S
Stiks
I am using Windows 2000. I will have a look at your link.
I just got rid of a Trojan and want to be sure I don't get another.
I just got rid of a Trojan and want to be sure I don't get another.
D
David H. Lipman
From: "Stiks" <[email protected]>
| I am using Windows 2000. I will have a look at your link.
| I just got rid of a Trojan and want to be sure I don't get another.
||
Trojans don't infect via open ports. Worms use Networking Protocols to spread and infect.
You had to have had another infector to get that Trojan or you installed the Trojan either
by direct or indirect actions.
Open ports will allow worms to get through assuming the PC is not patched properly and/or
not secured properly such as with "Strong" passwords.
In summation -- Closing ports and disabling services won't help with Trojans.
| I am using Windows 2000. I will have a look at your link.
| I just got rid of a Trojan and want to be sure I don't get another.
||
Trojans don't infect via open ports. Worms use Networking Protocols to spread and infect.
You had to have had another infector to get that Trojan or you installed the Trojan either
by direct or indirect actions.
Open ports will allow worms to get through assuming the PC is not patched properly and/or
not secured properly such as with "Strong" passwords.
In summation -- Closing ports and disabling services won't help with Trojans.
A
Art
Well, addressing the internet port issue is just part of prevention.
Take a look here for some recommendations:
http://www.claymania.com/safe-hex.html
I suggest giving Mozilla a try for browsing and email. Make sure you
set it as your default browser, and use IE very sparingly ... just
for trusworthy web sites. Another good email app that doesn't allow
users to Run dangerous file attackments is Pegasus. Follow the rule of
deleting all unsolicted email attackments immediately. You can Save
attachments that you believe are ok and scan them later (as below).
Be very careful about what you download and allow to Run, and don't
put any trust in antivirus products. But do use a top notch one for
on-demand scanning of downloads. Give the downloads a few days
before you scan and Run them ... to give vendors a chance to update
their def fles. And, of course, keep your scanners up to date.
Don't forget to use some kind of good backup strategy for your data.
Your precious files should be copied to removeable media ... a cd ROM
disk, or a removeable hard drive, or tape.
And keep on learning since the more you know, the safer you will
become.
Art
http://home.epix.net/~artnpeg
C
* * Chas
| How do you close ports?
| What services are unnecessary?
Here are some links to info on XP Services:
http://www.theeldergeek.com/services_guide.htm
http://www.blackviper.com/WinXP/servicecfg.htm
Chas.
| What services are unnecessary?
Here are some links to info on XP Services:
http://www.theeldergeek.com/services_guide.htm
http://www.blackviper.com/WinXP/servicecfg.htm
Chas.
K
kurt wismer
Art said:
your words were:
"Another factor in my
disinterest in emergency utils is that there's no reason that users
who have just a little clue should ever take malware/spyware hits."
that pretty clearly implies that people should be able to prevent
malware in all cases if they do the right set of things...
hardening the OS and using alternative internet apps are just other
forms of prevention... prevention is important and i don't disagree, but
it is not the end of security, it is only the beginning...
you have clearly indicated that if people know what they're doing they
should never take malware hits and therefore never need to follow
recovery procedures - that implies that the preventative measures they
employ never fail and are therefore perfect... i'm just pointing out the
fallacy in that - no matter how good your preventative measures are, no
matter how much of a clue you have or put to good use, there will always
be reasons for people to use "emergency utils"...
A
Art
In a different vein, I was very interested in Mr. Shagnasty's comment
the other day about using a sw firewall to block IE from accessing the
internet (so you can optionally allow or disallow it). Since,
according to emperor kurt (smile), anyone might eventually take a hit,
and that hit may not be a firewall disabling hit, it strikes me that
this heuristic _might_ be a useful one.
In Shagnasty's case, it was a legit app that caused the "evil deed".
But since then, I'm sure I've seen references somewhere or another
to malware/spyware that starts IE (not necessarily the default browser
but IE in particular). Now, maybe some other legit apps start IE. I
don't know.
What's your (or anyone's) take on the value of having a sw firewall
alert whenever IE is started?
Art
http://home.epix.net/~artnpeg
A
Art
Would the emperor be slightly more happy with "rarely"
rather than "never" ? Or does the emperor take so many
hits that he'd be happier with "cut down on the number of hits"?
No matter. I'll stick with my statement no matter what the emperor
says
Art
http://home.epix.net/~artnpeg
K
kurt wismer
Art said:
it has nothing to do with the number of hits i take or don't take...
No matter. I'll stick with my statement no matter what the emperor
says
and i'll stick with my 'emperor's new clothes' remark, as you clearly
aren't seeing you've left something (the possibility of failure)
uncovered...
A
Art
No. I said "should ever" (take hits). I didn't say "absolutely will
not ever" take hits. There's a big difference. Your snide "emperor"
remark was uncalled for. I don't know what your purpose is in trying
to paint me as a snake oil peddler, but I don't like it. So get bent.
Art
http://home.epix.net/~artnpeg
K
kurt wismer
Art said:
i'd rather not get into this level of pedantry, but when one says 'there
is no reason X should happen' it is equivalent to saying 'X should never
happen'...
in this case X will happen so the statement is wrong...
snake-oil? if i were trying to paint you as a snake-oil peddler i'd have
used the term "snake-oil"... i'd have used it early and i'd have used it
often...
the only thing i was trying to paint you as was being in error... that
and (in a joking way) oblivious to the error (except the joke turned
serious)...