Go Back   Steve's Digicams Forums > Digicam Help > General Discussion

Reply
 
Thread Tools Search this Thread
Old Aug 15, 2003, 6:37 PM   #11
Administrator
 
Join Date: Jun 2003
Location: Savannah, GA (USA)
Posts: 22,378
Default

Quote:
Originally Posted by Doug39
Question for those of you infected with Blaster: do you have a router, or some sort of hardware firewall? What kind of protection, if any, was in place that the virus managed to bypass so as to infect your computer?
Like Eric S., I use a free software firewall (ZoneAlarm).

It's downloadable from here:

http://www.zonelabs.com/store/conten...eeDownload.jsp

I also use Spybot Search and Destory to remove/guard against Spyware and Adware. It's downloadable free from here:

http://www.safer-networking.org/

Like Lauren, for virus protection, I use AVG Antivirus (free version), downloadable from here:

http://www.grisoft.com/us/us_dwnl_free.php

I've got my AVG Antivirus setup to download updates every night at 2:00AM, with a full system scan every morning at 4:00AM.

It also links with Outlook to automatically scan inbound and outbound e-mail.

P.S. -- Grisoft also has virus specific removal tools at this link:

http://www.grisoft.com/us/us_ts_removers.php
JimC is offline   Reply With Quote
Old Aug 15, 2003, 8:26 PM   #12
Senior Member
 
koruvs's Avatar
 
Join Date: Nov 2002
Posts: 439
Default

Every OS is unsecure and full of holes. MS just happens to be the #1 target of virus writers and crackers because MS OSes are mainstream and widely used. If 'Windows' did not exist then crackers would consentrate and go after whoever is on top to make that company look bad.

I work in a Hosting company and our systems are 90% Unix-based. We still have to patch and upgrade security holes when they are discovered by us or security alert sites.

Yes, MS has sloppy code but, so does Linux, MacOS, etc...nothing is perfect.
Can you code any better? If so, get to it and make us a bulletproof OS :P
koruvs is offline   Reply With Quote
Old Aug 15, 2003, 9:44 PM   #13
Senior Member
 
Join Date: Dec 2002
Posts: 5,803
Default

Quote:
Originally Posted by koruvs
Every OS is unsecure and full of holes. MS just happens to be the #1 target of virus writers and crackers because MS OSes are mainstream and widely used. If 'Windows' did not exist then crackers would consentrate and go after whoever is on top to make that company look bad.
Completely correct. They hack what they can find the most information about and what will have the biggest effect.

Quote:
Originally Posted by koruvs
I work in a Hosting company and our systems are 90% Unix-based. We still have to patch and upgrade security holes when they are discovered by us or security alert sites.
I was a system admin for 5 year, I've programmed on 8+ unix flavors (and currently program on 5 regularly.) I know all about security holds in Unix. If Linux ever catches on, I'm sure holes in it will be exploited. And they will have to create as system as good as "Window Update" to make them easy to patch. (In my opinion the patching/updating system for windows is really well done. It isn't perfect, but what is? It does the job quite well. Much better than any flavor of Unix I've had to patch.)

Quote:
Originally Posted by koruvs
Yes, MS has sloppy code but, so does Linux, MacOS, etc...nothing is perfect.
So? I want them all to be better. No excuses here. We should not stand for the level of bugs that software vendors are allowed to release (OS and otherwise.) I write software for a living and have been paid to do it for over 14 years. I know the decisions that go into software design and release. Companies rarely decide with the best intentions of the customer, they decide based on their pocketbooks. Can they throw away all that marketing money and slip the ship date? Do we fix this critical feature or add another feature that will guaranty this other sale?

If car manufacturers or architects did this we'd sue for building a faulty product. But the software industry is legally protected from it. IBM has proven that it is possible to build OSs with much fewer bugs (Not AIX, their mainframe OSs.) It takes time and money, but it can be done. The OS software industry has matured enough that I think it's time to end the protections they needed when they were starting. They should be held to a higher standard.

Quote:
Originally Posted by koruvs
Can you code any better? If so, get to it and make us a bulletproof OS
Yes, I do code better. I donít make something as complex as an operating system, I don't know enough to do it (I only took OSs for a year at the graduate level.) I design and build a parallel-processing engine for processing multiple-terabytes of data very quickly. I find that a lot more interesting than writing an OS.

