As many of you know, I occasionally get messages from the MS team on
various things. Today I got the following, and (personally) I think
it certainly is worthy of passing on.
If you haven't protected yourself from the sasser worm, GET THE HECK
OFF THE NET!! <Grin>
No, seriously, get the patch. And a firewall. Even one of the free
personal ones like Zome Alarm or Outpost or whatever, and then
hopefully, someday, all this ... stuff... will stop. (Hey, I can
dream, can't I? Yeah, I know, there's always going to be someone who
says "it won't happen to me" and won't do anything. Then it happens
to them. And they spread it on to everyone else who said "It can't
happen to me!" <sigh> )
Ok, time for me to shut up and you to read the important part of this
message. So, Read the below and... "Let's be safe out there!"
=============== =============== =============== =============== ===========
You can also locate information on resolving this problem at http://www.microsoft.com/security/incident/sasser.asp.
=============== =============== =============== =============== ===========
What is this alert?
- Microsoft has been made aware of a worm identified as
"W32.Sasser.wor m" and it is currently circulating on the Internet.
The worm exploits the Local Security Authority Subsystem Service
(LSASS) vulnerability fixed in Microsoft Security Update MS04-011 on
April 13, 2004.
- Microsoft encourages customers to protect themselves against this
worm by installing Microsoft Security Bulletin MS04-011
<www.microsoft. com/technet/security/bulletin/ms04-011.mspx>
immediately.
- Customers who have enabled the Windows XP Firewall are protected
from the vector this worm attacks, which is TCP Port 139. Most third
party firewalls also block this attack vector by default.
If you have any questions regarding the security updates or its
implementation after reading the above listed bulletin you should
contact Product Support Services in the United States at
1-866-PCSafety (1-866-727-2338). International customers should
contact their local subsidiary.
Thank you,
Microsoft PSS Security Team 14  1703  c.*******@world net.att.net (Chuck Grimsby) wrote in
news:5f******** *************** ***@posting.goo gle.com: As many of you know, I occasionally get messages from the MS team
on various things. Today I got the following, and (personally) I
think it certainly is worthy of passing on.
If you haven't protected yourself from the sasser worm, GET THE
HECK OFF THE NET!! <Grin>
I am continually astonished at the stupidity of the broadband ISPs
who sell users a package that puts their Windows PCs right there on
the Internet with nothing in between them and the wild and woolly
world out there.
If your computer has a broadband connection and your PC is connected
directly to the cable/DSL modem, YOU ARE AN IDIOT.
Buy a Linksys router and plop it in between. This by default uses
NAT so that nothing on the inside of the router is accessible from
outside connections. This means that any exploit that spreads by
initiating a connection from the Internet to your PC cannot infect
your PC.
If you don't want to spend the $50 on that, then install a software
firewall.
I am running my PC connected directly to RoadRunner's network
because of a problem with RR's network (I'm hoping that a change to
RR's network in the next month will restore my ability to run behind
my router). Indeed, I was running in that configuration last August
when Blaster hit.
Did I get infected?
No!
Why?
Because I had a software firewall (Tiny Personal Firewall) that
prevented blaster from connecting. I also had the RPC locator
service disabled so that it wouldn't have worked even if I had not
had a firewall.
I was in California at the time, so it was not a situation where I
could have changed configurations easily (I had VNC set up and
listening for connections, so I was able to connect to my PC and
remote control it to do various things like check my email).
So, I was running in a dangerous configuration, but I was still not
infected.
It used to be that I didn't recommend a software firewall for
dialup, because dialup users didn't get hit by connection requests
(this was based on my own experience of using a software firewall
with a dialup connection; I'd see a probe about once a week), but
that as changed drastically. You probably need a software firewall
with dialup, as well.
No, seriously, get the patch. And a firewall. Even one of the
free personal ones like Zome Alarm or Outpost or whatever, and
then hopefully, someday, all this ... stuff... will stop. (Hey, I
can dream, can't I? Yeah, I know, there's always going to be
someone who says "it won't happen to me" and won't do anything.
Then it happens to them. And they spread it on to everyone else
who said "It can't happen to me!" <sigh> )
This is a case where you should do several things:
1. get the patch.
2. get a firewall.
3. revise your network infrastructure to protect yourself by default
from outside exploits.
