 
rachelsfx
join:2004-09-27
Pensacola, FL | Has M$ heard of testing? God only knows how many bugs Vista has in it.  | |
|
 | ottawa_guy
join:2005-06-03
Ottawa, ON | Re: Has M$ heard of testing? Who uses ICS, especially on broadband!
one word only...... ROUTER
get one! | |
|
| |
rachelsfx
join:2004-09-27
Pensacola, FL | Re: Has M$ heard of testing? Nerds get that but a lot of customers don't. | |
|
| | | 
toddbs98
join:2000-07-08
North Little Rock, AR
clubs:  | Re: Has M$ heard of testing? The less tech savvy would a lot more likely to be able to set up a router than to ever get ICS to work.
--
Patriots always speak of dying for their country never killing for it. Bertrand Russell
| |
|
| | | | 
dfdfdfdf
@telus.net | Re: Has M$ heard of testing? i am that less tech savvy person. what does that mean to me? and what is ICS and if im running a router (Dlink Di-624) and windows firewall would i be safe? or do you recommend a 3rd party firewall instead? | |
|
| | | | | j0nnyb1aze
join:2004-07-22
Hudson, FL
 ·ViaTalk
| Re: Has M$ heard of testing? This exploit is a threat when Microsoft's Internet Connection Sharing is enabled. If you're using a router than this vulnerability doesn't affect you.
I would however still recommend a 3rd party firewall. I really don't trust the microsoft one. I prefer one that gives me more control over what is being allowed. The MS firewall is configurable to a point, but not like I would prefer. | |
|
| | | | | 
Shack
join:2002-01-17
Bloomington, IN | You should be fine. | |
|
| | | | squid7
Premium
join:2006-09-02 | I was just thinking the same thing. A router (especially a wired router) is infinately easier to setup than ICS. | |
|
| | 
LiamJunket
Premium
join:2002-03-03
Ocean City, NJ
 ·Comcast
| said by ottawa_guy  :Who uses ICS, especially on broadband! one word only...... ROUTER get one! Not many possible candidates out there for this bug. | |
|
| | | 
printscreen
join:2003-11-01
Juana Diaz, PR
 ·Coqui/PRTC
| Re: Has M$ heard of testing? said by LiamJunket :said by ottawa_guy :Who uses ICS, especially on broadband! one word only...... ROUTER get one! Not many possible candidates out there for this bug. People still on dial-up with home networks are candidates for this. | |
|
| Shark_615
join:2006-01-17
Pickering, ON | Did you even read the linked article or just post ignorant anti-Microsoft drivle because you think its "leet"? | |
|
| J
California Dreamin'
join:2002-02-08
California | Typical response! What software doesn't have vulnerabilities? | |
|
proefain
Premium
join:2000-05-08
Crofton, MD
| Must be on LAN the attacker would have to be within the LAN in order to make the attack work Unless I'm reading it wrong the attacker must be on the inside of the ICSed network.
While a agree M$ should not have code that allows this how many people is this going to effect? | |
|
| 
swhx7
Premium
join:2006-07-23
Elbonia | Don't use ICS with wireless. Don't use ICS anyway. (was: Re:
Theoretically it could work from nearby if you had a wireless AP going and inadequate security on it, plus ICS. This would be rather odd and seemingly unlikely tho. | |
|
| | Gogo1
join:2004-05-27
Brooklyn, NY | Re: Don't use ICS with wireless. Don't use ICS anyway. (was: Re: Exactly my setup, minus the inadequate security. | |
|
| 
JoeOnSunset
Doublethink Is Doubleplus Ungood.
Premium
join:2002-11-25
Ormond Beach, FL | Re: Must be on LAN It's irritating that that fact is included only at the very bottom of the article. It's an inside attack, but everyone who reads the headline will assume it's an outside attack. Ugh. | |
|
| 
Maxo
Your tax dollars at work.
Premium,VIP
join:2002-11-04
Tallahassee, FL
clubs: | I use ICS. As soon as I read that part I thought, "Oh, then there's nothing to worry about." | |
|
RemyL75
join:2001-06-07
Chicago, IL | Just making sure before I get happy.... Ok, so with this new bug, they can't touch you so long as you aren't running ICS. Even though the service that controls ICS is the same one that controls MS Firewall. Just wanna be sure before I start telling ppl to get a router. | |
|
| 
Jim Gurd
Premium
join:2000-07-08
Plymouth, MI
·Comcast
| Re: Just making sure before I get happy.... said by RemyL75 :Just wanna be sure before I start telling ppl to get a router. It's ALWAYS a good idea to use a router even if you only have one PC connected to it. It acts as a hardware firewall unlike the Windows version which is software and isn't always on.
--
To be rich in friends is to be poor in nothing. | |
|
| |
swhx7
Premium
join:2006-07-23
Elbonia
·RoadRunner Cable
| Re: Just making sure before I get happy.... Right. The firewall in the router will be your best protection from unsolicited incoming connection attempts.
