Re: These leaktests aka scaretests are pure crap

Author	All Replies
BlitzenZeus Burnt Out Cynic Premium,MVM join:2000-01-13 Beaverton, OR ·Verizon FIOS ·Verizon Online DSL 1 edit	reply to ghost16825 Re: These leaktests aka scaretests are pure crap The hole in IE was built-in, any program can proxy their communications through IE just like software proxy. This is the huge security hole in IE that Microsoft has not fixed in years, and why IE is only permitted to windows update/office update/microsoft sites in general on my computer. As I've said before Microsoft Security is an oxymoron, their own browser was listed as a security risk by CERT recently also, and people were suggested to use alternative browsers. IE in general is a security risk, if it wasn't for their use of windows/office update, and access to Microsoft beta software I would not be using IE at all, along with it being completely blocked. -- My hourly rates: $25 per hour. $35 per hour if you want to watch. $45 per hour if you want to help. $75 per hour if you tried to fix it, and failed.
	to forum · permalink · 2004-07-01 02:44:30 · (locked)
paranoidxe Premium join:2002-03-29 Ogden, UT	Funny...Kerio passed PCAudit just fine on this machine. Thermite looks like it locally creates the file instead of remotely. Copycat failed to connect to put c:\exploited.txt on my machine using Kerio 2.1.5..so yet another inaccurate claim. Wallbreaker fails too if internet explorer is not already setup to use port 80 and allowed access. PCAudit2 failed as well, I denied it access easily..again when Internet Explorer is NOT setup to access port 80. I think the Test is pretty bogus myself..the "exploits" it uses seems to only "exploit" the port that is already open on most computers anyway..Port 80. -- "Its better to look stupid for 5 minutes and ask a question, than to be stupid for the rest of your life."4g63.20m.com (textsource.org)
paranoidxe Premium join:2002-03-29 Ogden, UT	to forum · permalink · 2004-07-01 04:56:30 · (locked)
Lilla1 join:2002-04-22 Fall City, WA	reply to BlitzenZeus Thank you BlitenZeus for your posts, informative and helpful as always. And thanks again (I cannot say it enough) for the GREAT BZ ruleset you have given us. Thank you to Ghost, and gkweb for your excellent posts. It's always good to read both sides of an issue. Those tests did scare me pretty good, and reading Ghost's post has quieted my fears about my trusted Kerio 2.15 with BZ ruleset. I appreciate the discussion in this thread. It has helped me to understand a bit more about security. I am thinking now more about the concept of taking a layered approach to security. The role of the firewall layer vs. the role of the browser layer. This is a something I need to learn more about. BlitenZeus, I read with interest the limited use you make of IE, and I am now thinking that I might at least consider the idea of adding a 2nd browser. Which alternate browser would you guys recommend, Opera, Mozilla FireFox, other? I would prefer one that is free. When people say their IE6 is fully patched, does that mean something beyond Microsoft Critical Updates? So far that is all that I do. Thanks to all, Lilla, BZ ruleset groupie
Lilla1 join:2002-04-22 Fall City, WA	to forum · permalink · 2004-07-01 14:12:28 · (locked)
BlitzenZeus Burnt Out Cynic Premium,MVM join:2000-01-13 Beaverton, OR ·Verizon FIOS ·Verizon Online DSL 1 edit	Opera is not free, unless you don't mind an adbar you can easily block through Kerio. Otherwise there are open source browsers like Mozilla, and Firefox. Mozilla is a suite with a e-mail client, etc... Firefox is just a pure browser, but its considered beta if you really care. I prefer Firefox, and its been working great for me, however its a bit different so it will take a little bit to get used to from IE. IE has always had unpatched exploits for it going around, I don't consider it safe for common use unless your willing to disable most, if not all of its features in the name of security. When you restrict too many settings you can't visit many legit websites, but with programs like Firefox you don't have to worry about all of these security exploits trying to install things behind your back so you can leave features enabled without worry. You just need IE for sites that require IE for their proprietary technologies like ActiveX(HacktiveX), and Visual Basic Scripting which are the source of most of their exploits. Basically Windows Update, Office Update, etc... -- My hourly rates: $25 per hour. $35 per hour if you want to watch. $45 per hour if you want to help. $75 per hour if you tried to fix it, and failed.
	to forum · permalink · 2004-07-01 19:55:14 · (locked)


Wednesday, 02-Dec 08:10:48	Terms of Use \| Privacy Policy \| Hosting by www.nac.net - DSL,Hosting & Co-lo \| feedback \| contact over 10 years online! © 1999-2009 dslreports.com.republican-creole page compression OFF