Here people BUY pirated stuff, sometimes more expensive than the original.
The reason is convenience and good service.
When you buy pirated software and games from the street dealer, you get:
often, better support than the publisher (specially for popular software, you ask him what is bothering you, he probably memorized the solution and tells you, while publisher support often is completely null, Google-style)
easier to install (custom installers are popular in pirated stuff).
sometimes have better patches, for example games with custom patches to run in older versions of Windows, or that fix popular issues (like Dark Souls at launch had tons of problems on PC, pirated versions fixed it, or Final Fantasy XV, the pirated version runs faster than the legitimate one, some people speculate that is because Denuvo, or because the lack of Denuvo allowed better optimization settings during compile time).
Translated to portuguese.
Has manual! Yes, sometimes the original software is lacking manual, while because during ancient times pirated software had no printed manual, people would add short manuals as a read-me file, some pirates still do that, even for software that has no manual at all.
Regarding games, Valve realized all that and Steam helped a lot, but before Steam it was common here to people buy even stuff that was free (many piracy dealers sold linux distros and other FOSS stuff) because of the convenience.
EDIT: forgot a big one... pirated stuff you can pay for it.
Yes... as weird it sounds, sometimes people wanted to buy a something, but it wasn't available here, often due to a stupid combination of region restrictions + exclusive publishing deals, since we are in South America, sometimes stuff would get into a legal limbo, whoever had "America" rights would focus in publishing in the US, and would block whoever had Europe or JP rights from publishing here.
This sadly is still common, specially with books, Barnes & Noble is a company that greatly aggravated me on that, I bought, legally, a lot of books that were only available in my country on the store "Fictionwise", BN bought them and demand me to be physically in USA to download the books I bought...
Or Electronic Arts, that only allowed officially USA players on Ultima Online, leading to a vibrant pirated server community in Brazil, since you couldn't play legally here.
Ok you might want to watch this short documentary. Your fun 'pirated' games and software with 'better support' might cost you dearly when your daughter or your girlfriend/wife gets filmed by a hacker, using your own webcam.
https://www.youtube.com/watch?v=pFS3p0emftw - "Security awareness: Filmmaker explores RAT malware, buys access to random PCs for just 15 cents a piece - made short film about his experience"
Movies and other media files that don't run any scripts are ok if you're careful and know what you're doing, but installing pirated software is an invitation to get blackmailed and extored by darknet hackers.
The Adwind Remote Access Trojan typically spreads by phishing e-mails.
Which is why you shouldn't believe everything you read.
By the way, this last sentence:
>Movies and other media files that don't run any scripts are ok if you're careful and know what you're doing, but installing pirated software is an invitation to get blackmailed and extored by darknet hackers.
Is entirely wrong. If you're worried about malware, you already know that it can come via video files as well as binary programs.
The rest of what you wrote is just spreading fear for notoriety's sake. Pirated software isn't an "invitation" to anything provided you have good anti-malware defenses and good security practices.
There is no such thing as good anti-malware defenses. Most of the antiviruses are 80% bullshit + 20% obsolete, yet asking for money and full-time administrator privileges and unrestricted Internet connection (doesn't that sound suspicious?). Besides patching vulnerabilities regularly, being very careful of what files&websites do you open is the only real protection… as long as you don't come in contact with a fresh exploit which doesn't need you to let them.
>There is no such thing as good anti-malware defenses.
You prove my point for me. Good defenses doesn't consist of solely antimalware software. Defense in depth is needed, along with education and awareness of new vulnerabilities.
The sum total of things you do to keep your systems uninfected are your anti-malware defenses.
Dangerous for Windows maybe? Most cracked OS X apps make you disable Gatekeeper or System Integry Protection. Game over. So yes, to me that is an invititation.
Any examples of something that requires disabling SIP in cracked version and not original? Never heard of it, sounds implausible but then I'm hardly up to speed.
Like I get swapping dylibs, but not why that'd be best done by poking around in /System rather than the binary.
Both 'appked' and 'macbed' websites have guides for disabling both Gatekeepr and SIP (now they are derivative websites because the domains keep getting banned/confiscated):
macappdownload dot com slash fix-damaged-app-message
macappdownload dot com slash how-to-disable-system-integrity-protection-in-macos
These guides are all over their websites, especially at the download stage, where there is a short list of 'download instructions' with a link to these guides.
A while back I read someone saying that these websites are owned by a Russian hacker network. Touch at your own risk.
My question was "Any examples of something that requires disabling SIP in cracked version and not original?", this (while certainly possibly relevant) is not an answer to that.
To me this is an answer. I think somehow you're not understanding what I am implying.
These guides I linked to are there because when the software is being installed, it asks for these guides to be applied, to make the apps work. The modifications added to the cracked applications by the crackers take them off Apple's trusted developers list. So the only way to get some of them to work is to disable SIP and GateKeeper. This move then makes the user's computer vulnerable to all malware, because most forget to turn them back on. They also often don't know about the importance of these security features in the first place.