MS has a responsibility to their customers to write a more secure operating system. Their mistakes are costing the entire world time, money, and resources. I canít wait until some real competition enters the desktop market and makes them shape up. I donít blame them for doing what they do, they are very profitable doing it. I donít like it, but it works. But it will be a very good day when someone really competes with them.

Ok, Iíll stop ranting now. I know way to much about this, and care too much as well. I have worked in partnership with MS, and I have friends who worked there for 7 years (oversaw parts of Power Point.) I chose not to work there... the money wasn't worth it.

Eric
eric s is offline   Reply With Quote
Old Aug 15, 2003, 11:26 PM   #14
Guest
 
Posts: n/a
Default

Quote:
Originally Posted by JimC
Quote:
Originally Posted by Doug39
Question for those of you infected with Blaster: do you have a router, or some sort of hardware firewall? What kind of protection, if any, was in place that the virus managed to bypass so as to infect your computer?
Like Eric S., I use a free software firewall (ZoneAlarm).

It's downloadable from here:

http://www.zonelabs.com/store/conten...eeDownload.jsp

I also use Spybot Search and Destory to remove/guard against Spyware and Adware. It's downloadable free from here:

http://www.safer-networking.org/

Like Lauren, for virus protection, I use AVG Antivirus (free version),

downloadable from here:

http://www.grisoft.com/us/us_dwnl_free.php

I've got my AVG Antivirus setup to download updates every night at 2:00AM, with a full system scan every morning at 4:00AM.

It also links with Outlook to automatically scan inbound and outbound e-mail.

P.S. -- Grisoft also has virus specific removal tools at this link:

http://www.grisoft.com/us/us_ts_removers.php
I got infected and I only had nortons.... so will the safer networking software prevent adds from popping up on my computer, and I'm not talking about pop up adds, I keep getting these messages.........
  Reply With Quote
Old Aug 15, 2003, 11:31 PM   #15
Guest
 
Posts: n/a
Default

have you guys tried the pest patrol software from zone labs? Is something like that necessary?

Wha would you say is essential to protect your computer?

I really need to take a class or something, I don't know anything about computers.
  Reply With Quote
Old Aug 16, 2003, 12:50 AM   #16
Senior Member
 
koruvs's Avatar
 
Join Date: Nov 2002
Posts: 439
Default

For the firewall side of things;

If you are on a DSL/Cable connection I'd highly recommend a 'hardware' firewall over a Zone Alarm* type utility. I have used a Linksys router for 3 years and have never been compromised. Now, I'm not saying the Linksys is crack proof but, since the Linksys completely hides my IP from port scanners (like nmap) nobody knows that IP is alive. Therefore, a cracker uses a port scanner, scans a block of IPs, sees which ones are responsive, gets the services/ports that are running/open from those live IPs and goes to work.

*Using nmap with certain commands it can see right through Zone Alarm and it can log all the services you are running and see all ports that are open.

If you are on dial-up then something like Zone Alarm is ok as you are not always connected and you IP will more than like be DHCP (changing all the time).


For AntiVirus;

I recommend http://www.grisoft.com as it is free (as are the updates!) and it is not the memory hog like all Norton products are.

-=-
koruvs is offline   Reply With Quote
Old Aug 16, 2003, 7:46 AM   #17
Senior Member
 
cope's Avatar
 
Join Date: Jun 2003
Posts: 718
Default

Quote:
Originally Posted by selvin
I also wonder about the rationalization that if Microsoft hadn't made Windows unsecured then they wouldn't have created this virus. Thus it's Microsoft's fault.

It's sounds to me like, you have a gun, I steal it from you and shoot you so it's your fault why you are harmed because it would never have happened if you didn't have a gun.

I have a difficult time buying that logic especially when it hurts so many innocent people.
I agree. Microsoft has hired many people who have left their signature in the code for various Windows versions so they can come back later and with the appropriate keystroke see the message. This is harmless enough except that it leaves a hole in the OS. Pretty hard to clean up; like the fox guearding the henhouse.
cope is offline   Reply With Quote
Old Aug 16, 2003, 2:22 PM   #18
Senior Member
 
Join Date: Dec 2002
Posts: 5,803
Default

koruvs

I'd like to hear more about using nmap to get around Zone Alarm. This is the first time I've heard if it. I've tested by system with a port scanner from the outside and my system has no ports open. With no ports open, how can nmap get in to find out that info?