In regards to the patches, I don't usually install MS's security
patches because they mostly don't apply to me. But any RPC patches I
download and apply immediately, as those are pretty important. Same
with the LSASS patch (wasn't that what this worm was exploiting?).
But, again, if your PC is unreachable on a NAT subnetwork, it can't
be infected from an outside connection (initiated by a PC outside
your NAT subnetwork -- if there's another PC on your network that's
infected, it can infect all the NAT PCs) even if your PC has none of
the patches and no firewall running.
But don't get too complacent if you have that scenario -- it can't
protect you from worms that get to your PC through other vectors,
like email viruses. A NAT router won't do anything to stop an
outgoing connection from a trojan- or worm-infected PC.
Code Red and Nimda should have been the wake-up calls for everyone
when this came up, just as ILOVEYOU should have been for vbScript
and the Windows Scripting Host.
But most people simply don't pay attention.
And look at the mess we're in.
--
David W. Fenton http://www.bway.net/~dfenton
dfenton at bway dot net http://www.bway.net/~dfassoc
RE/ It used to be that I didn't recommend a software firewall for
dialup, because dialup users didn't get hit by connection requests
(this was based on my own experience of using a software firewall
with a dialup connection; I'd see a probe about once a week), but
that as changed drastically. You probably need a software firewall
with dialup, as well.
I've had nothing but dialup.
My Norton firewall reports a steady stream of SQL Server Worm attempts.
--
PeteCresswell
"(Pete Cresswell)" <x@y.z> wrote in
news:lh******** *************** *********@4ax.c om: RE/It used to be that I didn't recommend a software firewall for
dialup, because dialup users didn't get hit by connection requests
(this was based on my own experience of using a software firewall
with a dialup connection; I'd see a probe about once a week), but
that as changed drastically. You probably need a software firewall
with dialup, as well.
I've had nothing but dialup.
My Norton firewall reports a steady stream of SQL Server Worm
attempts.
But that wasn't the case before Code Red and Nimda. I know, because
I had dialup then.
You certainly need it now.
--
David W. Fenton http://www.bway.net/~dfenton
dfenton at bway dot net http://www.bway.net/~dfassoc c.*******@world net.att.net (Chuck Grimsby) wrote in message news:<5f******* *************** ****@posting.go ogle.com>... As many of you know, I occasionally get messages from the MS team on
various things. Today I got the following, and (personally) I think
it certainly is worthy of passing on.
If you haven't protected yourself from the sasser worm, GET THE HECK
OFF THE NET!! <Grin>
No, seriously, get the patch. And a firewall. Even one of the free
personal ones like Zome Alarm or Outpost or whatever, and then
hopefully, someday, all this ... stuff... will stop. (Hey, I can
dream, can't I? Yeah, I know, there's always going to be someone who
says "it won't happen to me" and won't do anything. Then it happens
to them. And they spread it on to everyone else who said "It can't
happen to me!" <sigh> )
Ok, time for me to shut up and you to read the important part of this
message. So, Read the below and... "Let's be safe out there!"
=============== =============== =============== =============== ===========
You can also locate information on resolving this problem at
http://www.microsoft.com/security/incident/sasser.asp.
=============== =============== =============== =============== ===========
What is this alert?
- Microsoft has been made aware of a worm identified as
"W32.Sasser.wor m" and it is currently circulating on the Internet.
The worm exploits the Local Security Authority Subsystem Service
(LSASS) vulnerability fixed in Microsoft Security Update MS04-011 on
April 13, 2004.
- Microsoft encourages customers to protect themselves against this
worm by installing Microsoft Security Bulletin MS04-011
<www.microsoft. com/technet/security/bulletin/ms04-011.mspx>
immediately.
- Customers who have enabled the Windows XP Firewall are protected
from the vector this worm attacks, which is TCP Port 139. Most third
party firewalls also block this attack vector by default.
If you have any questions regarding the security updates or its
implementation after reading the above listed bulletin you should
contact Product Support Services in the United States at
1-866-PCSafety (1-866-727-2338). International customers should
contact their local subsidiary.
Thank you,
Microsoft PSS Security Team
Looks like Spam, even though the advice is sound...
Google 1-866-727-2338
You'll get http://www.mind.com.my/
Jeffrey Walton
noloader
David W. Fenton wrote: If your computer has a broadband connection and your PC is connected
directly to the cable/DSL modem, YOU ARE AN IDIOT.
