..there is a possibility I will spring for someone to do a “real tree” paint scheme…but we’ll see.

Looking around on a v* forum a guy has started a new bobber project.  He posted some pictures of an oil filter setup that he’s going with that I’m really diggin on.  I sent him an email to try and get some details about it: