[notaddicted]

I think this is of endgame for network security, I don't see a way out -- the Sony Rootkit[1] should have been the point where I realized but it is just sinking in for me now since the Snowden NSA leak.

Any network connected computer will be running an OS+Applications which are typically a gigabyte or more. This is produced by companies which are beholden to a nation state, and the companies can be coerced[2] or compelled[3] to use the software against the user. The software is also constantly being probed for vulnerabilities, which can also be exploited by law-enforcement / military [4][5].

So, if you turn on auto-update you have to trust the software maker is not being coerced by someone, or being compelled by a secret court to trojan you. If you don't turn on auto-update you can still get trojaned by any vulnerability. Lose-Lose.

[1] Sony Rootkit: http://en.wikipedia.org/wiki/Sony_BMG_copy_protection_rootki...

[2] Qwest CEO Nacchio's claims: http://www.washingtonpost.com/blogs/the-switch/wp/2013/09/30...

[3] FISA court

[4] German Govt. Trojan from 2011: http://www.spiegel.de/international/germany/the-world-from-b...

[5] FBI's TOR trojan injection: http://www.wired.com/threatlevel/2013/09/freedom-hosting-fbi...

[CamperBob2]

Agreed. What's funny is we're wondering why people who still buy stuff from Sony don't seem to get outraged about the NSA.

Nobody ever cares about this stuff until it is way too late.