here, try this test
https://grc.com/x/ne.dll?bh0bkyd2
I have to admit that I have scene tests on blackIce that weren't to
impressive.
Instead of getting all defense, why don't you go check it out and make sure.
Just saying that you watch everything isn't enough. These virus' keep
getting smart and you no longer have to double click some of them, simple
moving over them with your mouse can trigger them. As can new ones that are
embedded in web pages.
So how about we all take a minute and go run this test.
Below are the results I got and I use the sysgate personal firewall, the
only thing it found was the (go figure) Microsoft plug and play, which
leaves a port open. I'm curious to see how the other firewalls stack up on
that one. I think zone alarm even covers that one but its such a pain in the
ass when you are working with websites.
Attempting connection to your computer. . .
Shields UP! is now attempting to contact the Hidden Internet Server
within your PC. It is likely that no one has told you that your own personal
computer may now be functioning as an Internet Server with neither your
knowledge nor your permission. And that it may be serving up all or many of
your personal files for reading, writing, modification and even deletion by
anyone, anywhere, on the Internet!
Your Internet port 139 does not appear to exist!
One or more ports on this system are operating in FULL STEALTH MODE!
Standard Internet behavior requires port connection attempts to be answered
with a success or refusal response. Therefore, only an attempt to connect to
a nonexistent computer results in no response of either kind. But YOUR
computer has DELIBERATELY CHOSEN NOT TO RESPOND (that's very cool!) which
represents advanced computer and port stealthing capabilities. A machine
configured in this fashion is well hardened to Internet NetBIOS attack and
intrusion.
Unable to connect with NetBIOS to your computer.
All attempts to get any information from your computer have FAILED.
(This is very uncommon for a Windows networking-based PC.) Relative to
vulnerabilities from Windows networking, this computer appears to be VERY
SECURE since it is NOT exposing ANY of its internal NetBIOS networking
protocol over the Internet.
----- Original Message -----
From: "Robertson-Ravo, Neil (RX)" <[EMAIL PROTECTED]>
To: "CF-Talk" <[EMAIL PROTECTED]>
Sent: Wednesday, January 22, 2003 5:57 AM
Subject: RE: Goodbye cruel world
> Yep, I trailed through the 12 Billion lines of code :-) LOL
>
> Yep, I have disabled full unrestricted all access to the System SP's at
> present by logins who are not members of the local administrator's group
for
> the MSSQLServer service, users who are not members of the sysadmin fixed
> server role cannot execute xp_cmdshell.
>
> Thanks for all the advice and heads up though.....It good to see that
people
> are aware.
>
>
> -----Original Message-----
> From: Dave Watts [mailto:[EMAIL PROTECTED]]
> Sent: 22 January 2003 11:00
> To: CF-Talk
> Subject: RE: Goodbye cruel world
>
>
> > Your are all talking about past stuff - which has already
> > been documented as being insecure and as a result is the
> > first thing you fix on a new machine.
>
> So, I take it that you've completed your audit of the Windows and IIS
source
> code, and you've found no other vulnerabilities. That's good to know!
>
> Seriously, there are new issues found on a regular basis - there are
plenty
> of smart people banging on Windows and IIS to see what falls out.
> Configuring a server for security isn't just a matter of making sure all
the
> patches are installed - you have to configure the server defensively, so
> that when some new vulnerability comes up, you're less likely to be
> vulnerable since you've disabled that functionality, or applied more
> restrictive ACLs, or whatever.
>
> > I doubt any URL data will be able to fire off an SP, unless
> > it knew the name, username and password of the sp etc.....
>
> Well, if you're running SQL Server, you probably have all of the built-in
> SQL Server stored procedures. My favorite is xp_cmdshell, which lets your
> SQL statement open a command processor on your database server - handy for
> FTPing whatever files you want to install onto your database server, among
> other things.
>
> > I heed your warnings, but I can safely say that my machine
> > is at present 100% secure.
>
> So, you've unplugged it and turned it off. Yes, now it's secure, in that
> case. If not, you can't safely say anything of the sort - that would be
> either ignorant or hubristic.
>
> No server is 100% secure - most of us would happily settle for adequate
> security, or some level of due diligence.
>
> Dave Watts, CTO, Fig Leaf Software
> http://www.figleaf.com/
> voice: (202) 797-5496
> fax: (202) 797-5444
>
>
>
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
Archives: http://www.houseoffusion.com/cf_lists/index.cfm?forumid=4
Subscription:
http://www.houseoffusion.com/cf_lists/index.cfm?method=subscribe&forumid=4
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Structure your ColdFusion code with Fusebox. Get the official book at
http://www.fusionauthority.com/bkinfo.cfm
Unsubscribe:
http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
