This is an automated email from the ASF dual-hosted git repository.
mseidel pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/openoffice-project.git
The following commit(s) were added to refs/heads/main by this push:
new 96ae349 Use https for external graphics to avoid mixed content
96ae349 is described below
commit 96ae3490b7c851434e16e371ae4753d41d569c53
Author: mseidel <msei...@apache.org>
AuthorDate: Sun Jun 11 01:17:07 2023 +0200
Use https for external graphics to avoid mixed content
---
.../blog/how_to_safely_download_apache.markdown | 68 +++++++++-------------
1 file changed, 27 insertions(+), 41 deletions(-)
diff --git a/content/blog/how_to_safely_download_apache.markdown
b/content/blog/how_to_safely_download_apache.markdown
index d5eb3f1..525e01c 100644
--- a/content/blog/how_to_safely_download_apache.markdown
+++ b/content/blog/how_to_safely_download_apache.markdown
@@ -3,47 +3,33 @@ layout: post
date: '2012-06-28T17:49:57+00:00'
permalink: how_to_safely_download_apache
-<div align="center">
- <p><a title="Syd Connelly and winning safety slogan by The Library of
Virginia, on Flickr"
href="http://www.flickr.com/photos/library_of_virginia/6069638327/";><img
width="500" height="371" alt="Syd Connelly and winning safety slogan"
src="http://farm7.staticflickr.com/6205/6069638327_3f11df530e.jpg"; /></a></p>
- <p> </p>
- <div align="left">
- <p>It happened again today. We received an email from a very
frustrated user, complaining that OpenOffice had taken over his browser,
installed new toolbars, replaced the browser's home page, was causing pop-ups
to surface on every page, etc. To make things worse, none of these
programs could be uninstalled via normal means.</p>
- <p>When we at the <a
href="http://incubator.apache.org/openofficeorg";>Apache OpenOffice project</a>
receive reports like this -- and we receive them a couple of times every week
-- the first thing I ask is, "Where did you download OpenOffice
from?" In today's case, when the user checked his browser's history
he found what I suspected, that it was not downloaded from www.openoffice.org,
but was a modified version, from another website, that was also installing
other [...]
- <p>This is one of several traps for the unwary on the web today.
It does not happen just to OpenOffice. Other popular open source
applications, especially end user ones, run into this problem, e.g., Audacity,
7Zip, etc.<br /></p>
- <p>Things to watch out for include:
-
-
-
-
-
-
- </p>
- <ol>
+<div align="center">
+ <p><a title="Syd Connelly and winning safety slogan by The Library of
Virginia, on Flickr"
href="https://www.flickr.com/photos/library_of_virginia/6069638327/";><img
width="500" height="371" alt="Syd Connelly and winning safety slogan"
src="https://farm7.staticflickr.com/6205/6069638327_3f11df530e.jpg"; /></a></p>
+ <p> </p>
+ <div align="left">
+ <p>It happened again today. We received an email from a very
frustrated user, complaining that OpenOffice had taken over his browser,
installed new toolbars, replaced the browser's home page, was causing pop-ups
to surface on every page, etc. To make things worse, none of these
programs could be uninstalled via normal means.</p>
+ <p>When we at the <a
href="http://incubator.apache.org/openofficeorg";>Apache OpenOffice project</a>
receive reports like this -- and we receive them a couple of times every week
-- the first thing I ask is, "Where did you download OpenOffice
from?" In today's case, when the user checked his browser's history
he found what I suspected, that it was not downloaded from www.openoffice.org,
but was a modified version, from another website, that was also installing
other [...]
+ <p>This is one of several traps for the unwary on the web today.