Another word of warning, although Windows XP has a built in firewall, it
is not activated during setup so unplug your BB connection when setting
up Windows. I got the Welchia worm this way, didn't really stand a
chance since the worm was there during setup, the first program I
installed was NAV, which detected it.
--
Error reading sig - A)bort R)etry I)nfluence with large hammer
Trevor Best <nospam@localho st> wrote in
news:40******** *************** @auth.uk.news.e asynet.net: David W. Fenton wrote:
If your computer has a broadband connection and your PC is
connected directly to the cable/DSL modem, YOU ARE AN IDIOT.
Another word of warning, although Windows XP has a built in
firewall, it is not activated during setup so unplug your BB
connection when setting up Windows. I got the Welchia worm this
way, didn't really stand a chance since the worm was there during
setup, the first program I installed was NAV, which detected it.
WinXP service pack 2 will roll out a new firewall and will turn it
on by default.
--
David W. Fenton http://www.bway.net/~dfenton
dfenton at bway dot net http://www.bway.net/~dfassoc
David W. Fenton wrote: Trevor Best <nospam@localho st> wrote in
news:40******** *************** @auth.uk.news.e asynet.net:
David W. Fenton wrote:
If your computer has a broadband connection and your PC is
connected directly to the cable/DSL modem, YOU ARE AN IDIOT.
Another word of warning, although Windows XP has a built in
firewall, it is not activated during setup so unplug your BB
connection when setting up Windows. I got the Welchia worm this
way, didn't really stand a chance since the worm was there during
setup, the first program I installed was NAV, which detected it.
WinXP service pack 2 will roll out a new firewall and will turn it
on by default.
But it doesn't fix the installation, which won't have the SP applied
until after installation.
--
Error reading sig - A)bort R)etry I)nfluence with large hammer This thread has been closed and replies have been disabled. Please start a new discussion. Similar topics | |
by: Jason |
last post by:
Hi guys,
I am having problems with VML. I had been working on a problem for
sometime now, and I just recently discovered what the problem really
was: VML was anti-aliasing my rectangles, but I didn't want it too. So
I added the following attribute to my rectangles which solved the
problem somewhat:
antialias: false;
On my monitor, the rectangles are drawn properly now, without
anti-aliasing. However, when I print it to a printer, the
|
by: Maxim Shemanarev |
last post by:
I'd like to announce my project called Anti-Grain Geometry.
http://www.antigrain.com
Anti-Grain Geometry (AGG) is an Open Source, free of charge graphic
library, written in industrially standard C++. The terms and conditions of
use are very simple and described on the License page.
AGG doesn't depend on any graphic API or technology. Basically, you can
think
of AGG as of a rendering engine that produces pixel images in memory from
|
by: rgoya |
last post by:
Peace be with you!
About a year ago, I created a JavaScript which turns
any web site into an online anti-war protest:
http://www.geocities.com/rgoya/javascript/PROTEST.HTM
I have recently revamped the anti-war quotes quiz:
http://www.geocities.com/rgoya/javascript/PROTCODE.HTM#usaquiz
Please feel free to
|
by: Michel |
last post by:
Is there a way I can anti-aliasing a gif to be able to get a
hi-quality resizeable backgroundpicture.
When a GIF of JPG is being resized by the browser you get wurse
pictures because it needs a anti-aliasing. Maybe there is some filter
for it...
Or can I write my own subroutine to do this in client-browsers?
|
by: bissatch |
last post by:
Hi,
I want to display text on screen with anti aliasing to make it appear
smoother. Is it possible to do this in browsers by perhaps applying a
style to it or is it entirely up the the browser? Cheers
Burnsy
| | |
by: Martin Eyles |
last post by:
Hi,
I have some text on a page in a small font. The font size has been OK in
other applications, but in a web browser, the legebility suffers due to the
anti-aliasing. Is there a way to turn off anti-aliasing for small text from
the css, or is there something else I can do to make small text more
legible?
(Note, the text really does have to be small, as that is what is required
for the web-application. It is a system for use on screens...
|
by: Mark Rae |
last post by:
Hi,
Just a general question, really...
