said by howardfine:said by markofmayhem:There is no evidence that IP's are captured or stored.
Yet the IP can be known and associated with what you install. One of the points of the article. It CAN be done.
quote:
There is no evidence the data is collected/stored insecurely
So Microsoft is being sent the data for what reason? Only to discard it?
quote:
The privacy concern is that the file name and hash is sent to Microsoft in any program you install on Windows 8. That's it.
And that's the whole point. Why are you fighting it?
I'm not fighting the privacy concern, just the cow feces surrounding it with misinformation, naivity, lies, and exaggerations. The IP
can be recorded on every external call, if this is of concern, the internet should not be something you use.
What is the intent? The
response!»
gist.github.com/3448961Sent:
<RepLookup v="4">
<G>7A7E08C8-3FF5-45F2-873D-A84D669DC82F</G>
<O>DC54AF8F-4219-4BDD-9EFA-DE9C6E10A34C</O>
<D>10.0.8110.6</D>
<C>10.00.9200.16384</C>
<OS>6.2.9200.0.0</OS>
<I>9.10.9200.16384</I>
<L>en-US</L> <RU>aHR0cDovL3d3dy5kcml2ZXNuYXBzaG90LmRlL2VuL2lkb3duLmh0bQ==</RU>
<RI>0.0.0.0</RI>
<R>
<Rq>
<URL>aHR0cDovL3d3dy5kcml2ZXNuYXBzaG90LmRlL2Rvd25sb2FkL3NuYXBzaG90LmV4ZQ==</URL>
<O>PRE</O>
<T>DOWNLOAD</T>
<HIP>0.0.0.0</HIP>
</Rq>
</R>
<WA/>
</RepLookup>
Response:
RepLookupResponse>
<RepLookupResult>
<Rs>
<M>www.drivesnapshot.de/download/snapshot.exe</M>
<C>UNKN:100:1:1</C>
<R>1:1</R>
<L>10080</L>
<S>0</S>
</Rs>
</RepLookupResult>
<Y>100</Y>
<T>DC54AF8F-4219-4BDD-9EFA-DE9C6E10A34C</T>
<E>0</E>
</RepLookupResponse>
Knowledge helps determine level of concern. The response is a reputation level to help fight installation of malware/virus. Many would not mind sending the hash and name of the installation file for this response, others would. Without knowing the what, whom, and how of SmartScreen's collection, it is absolutely useless information to make an informed decision to use it or not, as the option exists.