It does not happen just to OpenOffice. Other popular open source
applications, especially end user ones, run into this problem, e.g., Audacity,
7Zip, etc.<br /></p>
+ <p>Things to watch out for include:
+ </p>
+ <ol>
<li> Websites offering downloads of OpenOffice but requiring the use
of a special "installer" or "downloader" application that
installs other, unwanted applications before installing OpenOffice.</li>
- <li>Installers that ask you to <a
href="http://www.microsoft.com/security/portal/Threat/Encyclopedia/Entry.aspx?Name=Program%3aWin32%2fPameseg.AO";>send
an SMS</a> in order to receive a registration key to use OpenOffice.<br
/></li>
- <li>Websites that try to sell you OpenOffice. This
sometimes happens on online auction sites. Although it is entirely
legitimate to sell CD's of OpenOffice as a convenience (bandwidth is limited in
many parts of the world), users should know that they can always download
OpenOffice for free at www.openoffice.org.<br /></li>
- <li>Websites that claim to sell you OpenOffice bundled with support,
but then just direct you to the free community support forums, a service that
we make available to all users at no charge.<br /></li>
- <li>Websites that have domain names, or social media account names,
that are variations on "OpenOffice", but which point to websites that
try to sell you OpenOffice or offer you a download of a version that is
modified to install adware.</li>
- <li>Websites that purchase sponsored ads in search engines so their
advertisements feature prominently when a user searches for
"OpenOffice" or "Open Office" or similar keywords, and
using these ads to draw traffic to their website, where the modified version of
OpenOffice is offered.<br /></li>
- </ol>
- <p>The common pattern in these cases is that someone is using the good
name and reputation of our project, and often our trademarked logos, to confuse
you, the user, into thinking that the website is offering you a genuine copy of
OpenOffice. These downloads, aside from the unwanted
"extras" they may install, are often based on older versions of
OpenOffice, and lack important security updates, putting you even more at
risk.<br /></p>
+ <li>Installers that ask you to <a
href="http://www.microsoft.com/security/portal/Threat/Encyclopedia/Entry.aspx?Name=Program%3aWin32%2fPameseg.AO";>send
an SMS</a> in order to receive a registration key to use OpenOffice.<br /></li>
+ <li>Websites that try to sell you OpenOffice. This
sometimes happens on online auction sites. Although it is entirely
legitimate to sell CD's of OpenOffice as a convenience (bandwidth is limited in
many parts of the world), users should know that they can always download
OpenOffice for free at www.openoffice.org.<br /></li>
+ <li>Websites that claim to sell you OpenOffice bundled with support,
but then just direct you to the free community support forums, a service that
we make available to all users at no charge.<br /></li>
+ <li>Websites that have domain names, or social media account names,
that are variations on "OpenOffice", but which point to websites that
try to sell you OpenOffice or offer you a download of a version that is
modified to install adware.</li>
+ <li>Websites that purchase sponsored ads in search engines so their
advertisements feature prominently when a user searches for
"OpenOffice" or "Open Office" or similar keywords, and
using these ads to draw traffic to their website, where the modified version of
OpenOffice is offered.<br /></li>
+ </ol>
+ <p>The common pattern in these cases is that someone is using the good
name and reputation of our project, and often our trademarked logos, to confuse
you, the user, into thinking that the website is offering you a genuine copy of
OpenOffice. These downloads, aside from the unwanted
"extras" they may install, are often based on older versions of
OpenOffice, and lack important security updates, putting you even more at
risk.<br /></p>
<p>Be safe. Remember this simple rule: <a
href="http://www.openoffice.org";>www.openoffice.org</a>
- is the official website for OpenOffice. Downloads there will
always be free of charge.
-Downloads there are reviewed and approved by the Apache OpenOffice
community. There may be other reputable websites that offer OpenOffice
downloads as well, like SourceForge or CNet or others. They stand on
their own reputation. <br /></p>So what can you do if you are tricked
into installing a unsafe version of OpenOffice?
-
-
-
-
-
-
-
-
- <ol>
- <li>If you are comfortable diagnosing and repairing your system, run
anti-virus and malware scans, using a reputable program from a reputable
source. This is an occasion where getting help may be warranted.</li>
- <li>There are several services that collect reports on incidents such
as this. <a href="http://www.stopbadware.org/home/index";>StopBadware</a>
and <a href="http://www.sitejabber.com/";>SiteJabber</a> are two prominent
ones.<br /></li>
- <li>Let us know, at the Apache OpenOffice project, what happened to
you. If you can provide URL's, and a statement about what the software
did to your system, this can help us better understand where these things are
occurring and to take appropriate action. Reports can be entered in our
<a
href="https://issues.apache.org/ooo/enter_bug.cgi?product=trademark&component=improper-use";>public
issue tracker</a>.<br /></li>
- </ol>
- <p> </p>
- <p><br /></p>
- </div>
+ is the official website for OpenOffice. Downloads there will
always be free of charge.
+ Downloads there are reviewed and approved by the Apache OpenOffice
community. There may be other reputable websites that offer OpenOffice
downloads as well, like SourceForge or CNet or others. They stand on
their own reputation. <br /></p>So what can you do if you are tricked
into installing a unsafe version of OpenOffice?
+ <ol>
+ <li>If you are comfortable diagnosing and repairing your system, run
anti-virus and malware scans, using a reputable program from a reputable
source. This is an occasion where getting help may be warranted.</li>
+ <li>There are several services that collect reports on incidents such
as this. <a href="http://www.stopbadware.org/home/index";>StopBadware</a>
and <a href="http://www.sitejabber.com/";>SiteJabber</a> are two prominent
ones.<br /></li>
+ <li>Let us know, at the Apache OpenOffice project, what happened to
you. If you can provide URL's, and a statement about what the software
did to your system, this can help us better understand where these things are
occurring and to take appropriate action. Reports can be entered in our
<a
href="https://issues.apache.org/ooo/enter_bug.cgi?product=trademark&component=improper-use";>public
issue tracker</a>.<br /></li>
+ </ol>
+ <p> </p>
+ <p><br /></p>
+ </div>
</div>
![http://farm7.staticflickr.com/6205/6069638327_3f11df530e.jpg"](http://farm7.staticflickr.com/6205/6069638327_3f11df530e.jpg"){kind=link}
![https://farm7.staticflickr.com/6205/6069638327_3f11df530e.jpg"](https://farm7.staticflickr.com/6205/6069638327_3f11df530e.jpg"){kind=link}