Is anyone here using any of Microsoft's latest anti-virus / anti-spyware
software?
http://www.microsoft.com/athome/security/spyware/software/about/productcomparisons.mspx
After the fun and games with WinXP SP2, I'm interested to know if anyone has
had any problems with VS.NET 2005 in general, and ASP.NET 2 in particular...
|
by: Mike |
last post by:
Hi,
I took an interest a few months ago in an anti framebreaker
javascript. All my research told me that it was impossible. If a
website is loaded into a frame/iframe then if it has frame breaking
javascript it will break out of that frame and there is nothing you
can do about it except to screenscrape.
So I decided to challenge that, and I wrote a counter javascript that
forces a page to stay in a frame. It worked after months of...
|
by: adam.timberlake |
last post by:
I was following an article on a website earlier, and although it
outputted the pie chart for me perfectly, I want to make it anti-
aliased somehow. I have linked to the specific article below just in
case you wish to replicate for testing the anti-aliasing. I found the
GD function, imageantialias() but I've tried setting it to true at the
top of the code just after the imagecreate() function - but to no
avail.
Article:...
|
by: Roderik |
last post by:
Hi,
On my website I implemented tooltip alike layers when you hover the
category items in the sidebar on the right.
See: http://www.roderik.net/
The layers that become visible have a opacity value of .8 and contain a
background image. The effect is as expexted.
However, the anti-aliasing is very poor in both Internet Explorer 7 and
|
by: Hystou |
last post by:
Most computers default to English, but sometimes we require a different language, especially when relocating. Forgot to request a specific language before your computer shipped? No problem! You can effortlessly switch the default language on Windows 10 without reinstalling. I'll walk you through it.
First, let's disable language synchronization. With a Microsoft account, language settings sync across devices. To prevent any complications,...
| | |
by: Oralloy |
last post by:
Hello folks,
I am unable to find appropriate documentation on the type promotion of bit-fields when using the generalised comparison operator "<=>".
The problem is that using the GNU compilers, it seems that the internal comparison operator "<=>" tries to promote arguments from unsigned to signed.
This is as boiled down as I can make it.
Here is my compilation command:
g++-12 -std=c++20 -Wnarrowing bit_field.cpp
Here is the code in...
|
by: jinu1996 |
last post by:
In today's digital age, having a compelling online presence is paramount for businesses aiming to thrive in a competitive landscape. At the heart of this digital strategy lies an intricately woven tapestry of website design and digital marketing. It's not merely about having a website; it's about crafting an immersive digital experience that captivates audiences and drives business growth.
The Art of Business Website Design
Your website is...
|
by: Hystou |
last post by:
Overview:
Windows 11 and 10 have less user interface control over operating system update behaviour than previous versions of Windows. In Windows 11 and 10, there is no way to turn off the Windows Update option using the Control Panel or Settings app; it automatically checks for updates and installs any it finds, whether you like it or not. For most users, this new feature is actually very convenient. If you want to control the update process,...
|
by: agi2029 |
last post by:
Let's talk about the concept of autonomous AI software engineers and no-code agents. These AIs are designed to manage the entire lifecycle of a software development project—planning, coding, testing, and deployment—without human intervention. Imagine an AI that can take a project description, break it down, write the code, debug it, and then launch it, all on its own....
Now, this would greatly impact the work of software developers. The idea...
|
by: TSSRALBI |
last post by:
Hello
I'm a network technician in training and I need your help.
I am currently learning how to create and manage the different types of VPNs and I have a question about LAN-to-LAN VPNs.
The last exercise I practiced was to create a LAN-to-LAN VPN between two Pfsense firewalls, by using IPSEC protocols.
I succeeded, with both firewalls in the same network. But I'm wondering if it's possible to do the same thing, with 2 Pfsense firewalls...
|
by: adsilva |
last post by:
A Windows Forms form does not have the event Unload, like VB6. What one acts like?
| | |
by: 6302768590 |
last post by:
Hai team
i want code for transfer the data from one system to another through IP address by using C# our system has to for every 5mins then we have to update the data what the data is updated we have to send another system
|
by: bsmnconsultancy |
last post by:
In today's digital era, a well-designed website is crucial for businesses looking to succeed. Whether you're a small business owner or a large corporation in Toronto, having a strong online presence can significantly impact your brand's success. BSMN Consultancy, a leader in Website Development in Toronto offers valuable insights into creating effective websites that not only look great but also perform exceptionally well. In this comprehensive...
| |
