Re: The Trackers First Review Response
From: Mike (nospam_at_notherematey.com)
Date: 09/22/03
- Next message: Mike: "Re: ADSL + Firewall + hub requirement"
- Previous message: Greg Hennessy: "Re: Firewalling existing network (replacing Linux Bridge/IPChains)"
- In reply to: removevalid: "The Trackers First Review Response"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Mon, 22 Sep 2003 09:25:42 +0100
"tracker" <"snailmail(removevalid)222000"@yahoo.com> wrote in message
news:3F6DA4AB.95914C11@yahoo.com...
>
> Typically once a system is compromised, there is little need to install
> another backdoor or a trojan that could be detected by AV software. All
> AV software will detect known trojans.
>
> ME: If all AV applications can detect known trojans, then how did the
> Backdoor Redwood Broker along with six or seven Trojan Horses appear on
> my computers while running PC-Cillian and Nortons?
Simple, you were to stupid to keep them up to date.
> My perspective is
> this - most Windows users don't disable a number of services, including
> file and print sharing. A hacker comes along and installs a Backdoor
> and Trojan Horse, including a Virtual Private Network(s), but the basic
> user hasn't even installed any anti-virus application at this point and
> their computer is already hacked/owned. You can't install anti-virus
> applications on a hacked or owned computer and expect them to function
> properly and alert you to virus attacks. There was not even a handful
> of virus alerts from either PC-Cillian or Nortons which showed any
> alerts in 2.5 years. See the firewall log below which derived from the
> hackers firewall application. While my systems were running two Virtual
> Private Networks, Steve Gibsons site and Securityspace was used to test
> for open ports. Securityspace on "one" occasion only revealed port 5000
> open while testing for over a six month period. Steve Gibsons site
> revealed port 110 opened during the same testing period. The only
> application open at the time was Netscape 4.7. This told me that a
> hacker was using an e-mail application which was on my computer at
Once again you show your ignorance of how ports are used. Port 110 would be
open at the SERVER end not the client end.
> ME: The additional Blackice firewall proved to me that it was probably
> connected to the Virtual Private Network(s). Granted, your answer
VPNs have nothing to do with hackers.
> firewall log I've ever seen in my life. The date and time changes will
> "finally explain to computer users why it's important for hackers to
> continually change these to make tracking hacker activity hard to
> accomplish".
No it doesnt. Changing the date and time is pointless. The 'attacks' are
still showing in the logs. If a hacker wanted to replace your firewall with
their own, they sure as hell would not mess with the date and time in the
log to draw attention to the fact.
Hackers do not leave clues that someone of your limited expertise and
knowledge could easily find.
I'm glad you are back, I was missing your idiotic ramblings. Can't wait for
the next 'review' abd particulary looking forward to your review of my
review! ROFL
- Next message: Mike: "Re: ADSL + Firewall + hub requirement"
- Previous message: Greg Hennessy: "Re: Firewalling existing network (replacing Linux Bridge/IPChains)"
- In reply to: removevalid: "The Trackers First Review Response"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
