 |
Server Help Community forums for Subgame, ASSS, and bots
|
Author |
Message |
Mine GO BOOM Hunch Hunch What What

Age:41 Gender: Joined: Aug 01 2002 Posts: 3615 Location: Las Vegas Offline
|
Posted: Wed Sep 27, 2006 3:06 pm Post maybe stupid Post subject: |
 |
|
|
|
K' wrote: | Murhpy, it would appear that your dissatisfaction from ZASS actually be invoked from its largely encompassing services' scale of execution rather than incompetence of service.
And, as we always know, it is more often than not the end-user who be the source of all trouble. |
And what is their target audience? End users that don't know what they are doing. For that case, it fails because it does all these fancy things that they don't know anything about, which cause larger problems. They try to fix it themselves, screw it up more, and then come to others for help after leaving the system in an incomplete state with parts of firewalls and antivirus programs deeply embedded in Windows stacks.
For that target audience, Windows Firewall works perfectly fine. It blocks incoming ports, which is all a firewall really needs to do in most cases. For more advanced audiences, I'd recommend a hardware firewall. If you want a software firewall to do everything on your computer, to allow certain programs specific access, I'd recommend Kerio Personal Firewall version 2.15, their last freeware release. Why? It is 100% free, it can do specific blocking, has options for automatic, ask everytime, block everything, etc. All the 'goodies' of ZoneAlarm firewall without any of the side effects. Kerio is a firewall, acts like a firewall, and only does things that a firewall does. It doesn't do packet shaping, it doesn't edit packets, it doesn't show itself off for the hell of it. Its a personal firewall.
As for grown lazy and bashing the other side? Keep up to date on security patches and sign up for some good mailing lists, and it shouldn't matter what software you run. If something bad happens and there isn't a fix, don't use that application until there is or find one of the many third-party fixes or hacks to prevent it. Do I think all my computers are secured? No. In fact, I'm pretty sure there is at least two different routes that I think someone can get at least user access to on this webserver right now. There are probably five other ways that I don't know exist that someone could probably root the system right now.
But I have a way to check for security breaches that I don't know how they happened. Every week, there are two snapshots taken of the server. One is a simple backup script run inside the environment, another is remotely through the Xen environment, which has direct access to the data from a safe environment. If someone rooted this box, I'd either know because the fail-safes in the system would trigger, or if they were smart enough and bypasses that and setup their own software to hid themselves, the Xen backup will show that, and you cannot hid from that. Completely automated, once a week I do a complete systems check between the two images here at home. Everyday, I do a difference backup on the system. So if a problem happens, I'm at most one week lost, and at best one day lost.
Now for my windows computer? If I would get a virus, the system is dead. You pickup a good 0day virus, it will bypass any software firewall, any antivirus, anything for you to detect it. Hell, it doesn't even need to be a good virus, it could just be Sony acting up again. If a system is infected, be in Windows, Linux, or OSX, the system is compromised and everything on it should be treated as such. A personal firewall won't tell you it failed, because a good virus will not let it. An antivirus won't be able to clean it, because it already screwed around with it. Best you can do is boot from a BartPE environment and scan and try and fix once signatures are released or start anew and only get back data files from the old computer.
Being lazy with a personal firewall? Sure, it is nice to prevent application X from phoning home if you wanted to, but you can do this just as easily from a hardware firewall. Oh noes, how can you find out? Wireshark plus a managed switch is a hell of a lot better than a personal firewall. Then you can see ZoneAlarm's own little phone home that it doesn't tell you about. Anything running on your computer has the ability to not tell others parts about it. Security should be run on systems not compromised by the user systems.
Last attack of the message: Windows v Anything Else security. When you log into Windows, what user account privileges are you using? My bet is on Administrative. Why? Windows started out and continued as a one-user system. To allow old applications to work, most of the time you have to run under an administrative account. Linux and BSD started as multiuser systems, where things were designed from the start to run as normal users unless otherwise needed. That right there is what almost all the security bogges down to.
If you go to a command prompt and type del /f /q /s *.* and tried to use the system afterwards, I'd bet you'd find it difficult. On Linux, if you typed rm -rf / I bet another user on that system would still log in fine and can do most of the same stuff they did before. Oh sure, you could do sudo rm -rf / and wipe the system, but I'm talking about just using the privileges that right now your web browser is using also. Granted, Vista is working on that idea, but the first user they create by default is still an administrator. And with how often security popups occur to click Continue, viruses and spyware will still work just how they did before. My bet is that most people will just disable User Account Control as soon as they find out how.
|
|
Back to top |
|
 |
Smong Server Help Squatter

Joined: 1043048991 Posts: 0x91E Offline
|
Posted: Wed Sep 27, 2006 5:54 pm Post maybe stupid Post subject: |
 |
|
|
|
TLDR
|
|
Back to top |
|
 |
BDwinsAlt Agurus's Posse

Age:34 Gender: Joined: Jun 16 2003 Posts: 1145 Location: Alabama Offline
|
Posted: Wed Sep 27, 2006 6:02 pm Post maybe stupid Post subject: |
 |
|
|
|
Cerium WTH is wrong with you. I was only trying to help. Did you miss out on something during your childhood that made you an asshole? Why do you have to be so fuckin gay.
|
|
Back to top |
|
 |
Cerium Server Help Squatter

Age:42 Gender: Joined: Mar 05 2005 Posts: 807 Location: I will stab you. Offline
|
Posted: Wed Sep 27, 2006 8:40 pm Post maybe stupid Post subject: |
 |
|
|
|
Shut up, stupid. _________________ There are 7 user(s) ignoring me right now.
|
|
Back to top |
|
 |
Mine GO BOOM Hunch Hunch What What

Age:41 Gender: Joined: Aug 01 2002 Posts: 3615 Location: Las Vegas Offline
|
Posted: Wed Sep 27, 2006 9:37 pm Post maybe stupid Post subject: |
 |
|
|
|
This roughly sums up what I said.
Iron Man v Cap America.jpg - 241.05 KB
File downloaded or viewed 9 time(s)
|
|
Back to top |
|
 |
|
|
You can post new topics in this forum You can reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum You cannot attach files in this forum You can download files in this forum
|
Software by php BB © php BB Group Server Load: 221 page(s) served in previous 5 minutes.
|