Re: Anyone up for a challenge?

From: Art McClure (aamccl_at_yahoo.com)
Date: 03/22/04


Date: 21 Mar 2004 17:23:35 -0800

goodguy998877@aol.com (GoodGuy998877) wrote in message news:<20040321145911.23546.00000080@mb-m15.aol.com>...
> Hi everyone!
>
> My computer problems are usually strange, since I have a technically
>
> proficient cracker really obsessing on breaching the security of my
>
> (AOL dial-up) Internet connection. Today, I'd like to know whether
>
> there is a way to completely disable "Windows Update". The only
>
> reason I wish to block it, is that I'm getting the sense that the
>
> cracker is somehow using it or relying on it for something. I've
>
> already tried setting the preferences and modifying each and every
>
> mention of it in the registry, but sure enough, it always pops right
>
> back up on the taskbar, next to the clock.
>
> A funny thing I saw today, was that when the MSIE security was set to
>
> Custom, (blocking or prompting for the Active X crap), I would receive
>
> the "can not find server" white page, while the internal AOL browser
>
> worked just fine. But when I set the security level to Default
>
> (Medium), it would load the web page -- but that's also when the
>
> Windows Update icon re-appeared! It's as if I have to shoot myself in
>
> the foot in order to walk!
>
> Another oddity is that with a fresh install, the first thing McAfee
>
> tells me is that my Winsock Protocols have been "changed" and that I
>
> may have to restart my computer in order to connect to my network or
>
> the Internet. I think the cracker is making every effort on a new
>
> install to do whatever it is he does, so that each subsequent time I
>
> connect, he's able to "look over my shoulder" automatically. (And
>
> there is a flury of alerts when I connect with a fresh instal.)
>
> Ofcourse, when I try researching what the hell this socket and its
>
> protocols are, the best I get is a simple definition of the words!
>
> Absolutely no help in learning about, checking, protecting or
>
> modifying these "sockets" can be found.
>
> I really dread going through the support channels again, since all
>
> they ever do is play ping pong with my issue. Go to AOL, go to the
>
> phone company, go to McAfee, etc.... Also, I've all but given up on
>
> the other programs like Tauscan, Spybot, etc, believing that until
>
> this initial connection problem with the socket stuff is cured,
>
> everything I do after I connect, is moot. Using these programs result
>
> in little more than a useage of time for me.
>
> Thank you for your continuing efforts!
>
> "PS" I just checked the McAfee firewall log, and in just under 40
>
> minutes online, it logged 70 blocks, several of which were "SYN Port
>
> Scan Attack"s. Finally, does anyone know if there's any way to block
>
> all programs from using particular ports? The best I could figure is
>
> that I have to write a separate blocking rule for each program.

Yes, what is your OS?