topbanner_forum
  *

avatar image

Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
  • January 21, 2020, 03:09 AM
  • Proudly celebrating 14 years online.
  • Donate now to become a lifetime supporting member of the site and get a non-expiring license key for all of our programs.
  • donate

Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.


Messages - Tuxman [ switch to compact view ]

Pages: prev1 ... 76 77 78 79 80 [81] 82 83 84 85 86 ... 90next
2001
Found Deals and Discounts / Re: 1x NOD32 key FREE
« on: January 07, 2010, 03:41 PM »
The German c't magazine has one right now, too, so if you are around Germany, feel free to buy one for 3.70 €...  :)
edit: Fixed price, sorry.

 8)

2002
Finished Programs / Re: ZIP to PHP converter
« on: January 07, 2010, 03:40 PM »
The visitors need a link to the file anyway. Where should that be?

2003
Finished Programs / Re: ZIP to PHP converter
« on: January 07, 2010, 12:57 PM »
Unpacking a ZIP file on the server does not automatically cause any danger. How?

2004
Finished Programs / Re: ZIP to PHP converter
« on: January 07, 2010, 05:33 AM »
Injecting files is not actually dangerous yet.

2005
Finished Programs / Re: ZIP to PHP converter
« on: January 05, 2010, 07:35 PM »
Now I needed this a few weeks ago.  ;D
Maybe it could be useful on next Wordpress update... thank you!

 :Thmbsup:

2006
General Software Discussion / Re: Stop Windows from calling home
« on: January 05, 2010, 11:26 AM »
Did I say that?
I thought your second sentence referred to your first one? (I quoted both.)

2007
General Software Discussion / Re: Stop Windows from calling home
« on: January 05, 2010, 11:08 AM »
Also, saying that running a software firewall is nowhere near as good as a hardware firewall is laughable due to the fact that hardware firewalls are SOFTWARE based running embedded on a set of dedicated hardware. In most cases, systems running personal firewalls are faster than the hardware included in the average home user firewall/router.
So being fast is more important to you than being secure? You can't count that.
BTW, the point here is "dedicated hardware", separated from a probably contaminated system where you should not trust any software.

2008
Mini-Reviews by Members / Re: XYplorer File Manager
« on: January 05, 2010, 11:00 AM »
Total Commander is like foobar2000: You can spend hours customizing it, still it looks like something ugly that has been customized.

2009
General Software Discussion / Re: Stop Windows from calling home
« on: January 04, 2010, 10:43 PM »
Nice move ignoring the iptables link, which sounds like it could potentially be a lot worse than the cry-wolf XP bug.
Not ignoring it, but keeping the discussion on-topic.

too bad default user wasn't made non-admin alread in Win2k
AFAIK he still is not?

it shows that MS certainly aren't ignoring the problem any longer - and you get a lot of stuff with NT now that you don't get with linux unless manually choosing a kernel with SELinux patches.
Which is, at least, a giant step into the right direction after rolling backwards for years. Let's hope they'll stick with it.

Well, duh, isn't this what I've been saying all along?
Not quite, as we were still on "Personal Firewalls".  :P

Except for the "doesn't need paranoia" part... a packet filter isn't paranoia, it's an additional level of security.
... or maybe also insecurity. See, most people I know mix up "consider your system's security" with "install a security suite and everything is fine", and then they'll wonder why their system is fucked up.
Maybe I just know the wrong people.

 ;D

Hopefully it'll never be needed on neither hosts nor servers, but if you have a breach it can save your ass
So far I (personally) never had a problem that could have easier been fixed by installing a packet filter. Lucky me.

If you don't need something complex, why waste time developing it?
cmd.exe is complex but not mighty. "Scriptable" but not "flexible". For my own workstation(s) it is more than enough, but fiddling with config files without grep or something sounds hard.
(There is grep [with ls. love that.] for Windows, but I actually doubt that it is installed on common Windows servers.)

Apparently enough users wanted a more powerful shell, and MS responded with PowerShell. Haven't used it myself so I can't comment on it's quality.
To me, the PowerShell more looks like some .net command console, not a valid MinGW/Cygwin replacement. I really wish MS would consider making Windows POSIX-compatible by default for everyone, not only the high-class editions... would make life a lot easier.