Are you refering to what was mentioned here, 2 years ago:
http://www.multiproxy.org/board/1374.shtml

(search for nmap, its the first hit.)

But I do agree. A hardware firewall is a very good idea. If the person doesn't have the money, I say get zonealarm. If they do, I set get both. Why I say both is because if the person is at all computer savy and you tell them what zone alarm does, they will find programs connecting out which make no sense... like viruses which their package didn't catch (happened to 3 people I know.)

Honey

I recommend going to this site, and reading what it has to say. Its a bit alarmist at times, but they are very knowledgeable.

https://grc.com/default.htm

Software which I consider essential:

Anti-Virus:
I got Norton Anti-Virus from work for free (license transfered from an older computer.) I don't know about these free ones people are listing, so I can't comment.

anti-spy ware software:
I use adware. There are others. It checks your computer for programs which track what you do and where you go on the web (among other things.) I think these should be made illegal (they could easily do things like steal passwords to bank accounts and more) but it would also impossible/ineffective to make them illegal (people often don't even know they are installing them and the creators could be out of the country.)

Firewall:
I like Zone Alarm in combination with a hardware firewall. The hardware firewall is a must. Don't leave home without it. Zone alarm is just added protection. For me it's necessary because I use software to work from home which bypasses hardware firewalls (VPN tunneling.) Not many people do this. If you don't understand what VPN is, you probably don't [b]need[\b] Zone Alarm. If you want to use it is separate from "need".

Eric
eric s is offline   Reply With Quote
Old Aug 17, 2003, 12:44 PM   #19
Administrator
 
Join Date: Jun 2003
Location: Savannah, GA (USA)
Posts: 22,378
Default

Quote:
Originally Posted by eric s
anti-spy ware software:
I use adware. There are others. It checks your computer for programs which track what you do and where you go on the web (among other things.) I think these should be made illegal (they could easily do things like steal passwords to bank accounts and more) but it would also impossible/ineffective to make them illegal (people often don't even know they are installing them and the creators could be out of the country.)
Eric
Eric:

I used to use the Lavasoft product, too. However, I would strongly suggest downloading Spybot Search and Destroy and running it. You'll be surprised at how much the other products are missing, and Spybot S&D is free.

http://www.safer-networking.org/

As far as Zone Alarm, I've been quite pleased with it's functionality. I've tried several other software firewalls, and it seems to offer superior protection.

In fact, in an article a couple of years back, Zone Alarm was the only software based firewall tested by Gibson Research that passed it's leak test for both inbound and outbound traffic (although there are more now):

http://www.internetnews.com/ent-news/print.php/7_529661

I love the way it catches attempts by software to "call home" too -- something I really can't stand (software that attempts to send information back to the vendor without your knowledge).

For those using a Personal Firewall, I'd suggest downloading Gibson's free Leak Test program and running it. It's downloadable from this page:

http://grc.com/lt/leaktest.htm

Of course, no firewall is totally safe. The more protection the better -- including a hardware firewall too.

Here's a quote from Gibson:

"In our present context of software-based firewalls, this means that no software-based firewall, running within current versions of Microsoft Windows, can be ABSOLUTELY secure. A Trojan horse program whose author has deliberately reverse-engineered the operation of a specific software firewall can, without question, interfere with and disable that product's proper operation. Therefore, if I wanted LeakTest to deliberately penetrate any specific firewall by reverse-engineering its operation, it could definitely do so."

http://grc.com/lt/faq.htm

BTW, here's a "Personal Firewall Scoreboard":

http://grc.com/lt/scoreboard.htm
JimC is offline   Reply With Quote
Old Aug 17, 2003, 2:29 PM   #20
Senior Member
 
Join Date: Dec 2002
Posts: 5,803
Default

Thanks for the suggestion. I'll give spybot a try. I've heard of it, but never tried it.

Eric
eric s is offline   Reply With Quote
 
Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off



All times are GMT -5. The time now is 9:20 AM.