Re: Clarification-Win2k Netstat sockets interpretation
- From: warf <warf@xxxxxxxxxxx>
- Date: Mon, 05 Feb 2007 22:45:34 GMT
Sebastian Gottschalk wrote:
warf wrote:....
Are you talking about Windows Automatic Updates or the Windows UpdateYou make a good point...I was unaware that they are now different. Before [goodol'days] I could manually download every security upate and servicepack from MS.com but now...they send you a bit of Cop-code that fails to run unless ALL defences are down [hence,the allusion to pants down]
website?
Now you're getting even more confusing. Every update can be downloaded from
https://downloads.microsoft.com as well, with any webbrowser. Windows
Update is an IE-only "website" that checks your installed updates against a
database and offers the missing ones, either for download-install-throwaway
or permanent download. And Windows Automatic Updates does the same, just
fully automatically and without IE involved.
Ok, I certainly did not know that...all the advice I have ever read indicates IE/OE should be ditched; so I make FF and TB my browser and popmail apps. I have only had warnings that my security settings prevented the updates or SW downloads directly never "IE is not your default browser". Recall, the verification utility fails to work after downloading and running it. must read more.
Which aren't identifying data. Anyway, you can limit this behaviour if you
don't like it.
k'. I don't, and I do. Just making the point again.
(WGA validation tool)
[or did it,was it "assisting me" in some other unstatedway"???
Was is the GenuineCheck.exe or WGAPluginInstall.exe?
Genuinecheck.exe 1.40 MB (1,475,376 bytes)
BUT, auto updates bypass all security and permissions as
long as the required services are running. So...who owns my computer?
In case of doubt: Microsoft ;-D
I relent.
.....
Why are you so averse to ZA?
Because it's totally broken? It's just the users who have a problem with
accepting that fact, and usually just after they finally uninstalled it
they're going to believe that it's actually totally broken.
of all the commercial FWs it at least allowed me a modicum of insight into what passes twixt my puty and the wire.
So does Ethereal. Without installing any crap.
again, k'....I guess??? the specifics of the crap still escapes me though.
and change permissions to harden
Trivial: create a "Restricted User" account.
B' b' but...OK...this approach isn't working, I'll learn what I can about 'that' approach.
Hey, what about Thinstalls jitit ? the nifty little registry utility that can be surreptitiously installed on your puter even on a locked desktop? Read about how the CIA bought in so they could remotely access every bodies 'locked-down' computers at work or home.
If it is now public knowledge you can be certain it is being utilized by
many other 'ilk'.
http://www.thinstall.com/
what hope is there?
Seriously though, I will run the script and watch traffic for a while....we live next to the highway. [can't stay serious]
Thanks for your insight Seb~
warf.
.and control what leaves and enters my computer?
You can't. For the simple reason that malicious programs can communicate
with legitimate programs.
- References:
- Prev by Date: Re: Clarification-Win2k Netstat sockets interpretation
- Next by Date: Thinstall installs sans registry entries..subversion?
- Previous by thread: Re: Clarification-Win2k Netstat sockets interpretation
- Next by thread: Google Picasa & Photo Sharing
- Index(es):
Relevant Pages
|