I am not concerned for your safety - I trust you will be safe. I am scared for the user I described above.
I hope this make it clearer.
I won't bother replying to more of your messages until you can show that you've actually tried this all out on a VM, because otherwise we just won't be talking about the same thing.
Off course gatekeeper needs to be off once something doesn't have a valid signature.
But SIP protects /System, NVRAM, kext loading and some additional stuff. Not user app signatures. Hence my question.
Even without disabling Gatekeeper and SIP it is possible to insert malicious code into the OS somewhere because of full read and write access to the home directory and what not.
You could run the application in a VM without networking capabilities.
Your keyboard is an input device. That is what I am talking about. I am saying that with a Remote Access Trojan, they can do much more than access your mic or webcam.
"What is a RAT (remote access Trojan)?
A remote access Trojan (RAT) is a malware program that includes a back door for administrative control over the target computer. RATs are usually downloaded invisibly with a user-requested program -- such as a game -- or sent as an email attachment. Once the host system is compromised, the intruder may use it to distribute RATs to other vulnerable computers and establish a botnet.
Because a RAT enables administrative control, it makes it possible for the intruder to do just about anything on the targeted computer, including:
- Deleting, downloading or altering files and file systems.
- Monitoring user behavior through keyloggers or other spyware.
- Accessing confidential information, such as credit card and social security numbers.
As long as I'm online, I'm sure any well-informed techie could, at any point, show me how my computer usage is insecure. At some point, I must stop securing stuff and start working. I'm just a regular user running Debian with firewall enabled on a desktop machine. That's enough for me. I won't use the internet via email like Richard Stallman.
For some reason they blocked it in the Netherlands. But if you're trying to watch it from outside of the Netherlands, it works great. I tried with a VPN.
Just for the record, for the most part, it should be legal to sell CD's of most Linux distributions, assuming you honor the GPL and any other licenses for any software that's physically on the disk.
I'm a bit familiar with the sorts of commerce that the parent mentioned.
Back when broadband was uncommon there were shops where you could just order anything that could be found on the Internet and they would burn a CD-R for you. They would keep the most popular files cached locally, and for the really popular stuff they would have pre-burned CDs in small kits with a xeroxed manual and maybe a colored cover and the like. Support was a big thing too, and community: it was a place where people would hang out a bit and talk to other people, share recommendations, meet people who could fix equipment, etc.
So if you ordered a Linux distro they would prepare it for you just like any software, VCD, disk full of MP3s, etc. I know of people who were introduced to Linux via these shops.
There used to be an earlier version of this sort of shop where you could bring floppy disks and they would copy them for you. As far as I know all of this has just about disappeared. Piracy exists but it is nowhere near as popular as it used to be.
What those shops basically sold was bandwidth: it was a physical version of pirate BBSs and w4r3z websites, from a time when phone and Internet access was harder to have.
Here people BUY pirated stuff, sometimes more expensive than the original.
The reason is convenience and good service.
When you buy pirated software and games from the street dealer, you get:
often, better support than the publisher (specially for popular software, you ask him what is bothering you, he probably memorized the solution and tells you, while publisher support often is completely null, Google-style)
easier to install (custom installers are popular in pirated stuff).
sometimes have better patches, for example games with custom patches to run in older versions of Windows, or that fix popular issues (like Dark Souls at launch had tons of problems on PC, pirated versions fixed it, or Final Fantasy XV, the pirated version runs faster than the legitimate one, some people speculate that is because Denuvo, or because the lack of Denuvo allowed better optimization settings during compile time).
Translated to portuguese.
Has manual! Yes, sometimes the original software is lacking manual, while because during ancient times pirated software had no printed manual, people would add short manuals as a read-me file, some pirates still do that, even for software that has no manual at all.
Regarding games, Valve realized all that and Steam helped a lot, but before Steam it was common here to people buy even stuff that was free (many piracy dealers sold linux distros and other FOSS stuff) because of the convenience.
EDIT: forgot a big one... pirated stuff you can pay for it.
Yes... as weird it sounds, sometimes people wanted to buy a something, but it wasn't available here, often due to a stupid combination of region restrictions + exclusive publishing deals, since we are in South America, sometimes stuff would get into a legal limbo, whoever had "America" rights would focus in publishing in the US, and would block whoever had Europe or JP rights from publishing here.
This sadly is still common, specially with books, Barnes & Noble is a company that greatly aggravated me on that, I bought, legally, a lot of books that were only available in my country on the store "Fictionwise", BN bought them and demand me to be physically in USA to download the books I bought...
Or Electronic Arts, that only allowed officially USA players on Ultima Online, leading to a vibrant pirated server community in Brazil, since you couldn't play legally here.