You should also use a software firewall for the separate purpose of controlling outbound network connections made by applications or the OS. But for this, use a third party product such as Zone Alarm or Kerio. Just turn off the inferior Windows Firewall, and ICS, and the service that supports them. | |
|
| | | RemyL75
join:2001-06-07
Chicago, IL
| Re: Just making sure before I get happy.... Oh I know that it's good, but you see i deal with a LOT of cheap ppl. They don't wanna spend the money on a router if they don't have to. Hell I have 2 seperate DSL accounts and both of them are on their own router. But ppl who don't know see it as a waste to buy one. But then they'll be paying me more to fix the problem than it will cost to buy the router. | |
|
|
sleb
@beanfield.net | Important: you don't want to disable Windows Firewall/ICS; you want to disable ICS only.
For full instructions, nCircle posted steps with screen shots.
»blog.ncircle.com | |
|
buyacluefool
@comcast.net | Whodda thunk? SOS, DD from MICROSUCKS.
What did you REALLY expect? | |
|
PolarBear
The bear formerly known as aaron8301
Premium
join:2005-01-03
Riverside, WA
·CableOne
1 edit | Router has nothing to do with it If I read that correctly, it doesn't state that you actually HAVE to be using ICS, just that the service has to be running.
Windows Firewall/Internet Connection Sharing Service is set to run automatically in all versions of XP, so even if you aren't using ICS, it is still there, running in the background (like way too many unnecessary Windows services), leaving your box compromised.
In this sense, not only do you not have to be "saavy" enough to use ICS, you don't even have to know what it is. It's still there, whether you know it or not.
Nevermind, I reread it, and I was completely wrong. Damn, first time in 2006. So who the hell uses ICS anyway? LOL
--
"I invented it, Bill made it famous." --David Bradley, the inventor of Ctrl+Alt+Del. | |
|
Techman21
join:2005-04-14
Richmond, VA
| My opinion Bah. No software firewall needed. All it does is take up more space in memory. I like my Linksys Router. Not a 100% full-proof, but like some uber hacker is after joe schmo. Come on...the hackers that know anything are going after big businesses and governments. They may send out bot programs to use us as zombie machines but that is the extent of it.
And a router is going to keep out most script kiddies since they don't know jack to begin with.
You got my ip feel free to try and compromise me. You'll get a cookie. Not like I keep anything important on here anyways, except maybe my vast collection of pr0n.
If you want that added sense of security run a software firewall. But any hacker that is good enough to get past a hardware firewall will get past a software one too. Just food for thought.
Also ICS is turned off by default, so usually only people who know what they are doing are going to know about that setting and if they know about that then they know about this article most likely.  | |
|
| enrolk
join:2002-04-23
Murrells Inlet, SC | Re: My opinion Why doesn't M$ hire the best hackers to hack their OS before they have to release all these SP's?
MS=Micro-smell. Something smells rotten. | |
|
| | 
yaplej
CCNA
Premium
join:2001-02-10
White City, OR | Re: My opinion Just so you know Microsoft did hire 3rd party security companies to analyze their code for the coming version of products. | |
|
ditka_b
Premium
join:2001-10-05
Barrington, IL | This is a useless whine fest ICS? LOL that's like saying "There's a new MAC OSX exploit!!!", Turning it on and leaving it at the airport logged in can cause a security risk... Sheesh. | |
|
rob_in_chatt
Premium
join:2004-09-17
Chattanooga, TN
·Comcast
1 edit | flaw this just out.........my ass is cracked! is that a flaw?
anyways who cares? there will always be exploits. it is the steps you take to ensure your own PC security that matter. whining about another exploit or security flaw is just a waste of time better saved for a rant thread. just be thankful that the information gets posted here so you can see what steps you need to take to protect yourself.
and yes Techman i totally agree with you. i run an external firewall, my WRT54G takes care of all that. the reason i have always done that is if my machine got compromised, how could i be sure that the software firewall was not corrupted as well? not to mention they are resource hogs and i dont do anything but game on my machine so there is no sense in having something eat up my system resources. Firefox does a good enough job on its own in that department LOL | |
|
| CWO0
join:2004-02-03
Chicago, IL
| Re: flaw well actually I was forced to use ICS as of yesterday when Comcast came over and installed VOIP phone service. They changed the modem understandably but then the modem would only communicate with my one comp. I was on the phone with both Comcast and Linksys and their only thought is the two are incompatible. So I have to make the wireless computer (which I do secure my wireless network) communicate with the router then route through my computer to the modem. Never wanted to do it in the first place but I was kinda forced to  | |
|
naiko
join:2006-11-02
Argentina |  And the packet?
| |
|
|
|
|
New XP Exploit Disables MS Firewall