yeah, you will get incomming connection attempts...
if your on a dial up with a dynamic IP address you will get even more,
remenants of the last connection (sound like a good title for a film!).
you will also get scanned for trojans, with tcp,udp and icmp packets....
it all very nasty out there on the net at the moment...
best thing to do is to stop any unwanted traffic making connections into
your
system.
the most dangerous trojans are the ones that sit on common port numbers,
such
at 25, 80 and 135,136,137..trojans that occupy this port space are harder
to track down, as you need to actually sniff the packets, and find out
whats inside the payload.... nasty stuff....
again, check your network, see what traffic is flowing in and out of it,
and to where..and ask questions.... why is this date going to there?
why is this machine talking to that machine....and why??
ask questions, believe nothing.... seek the truth...
is this networking , or philosophy?
you decide :-).
Cheers,
Lee
-----Original Message-----
From: Brian TheGreat [mailto:[EMAIL PROTECTED]]
Sent: 10 November 2000 07:17
To: [EMAIL PROTECTED]
Subject: RE: [cc] no security via IP? (interesting article about
Microsoft )
Wow! I didn't mean to stir things up so bad, but I
guess they need stiring up don't they?
Beware, all ye who enter here. There be technical
stuff lying in wait.
I'm getting a new PC because on a non-Xnix based P.C.
a 16meg/pre-MMX 133mhz machine wont hack it any more.
It will be a Gateway I think. What Operating system
advantages / disadvantages will there be when
chooseing Win'98 / WinME / Win NT / Win 2K
I've been out of the loop with everything since this
spring, so I need a recomendation.
(And I can't pick linux. The hardware options [NIC,
graphics, MODEM, ZIP drive, etc.]won't support a
non-M$ operating system. I dare anyone here to try to
order a non-commercial P.C. from gateway that will run
without an M$ operating system) I also am forced to
pick a microsoft office package right up front. I'll
try to get rid of it and the ISP bundle. (BellSouth
has residential ADSL up to 1,500kbps for $40-$50/mo.
and they throw in the adapter for free. I like the no
activation charge thing... :-) It's dynamic though
:-(
Guess what non-windows PCs can use BellSouths' ADSL
service... None. (If you have a MAC you don't need
windoze for the service though)
I keep getting hits against my firewall. Hey Lee, How
do I know what all those ports are?
like: (The firewall has blocked Internet access to
your computer (TCP Port 30529) from 128.11.68.249
(HTTP).
Time: 11/9/00 15:22:50)
Thankyou ZoneAlarm. :-)
What ever became of the P-III chip ID issue by the
way?
On cookies: What I do is:
1. boot to DOS
2. <cd c:\windows\profiles\yourprofile~1\tempor~1>
3. <dir/a/s/p>
yeilds: 4 hidden cache directories and index.dat
4. edit index.dat
I highlight the whole file and delete all but the
first line where it says what version it is.
(I write protected them, but windows about died trying
to use them anyways and not being able to.)
5. I go into the 4 stealthed cache directories via
command line (write them down when you find them. They
will be different every time. Not random though, last
time I had: \01234nop, 8xyz012r, phla706s, h4gas5cz in
one profile, and \x1y34567, 2r3h3rkf, udovqz4b,
o1e345y3 in another. I think they are related to temp
files that I find deeper in the recycle bin, like
2r3h3rkf.tmp [norton utilities 2.0 (yes, I know there
is some kind of bug with that norton xbin)] another
thing I notice, is random files left in the caches
even though you delete files and clear history with IE
4.0 before booting to DOS. They are files like
this.htm and that.gif and the_other.js
I found a bunch of .zip and a multi-MEG .exe called
linker something exe in there last time.
6. delete the *.htm, *.css, etc. from each of them.
My system is sort of weird, so I don't know if any of
this is usual. I don't dare touch (not a unix touch)
the user.dat and system.dat files because I want to
keep all the windows sizes/locations, icon placings,
etc. and I'm very fearful of the infamous file
devouering, work destroying monster called fdisk till
I get my P-3 which I will order with twin drives. (one
drive for the bank safe deposit box and the other for
the drive slot.)
I appreciate all the free publicity with that long
message I wrote being posted and posted again, but
feel free to snip such a thing short when not used as
is apppropriate for good list/news netiquet.
Thanks everyone for all the info. You've all taught me
so much.
Brian Frasier.
NorthEast Digital.
<many people generously wrote neat things such as
this:>
--- Lee Hughes <[EMAIL PROTECTED]> wrote:
> good Idea, but...you only fliter on source
> tcp/udp/icmp port/portocol
> number.
> not on source IP address :-(..
> that's what I meant....but thanks anayway.
> Lee
<enormous snip>
__________________________________________________
Do You Yahoo!?
Thousands of Stores. Millions of Products. All in one Place.
http://shopping.yahoo.com/
**********Footer message for &LIST mailing list***********
To unsubscribe from cybercafe, send mailto:[EMAIL PROTECTED]
(NOT to the list itself .. cybercafe@....). In that e-mail type:
unsubscribe cybercafe <your e-mail address (optional)>
end
for details: <http://www.owt.com/users/jlewis/unsub_faq.html>
**********Footer message for &LIST mailing list***********
To unsubscribe from cybercafe, send mailto:[EMAIL PROTECTED]
(NOT to the list itself .. cybercafe@....). In that e-mail type:
unsubscribe cybercafe <your e-mail address (optional)>
end
for details: <http://www.owt.com/users/jlewis/unsub_faq.html>