...see a slight difference between those two statements?
Yep, I missed the "IMO" in my original posting. The statement is, basically, the same, but the second one seems to be more clearly or something. Sorry for fuzzy phrasing.  :D

2010
General Software Discussion / Re: Stop Windows from calling home
« on: January 04, 2010, 09:53 PM »
You've come up with one thing so far, which is more than three years old, limited to XP, and requires the ICS service to be on (which it isn't by default, as far as a lazy google says).
http://en.wiktionary.org/wiki/potential

And it's not like *u*x daemons haven't had their fair share of exploits during the years. Apache, BIND, wu-ftpd, whatnot. Also, both OS X and Linux kernels have had very interesting local privilege escalation during the recent months, some of which are present in several years worth of kernels... could that with a remote exploit in a single third-party service (or even something as a lowly PHP bug) and boom, you've got root. Non-Windows doesn't automagically equate secure - no matter what you run, you need competent server admins who keep their eyes open.
Some are "better" however.
Of course you can configure *ix to be insecure, of course you can even have a secure Windows XP server or something. The software running on the server is the bottleneck - and now we're on topic again. The one who installs and maintains the software is responsible for it to work properly. If he fails, not even a firewall of any kind can help him. If he succeeds, he doesn't need paranoia. There might be something in between. Does it really matter?

So what, really? Windows isn't unix, things work differently.
Now this is not a reason for having to use a rather mediocre shell, is it?

By this, you're saying that packet filters which require administrative privileges to configure are useless
... to me. Maybe there are some rare circumstances that might be easier to handle with something like a "packet filter". Using such does not necessarily make your system more secure, though.

2011
General Software Discussion / Re: Stop Windows from calling home
« on: January 04, 2010, 08:55 PM »
You're the one who flat-out claimed that packet filters aren't firewalls
Packet filters and "real" (hardware) firewalls work on the network layer, "software firewalls" mainly on the application layer. (With a driver-thingy on another layer, probably, but then we'll have a packet filter again.)

and that Windows' built-in firewall is useless
... and potentially dangerous.

2) why would't I run an important server on a Windows box?
Because Windows is not known for stability and security, both of them are the most important attributes of servers IMO.
(Oh, and Windows' cmd.exe without [at least] some *ix tools is, at best, a sick joke when it is about configuration and server maintenance. This refers explicitly to this special case. In other threads I'll stick with my opinion that cmd.exe is everything I need. Maybe because I don't have to control a server system with it. But we're drifting a bit OT here, aren't we?)

Ever checked this list?
Uptime depends on various things. That Windows servers are on top of the list doesn't necessarily mean something. (edit: Missed a dot.)

My personal fileserver (which can hardly be thought of as a critical machine) runs linux - simply because it's free. Free as in beer.
Now that's not actually a reason. If it was, no-one would use Windows anymore, as it is not free.  :D

2012
General Software Discussion / Re: Stop Windows from calling home
« on: January 04, 2010, 07:46 PM »
Fortunately, I'm not a stupid user that clicks yes to everything, and locations that are sensibly set up will have non-trusted users run as exactly that: non-trusted users without admin privs.
So, at least, we're talking on a similar level. Quite a progress yet.

Btw, as for automatic updates: standard users should keep that on. But, while it hasn't happened very often, once in a blue moon and on a subset of configurations, updates have caused trouble.
I know about that, but I wouldn't count this as a reason to disable AU for standard users. We're not talking about important servers right now (which should never run Windows anyway), right?

2013
General Software Discussion / Re: Stop Windows from calling home
« on: January 04, 2010, 07:27 PM »
one should think that a software firewall (if primarily focusing on packet filtering) isn't that hard a job to get right.
Given that we only talk about a packet filter and nothing more: You'll need some kind of an A.I. to decide which traffic is "good" and which is "bad". A packet filter completely controlled by its users does not do what it is intended to.

2014
General Software Discussion / Re: Stop Windows from calling home
« on: January 04, 2010, 06:56 PM »
Show me an exploit for the built-in Windows PF? Not saying it doesn't exist, I just haven't seen it.
There is one for the XP firewall, and I doubt there are none for newer versions ...

with proper software design, there's no reason that a 3rd-party software firewall can't be as secure as Windows' built-in...
If we assumed proper software design, there were no holes in Windows at all, right?

2015
General Software Discussion / Re: Stop Windows from calling home
« on: January 04, 2010, 06:46 PM »
If you've ever tried bringing an XP box pre-SP2 on the internet without 3rd party PF or a NAT'ing router, you'll see how fast this happens with internet traffic.
Like that Sasser worm? I know it, yep ...  :-\
A well-configured machine is daily patched and does not run any services which just are not needed. Of course, there are always some (rare) exploits for needed services. But there are also exploits for common "firewall software", and I think there are more of them. So, actually, a LAN/WLAN system running a "personal firewall" and the default services is more probably vulnerable than a LAN/WLAN system running only the default services.

