How safe are you from attacks on the net
December-2nd-2002, 06:35 PM
#1
Guest
Posts: n/a
How safe are you from attacks on the net
Have any of you wondered how safe you were on the net , especially if you have cable modem or dsl ,, I found a pretty interesting feature on this site below (symantic site ) .... Without my firewall , the system was able to give me my windows xp pro log on name and some other info , but after enabling the firewall , i was pretty well protected ... Post your comments on what you guys think of this, I don't know how many of you use firewalls and antiviruses ,, but i live by them ,, especially with 80 gigs of info and 2 operating systems on my computer ......
let meknow how you guys fare out
here is the link click here
click on scan for security risks
let meknow how you guys fare out
here is the link click here
click on scan for security risks
December-2nd-2002, 07:28 PM
#2
Protege Owner
Join Date: Oct 2001
Posts: 731
I run a firewall box (either customized Linux kernel or off the shelf unit depending on the day and the moon) all the time. Both appear rather secure from all tests I have run against them. I run a 4 to 6 computer (depending on guests and laptop) network at home, so it needs to be protected and the NAT of the firewalls is also a must.
The folks at http://scan.sygatetech.com/ have some very through scanning tools as well.
The folks at http://scan.sygatetech.com/ have some very through scanning tools as well.
December-2nd-2002, 08:13 PM
#3
Registered User
Join Date: Dec 2001
Location: PA
Posts: 2,339
I have a cheapo linksys router that has a firewall in it. It seems to work pretty well.... Unfortunately my **** *** of a stupid donkey rape cable modem is being a *****, and I have to reset it manually every hour 
December-2nd-2002, 08:19 PM
#4
Certified Sick Individual
Join Date: Mar 2002
Location: Houston, TX.
Posts: 1,141
I'm lazy. I hide behind NAT and a virus scanner. I expose one of the computers for gaming when I need to, but it is fully patched and running zone alarm.
You can try www.grc.com too. But he is a frickin psycho. More of a port scan than a security sweep.
You can try www.grc.com too. But he is a frickin psycho. More of a port scan than a security sweep.
December-2nd-2002, 08:27 PM
#5
Hoosier daddy?
Join Date: Sep 2002
Location: Atlanta, GA
Posts: 563
You can try www.grc.com too. But he is a frickin psycho. More of a port scan than a security sweep.
December-3rd-2002, 05:54 PM
#6
Protege Enthusiast
Join Date: Mar 2002
Location: VanCity, B.C.
Posts: 211
i *was* running just a software firewall, but after i got a router it never got any pings so i just uninstalled it... goin with just the router and NAV2000 now... haven't had any problems yet...
December-3rd-2002, 08:04 PM
#8
Certified Sick Individual
Join Date: Mar 2002
Location: Houston, TX.
Posts: 1,141
Originally posted by kcbhiw
The guy over at GRC is one smart dude...he really knows his stuff. In addition to his port scanner, he has a very small program to probe your firewall. I'd put more faith in the info returned from his site than that of Symmantec's.
The guy over at GRC is one smart dude...he really knows his stuff. In addition to his port scanner, he has a very small program to probe your firewall. I'd put more faith in the info returned from his site than that of Symmantec's.
DSL is as dangerous as cable is for the really malicious people and dialup is not exactly a free picnic. They are both regularly targeted by people setting up a DDOS attack.
December-3rd-2002, 08:35 PM
#9
Registered User
Join Date: Apr 2002
Location: Christchurch, New Zealand
Posts: 172
Originally posted by kc5zom
I would say approximately 90% of the informed security community is going to disagree with you on that one. The guy who made a big deal when he was hit by a DDOS attack. All he really does is try to scare people, especially about software flaws that are already patched or were difficult to exploit in the first place.
