rshochPremium
join:2003-09-01
Santa Ana, CA | How to parry the recent Chinese hack attacks? What third-party app(s) would have allowed an Admin User up-to-date XP Pro box to brush aside these attacks? |
|
|
Disable active scripting until microsoft issues a Patch.
|
|
rshochPremium
join:2003-09-01
Santa Ana, CA
1 edit | Surfing in the Internet Zone on High Security Level is my default but does disable web site functionality.
I'm looking for a way to surf at Medium-High Security Level and yet deflect these zero-day exploits.
Anything out there to layer onto my defenses? |
|
|
|
 koma3504AdvocatePremium
join:2004-06-22
North Richland Hills, TX | A router or a spare pc setup with 2 ethernet cards in it and install smoothwall on it.
»www.smoothwall.org/ |
|
| reply to rshoch
said by rshoch:What third-party app(s) would have allowed an Admin User up-to-date XP Pro box to brush aside these attacks? Unfortunately not much. As snowman said, you could disable scripting all together. A better bet would be to simply use Firefox or Chrome.
If you had Vista/7, you would greatly decrease the damage that could be done by running IE in protected mode as well as ensuring that DEP/ASLR was turned on. There isn't much doubt that Vista/7 are far more secure than XP.
--
Linux and BSD: operating systems the way they were meant to be -- secure, fast, free, and open. |
|
| reply to rshoch
KodiacZiller hit the mail......running in Protected Enviorment in todays cyber space is defintely an asset. No doubt other members can offer you some great ideas.
Also, Virtual Mode or Virtual Machine.....when there is an exploit that has not as yet been Patched runing in " virtual" will save the bacon. If the computer does become infected usually you can "shake-it-out" by simply leaving the Virtual Mode.........and everything back to normal.....nice.
Otherwise you are at the mercy of whoever does the Patching........hmmmm, how many times can a computer get infect while waiting....... |
|
 rawwhidePremium
join:2000-09-03
The Sticks
 ·AT&T DSL Service
1 edit | reply to rshoch
said by rshoch:What third-party app(s) would have allowed an Admin User up-to-date XP Pro box to brush aside these attacks? A Virtual Machine.
My preference is Linux running XP inside of Virtualbox.
--
To talk much and arrive nowhere is the same as climbing a tree to catch a fish. |
|
 swhx7Premium
join:2006-07-23
Elbonia | reply to rshoch
The hacks exploited Adobe PDF reader flaws as well as the one(s) in IE. »www.wired.com/threatlevel/2010/0···el%29%29
Adobe products have been very buggy recently, and the "Javascript in PDFs by default" is a poor design (for users; maybe good for Adobe). But there are flaws in other PDF readers too.
Part of the problem is that the attack need only succeed against one PC in the organization that will let the attacker snag sufficient credentials to get desirable data from that PC or access to the rest of the internal network. |
|
| The question here is whether this was an inside job done by RPC employees of Google. |
|
rshochPremium
join:2003-09-01
Santa Ana, CA | reply to KodiacZiller
I do plan to GOTO 7 in the next couple of months. Good to hear of the strengthened fortifications around 7. |
|
