rachelsfx
join:2004-09-27
Pensacola, FL | Has M$ heard of testing?
God only knows how many bugs Vista has in it.  |
|
ottawa_guy
join:2005-06-03
Ottawa, ON | Who uses ICS, especially on broadband!
one word only...... ROUTER
get one! |
|
rachelsfx
join:2004-09-27
Pensacola, FL | Nerds get that but a lot of customers don't. |
|
toddbs98
join:2000-07-08
North Little Rock, AR
clubs:  | The less tech savvy would a lot more likely to be able to set up a router than to ever get ICS to work.
--
Patriots always speak of dying for their country never killing for it. Bertrand Russell
|
|
dfdfdfdf
@telus.net | i am that less tech savvy person. what does that mean to me? and what is ICS and if im running a router (Dlink Di-624) and windows firewall would i be safe? or do you recommend a 3rd party firewall instead? |
|
proefain
Premium
join:2000-05-08
Crofton, MD
| Must be on LAN
the attacker would have to be within the LAN in order to make the attack work Unless I'm reading it wrong the attacker must be on the inside of the ICSed network.
While a agree M$ should not have code that allows this how many people is this going to effect? |
|
TKJunkMail
Enjoy the sun
Premium
join:2002-03-03
Avalon, NJ
 ·Sprint Mobile Broa..
 ·Comcast
| reply to ottawa_guy
Re: Has M$ heard of testing?
said by ottawa_guy  :Who uses ICS, especially on broadband! one word only...... ROUTER get one! Not many possible candidates out there for this bug. |
|
swhx7
Premium
join:2006-07-23
Elbonia | reply to proefain
Don't use ICS with wireless. Don't use ICS anyway. (was: Re:
Theoretically it could work from nearby if you had a wireless AP going and inadequate security on it, plus ICS. This would be rather odd and seemingly unlikely tho. |
|
RemyL75
join:2001-06-07
Chicago, IL | Just making sure before I get happy....
Ok, so with this new bug, they can't touch you so long as you aren't running ICS. Even though the service that controls ICS is the same one that controls MS Firewall. Just wanna be sure before I start telling ppl to get a router. |
|
Gogo1
join:2004-05-27
Brooklyn, NY | reply to swhx7
Re: Don't use ICS with wireless. Don't use ICS anyway. (was: Re:
Exactly my setup, minus the inadequate security. |
|
Jim Gurd
Premium
join:2000-07-08
Plymouth, MI
·Comcast
| reply to RemyL75
Re: Just making sure before I get happy....
said by RemyL75 :Just wanna be sure before I start telling ppl to get a router. It's ALWAYS a good idea to use a router even if you only have one PC connected to it. It acts as a hardware firewall unlike the Windows version which is software and isn't always on.
--
To be rich in friends is to be poor in nothing. |
|
j0nnyb1aze
join:2004-07-22
Hudson, FL
| reply to dfdfdfdf
Re: Has M$ heard of testing?
This exploit is a threat when Microsoft's Internet Connection Sharing is enabled. If you're using a router than this vulnerability doesn't affect you.
I would however still recommend a 3rd party firewall. I really don't trust the microsoft one. I prefer one that gives me more control over what is being allowed. The MS firewall is configurable to a point, but not like I would prefer. |
|
Shark_615
join:2006-01-17
Pickering, ON | reply to rachelsfx
Did you even read the linked article or just post ignorant anti-Microsoft drivle because you think its "leet"? |
|
buyacluefool
@comcast.net | Whodda thunk?
SOS, DD from MICROSUCKS.
What did you REALLY expect? |
|
PolarBear
The bear formerly known as aaron8301
Premium
join:2005-01-03
·CableOne
1 edit | Router has nothing to do with it
If I read that correctly, it doesn't state that you actually HAVE to be using ICS, just that the service has to be running.
Windows Firewall/Internet Connection Sharing Service is set to run automatically in all versions of XP, so even if you aren't using ICS, it is still there, running in the background (like way too many unnecessary Windows services), leaving your box compromised.
In this sense, not only do you not have to be "saavy" enough to use ICS, you don't even have to know what it is. It's still there, whether you know it or not.
Nevermind, I reread it, and I was completely wrong. Damn, first time in 2006. So who the hell uses ICS anyway? LOL
--
"I invented it, Bill made it famous." --David Bradley, the inventor of Ctrl+Alt+Del. |
|
JoeOnSunset
Doublethink Is Doubleplus Ungood.
Premium
join:2002-11-25
Ormond Beach, FL | reply to proefain
Re: Must be on LAN
It's irritating that that fact is included only at the very bottom of the article. It's an inside attack, but everyone who reads the headline will assume it's an outside attack. Ugh. |
|
swhx7
Premium
join:2006-07-23
Elbonia
·RoadRunner Cable
| reply to Jim Gurd
Re: Just making sure before I get happy....
Right. The firewall in the router will be your best protection from unsolicited incoming connection attempts.
You should also use a software firewall for the separate purpose of controlling outbound network connections made by applications or the OS. But for this, use a third party product such as Zone Alarm or Kerio. Just turn off the inferior Windows Firewall, and ICS, and the service that supports them. |
|
Shack
join:2002-01-17
Bloomington, IN | reply to dfdfdfdf
Re: Has M$ heard of testing?
You should be fine. |
|
J
California Dreamin'
join:2002-02-08
California | reply to rachelsfx
Typical response! What software doesn't have vulnerabilities? |
|
printscreen
join:2003-11-01
Juana Diaz, PR
·Choice Cable TV
 ·Coqui/PRTC
| reply to TKJunkMail
said by TKJunkMail :said by ottawa_guy :Who uses ICS, especially on broadband! one word only...... ROUTER get one! Not many possible candidates out there for this bug. People still on dial-up with home networks are candidates for this. |
|
