The Lounge is rated Safe For Work. If you're about to post something inappropriate for a shared office environment, then don't post it. No ads, no abuse, and no programming questions. Trolling, (political, climate, religious or whatever) will result in your account being removed.
Using your requirements, mothers-in-law would do even better. Not only do they never forget, but they last even longer.
Also, while the RSPCA may complain about the way you treat your elephant, no one cares what happens to your mother-in-law.
Freedom is the freedom to say that two plus two make four. If that is granted, all else follows.
-- 6079 Smith W.
Anything that is unrelated to elephants is irrelephant Anonymous - The problem with quotes on the internet is that you can never tell if they're genuine Winston Churchill, 1944 - Never argue with a fool. Onlookers may not be able to tell the difference. Mark Twain
Been working on understanding / building my app as a Cross-Platform app (see lounge post[^] for more).
The real target was to get deployment packages that would allow anyone on any OS (Win10, MacOS, Linux) to easily obtain and install.
I was confused for a while, but I figured it out : basically, there is another Electron/Node project (Electron-Builder via Github[^]) that will package your app for deployment on all three platforms.
Once I tested the installation on my local machine (Win10) I decided to try it out on another machine where I do not have the rights to install apps.
When I double-clicked the installer package, it worked perfectly normally (though I don't have admin rights). I saw the nice dialog (image via imgur[^]) that tells me it is installing but no UAC warning and asking me to sign in as an admin.
From a developer's perspective this is very cool.
Win10 Apps & Features
I also looked in Win10 Apps & Features to see if I saw the program and it is listed (snapshot via imgur[^])
It is interesting that the installer can add the app in there, even though I'm not an admin.
I tried uninstalling the app from Apps & Features but it raises the UAC request and I don't have rights.
What Is Target Installation Location For Electron-Builder?
This seems to be the way the installer gets around the UAC requirement.
It installs to:
It Is Still Possible to Run Uninstall
The packager also creates an uninstall exe so you can uninstall the app cleanly and completely. You can see it in this file listing image via imgur[^].
Even though I cannot run the uninstall from Apps & Features I can run it from that uninstall EXE and it will remove the program from Apps & Features --- nice and clean.
As A Dev
As a dev I think this is amazing and cool because deployment is always difficult and I want it to __just work__. As a user, I'm thinking, "uh, who can install stuff to my machine without me knowing...or as a trojan payload to some other program I downloaded!?!"
Of course, since this is like xcopy install that could be true with anything you install.
if you have a dozen different users on the same machine running the app, you have a dozen installations of the app on the machine.
That is a very good point. and these Electron installations are HUGE compared to their native (or managed framework) alternatives. HUGE! The app I rewrote was about 3 MB or something. The new one installs 90MB or more.
Of course for .NET managed apps you have the initial installation that is large but at least that is in one location and everyone can use. I took a look at the Atom Editor (also Electron app) and it is 1.1GB installation. Wow!
the appearance of the trojan [horse] is that it looks like a gift, and [referring back to the story] also looks innocuous. Even once brought inside (installed) it still looks like gift.
Only when it turns dark (ability to move freely / undetected - UAC has [elsewhere] been set to allow) then the payload within is released to achieve it's goal.
Trojans don't by themselves attempt to gain access, they wait until it's provided to them.
Ability for ordinary [otherwise limited for security purposes] users to install ANY app without permission a good thing?
Gotta love the way windows still makes even new features so useful for the good and the bad.
It looks similar to the Microsoft Click-Once installer which for some strange reason is totally unknown to most Windows developers: Create custom installer for ClickOnce application - Visual Studio | Microsoft Docs[^]
As Dave Kreskowiak mentioned this installs to the user profile.
The interesting thing is that, from a Microsoft browser, it can directly install by just clicking a link.
For non Microsoft browsers this sadly does not work and it will just download the installer.
It looks similar to the Microsoft Click-Once installer which for some strange reason is totally unknown to most Windows developers:
I agree that it looks like that type of installer (which is quite nice) and I'm not sure why this wasn't the standard for installations either. Probably just not well communicated by MS originally. I remember when Vista came out and the standard for installations became so different (Program Files was locked down) and I had to learn how to do installs properly -- it was a pain to discover the info.
Subject: S e c u r i t y A l e r t . Y o u r a c c o u n t s w a s h a c k e d b y c r i m i n a l g r o u p .
I hacked your OS and got full access to your account MAIL_ADDRESS_HERE.
You can check it - I sent this message from your account.
So, you can change the password, yes.. But my malware intercepts it every time.
How I made it:
In the software of the router, through which you went online, was a vulnerability.
I just hacked this router and placed my malicious code on it.
When you went online, my trojan was installed on the OS of your device.
After that, I made a full dump of your disk (I have all your address book, history of viewing sites, all files, phone numbers and addresses of all your contacts).
A month ago, I wanted to lock your device and ask for a not big amount of btc to unlock.
But I looked at the sites that you regularly visit, and I was shocked by what I saw!!!
I'm talk you about sites for adults.
I want to say - you are a BIG pervert. Your fantasy is shifted far away from the normal course!
And I got an idea....
I made a screenshot of the adult sites where you have fun (do you understand what it is about, huh?).
After that, I made a screenshot of your joys (using the camera of your device) and glued them together.
Turned out amazing! You are so spectacular!
I'm know that you would not like to show these screenshots to your friends, relatives or colleagues.
I think $993 is a very, very small amount for my silence.
Besides, I have been spying on you for so long, having spent a lot of time!
Pay ONLY in Bitcoins!
My BTC wallet: 15yF8WkUg8PRjJehYW4tGdqcyzc4z7dScM
You do not know how to use bitcoins?
Enter a query in any search engine: "how to replenish btc wallet".
It's extremely easy
For this payment I give you two days (48 hours).
As soon as this letter is opened, the timer will work.
After payment, my virus and dirty screenshots with your enjoys will be self-destruct automatically.
If I do not receive from you the specified amount, then your device will be locked, and all your contacts will receive a screenshots with your "enjoys".
I hope you understand your situation.
- Do not try to find and destroy my virus! (All your data, files and screenshots is already uploaded to a remote server)
- Do not try to contact me (you yourself will see that this is impossible, I sent you an email from your account)
- Various security services will not help you; formatting a disk or destroying a device will not help, since your data is already on a remote server.
P.S. You are not my single victim. so, I guarantee you that I will not disturb you again after payment!
This is the word of honor hacker.
I also ask you to regularly update your antiviruses in the future. This way you will no longer fall into a similar situation.
Do not hold evil! I just do my job.
Now the real warning: I work at home... be prepared to receive pictures of me at 7:00 AM!