2016
General Software Discussion / Re: Stop Windows from calling home
« on: January 04, 2010, 06:25 PM »
ever considered what can happen on a LAN or WLAN if one computer gets infected and there isn't a software firewall running on the individual hosts?
A LAN or a WLAN don't actually send data between the clients without requesting them. Infected clients in my network don't make my Windows more insecure. Still talking about nonsense?

2017
General Software Discussion / Re: Stop Windows from calling home
« on: January 04, 2010, 05:59 PM »
The Windows Firewall is a firewall
Wrong, because:

A firewall's main purpose is preventing access to the computer, not preventing the computer from reaching out
You can not protect a machine from unauthorized access when running a prevention system on it!

+------------------+
| teh internetz    |
+---------+--------+
          |
   +------+--------+
   | PROTECTION    |
   +----+----------+
        |
  +-----+------------+
  | The machine that |
  | shall be protec- |
  | ted from OUTSIDE |
  +------------------+

Now do this with a "software firewall". Good luck.

but iirc a limited user account on XP can't modify firewall rules, and on Vista/Win7 you get an UAC prompt?
People who use limited accounts and/or the UAC prompt will, like, never have serious system failures caused by malware. They just don't need any extra protection anyway.

Oh, I almost forgot: you've already spouted this nonsen.
I was right.

2018
General Software Discussion / Re: Stop Windows from calling home
« on: January 04, 2010, 05:36 PM »
Whether or not it can be bypassed, as can ANY firewall or software is not a valid point when determining its usefulness.
Of course it is. Security software that can be bypassed simply doesn't protect you. Period.

If you need at least one reason why, it HELPS prevent problems.
How?

and have found that the Windows firewall, even though it started simple, added an easy to use, unobtrusive layer of protection and sense of security.
Placebo effect?

From what I have seen above, you have given us nothing but the usual "I hate Windows/Microsoft" diatribe, which always comes with no hard evidence, just empty statements on how useless or horrible MS and it's software is.
I am a proud Windows user. You won't get me this way.

(BTW: Every firewall software has, as all other software products, potential holes itself, so it may even make you even more insecure.)

2019
General Software Discussion / Re: Stop Windows from calling home
« on: January 04, 2010, 05:32 PM »
Windows firewall routinely prompts me when a new program attempts to establish a connection.
If this prompt is not clicked away automatically (or the malware even installs a rule there), you'll still have to consider that explorer.exe is not explorer.exe, right?
Still, the problem is the user here. You can't compensate that with a software.

2020
General Software Discussion / Re: Stop Windows from calling home
« on: January 04, 2010, 05:19 PM »
2. It is not that hard to write a script which automatically clicks "Allow".

And this can be done with just about ANY firewall application...
You see?

if you install something bad, then chances are your firewall is the last thing you need to worry about.
Indeed. So again: What is your reason to call the Windows Firewall "useful"? For what purpose?

2021
General Software Discussion / Re: Stop Windows from calling home
« on: January 04, 2010, 04:57 PM »
A "personal firewall" (basic packet filtering, user-controlled, which should be enough reason to doubt its usefulness) does not actually act as a firewall.

1. It can not detect if "explorer.exe" is really "explorer.exe" when asking you if explorer.exe may access the internet.
2. It is not that hard to write a script which automatically clicks "Allow".
3. It is behind your internet connection, so any packets passing it are already on your computer.
4. ... if they pass it anyway (there is always a way to create your own, independent TCP connections).
5. A virus, worm or trojan runs with your own user privileges, so it can easily disable your PFW completely.

Now what is the point in using something like that which also depends on the user's own "Brain 1.0"?
If you actually use software from dubious sources and click unknown links (the only ways to get infected), you'll fail anyway. A "personal firewall" can not help you.

2022
General Software Discussion / Re: Stop Windows from calling home
« on: January 04, 2010, 04:23 PM »
Disable Windows Firewall - And there it is!
How many reasons why the Windows "Firewall" is neither a firewall nor of any use would be enough to convince you that disabling it is a good idea? I think I could find dozens of them.

2023
Mini-Reviews by Members / Re: XYplorer File Manager
« on: January 04, 2010, 04:22 PM »
Getting started with Total Commander was a brilliant idea :P
Yes, without its ugly UI I had never dug for better file managers.  :P

2024
Living Room / Re: Sex Doesn't Sell
« on: January 03, 2010, 12:18 PM »
Sex is overrated.

2025
General Software Discussion / Re: Search with Bing
« on: January 02, 2010, 02:20 PM »
Bing is better in terms of privacy and has way less spam results (for me).

Direct comparison:
http://www.furia.com/code/bg/bg.cgi?q

No one should use Google these days anyway.

Pages: prev1 ... 76 77 78 79 80 [81] 82 83 84 85 86 ... 90next