I would say approximately 90% of the informed security community is going to disagree with you on that one. The guy who made a big deal when he was hit by a DDOS attack. All he really does is try to scare people, especially about software flaws that are already patched or were difficult to exploit in the first place.
just one example.....he was one of the first people to draw attention (way back when) to the fact that software firewalls (of the day) didn't actually block spoofed outbound traffic. we all thought that because zone alarm (the only one that blocked outbound traffic at the time) asked for permission for each app that we were ok - bad assumption.
i respect his opinion but then i don't take it for gospel either. why not just listen, research, then decide...
December-3rd-2002, 11:02 PM
#10
Certified Sick Individual
Join Date: Mar 2002
Location: Houston, TX.
Posts: 1,141
One thing to point out, I did look at his website and have an amazing revelation to make:
Personal software firewalls are not the be all end all of Internet security.
Ever read a good security journal. They recommend a well rounded approach to security, not just sticking Zone Alarm or another personal firewall product on there. By the simple addition of a good virus scanning program, with up to date signature files, almost every Trojan will be caught. The only ones that will slip past are those that are so new that there is not currently an updated signature available for them. By the user taking the simple precaution of not clicking on every damn file that comes in via e-mail they also avoid trojan style viruses. The fact of the matter is that almost every exploit that moron comes up with is easily foiled by good common sense security practices. If you are relying on a personal software firewall as your only defense while you are on the Internet you deserve to have your computer owned, your passwords stolen, and your first child beaten. Because these are the morons that become willing DDOS bots and attack important sites like Playboy.com.
As another reference you might actually look at the different places he tends to show up in. They are magazines like "PC World" and "Hey, I turned on my computer". Read an IT E-Mag like "The Register" and see what they have to say about his Windows XP Raw Sockets is going to destroy the world crap. Microsoft actually exposes the full TCP/IP standard to the desktop market instead of their somewhat proprietary former approach? Now a Windows user can spoof their IP address. OMG!
The man, is an alarmist. While security professionals everywhere are making efforts to insure their networks are secure this little man goes off spouting extremist nonsense to get his name in the papers. My favorite is his line about how Windows NT is theoretically secure. First mantra of computer security - No system is EVER secure. Unless its turned off and melted into whatever the hell they melt computers into.
Personal software firewalls are not the be all end all of Internet security.
Ever read a good security journal. They recommend a well rounded approach to security, not just sticking Zone Alarm or another personal firewall product on there. By the simple addition of a good virus scanning program, with up to date signature files, almost every Trojan will be caught. The only ones that will slip past are those that are so new that there is not currently an updated signature available for them. By the user taking the simple precaution of not clicking on every damn file that comes in via e-mail they also avoid trojan style viruses. The fact of the matter is that almost every exploit that moron comes up with is easily foiled by good common sense security practices. If you are relying on a personal software firewall as your only defense while you are on the Internet you deserve to have your computer owned, your passwords stolen, and your first child beaten. Because these are the morons that become willing DDOS bots and attack important sites like Playboy.com.
As another reference you might actually look at the different places he tends to show up in. They are magazines like "PC World" and "Hey, I turned on my computer". Read an IT E-Mag like "The Register" and see what they have to say about his Windows XP Raw Sockets is going to destroy the world crap. Microsoft actually exposes the full TCP/IP standard to the desktop market instead of their somewhat proprietary former approach? Now a Windows user can spoof their IP address. OMG!
The man, is an alarmist. While security professionals everywhere are making efforts to insure their networks are secure this little man goes off spouting extremist nonsense to get his name in the papers. My favorite is his line about how Windows NT is theoretically secure. First mantra of computer security - No system is EVER secure. Unless its turned off and melted into whatever the hell they melt computers into.
December-4th-2002, 01:44 PM
#13
Registered User
Join Date: Apr 2002
Location: Christchurch, New Zealand
Posts: 172
/me looks around the room, wondering exactly what principles are.
anyone?
i swear i used to keep some around here somewhere, if only i could remember where!
i think you'd like it here kc5zom, if only for access to all the japanese car parts we have.
anyone?
i swear i used to keep some around here somewhere, if only i could remember where!
i think you'd like it here kc5zom, if only for access to all the japanese car parts we have.
Thread
Thread Starter
Forum
Replies
Last Post
Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)