Re: Vista (was: CrystalTech outage?)
On Thursday 30 November 2006 20:35, John C. Bland II wrote: That's not bad for One Care. Think about it...other than geeks, how often do people buy new virus software? Buy ? Never. I had Norton because my bank gave it away for free, but it got s bloated and slow, and then they wanted money of me, so I moved to AVG. As did everyone I do the 'friendly geek' tech support for. -- Tom Chiverton Helping to administratively deliver global bandwidth This email is sent for and on behalf of Halliwells LLP. Halliwells LLP is a limited liability partnership registered in England and Wales under registered number OC307980 whose registered office address is at St James's Court Brown Street Manchester M2 2JF. A list of members is available for inspection at the registered office. Any reference to a partner in relation to Halliwells LLP means a member of Halliwells LLP. Regulated by the Law Society. CONFIDENTIALITY This email is intended only for the use of the addressee named above and may be confidential or legally privileged. If you are not the addressee you must not read it and must not use any information contained in nor copy it nor inform any person other than Halliwells LLP or the addressee of its existence or contents. If you have received this email in error please delete it and notify Halliwells LLP IT Department on 0870 365 8008. For more information about Halliwells LLP visit www.halliwells.com. ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:262392 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4
Re: Vista (was: CrystalTech outage?)
lol. That's how it goes. Force others to use what we like. I do it often with my family (who hits me up like I own Geek Squad). :-) On 12/1/06, Tom Chiverton [EMAIL PROTECTED] wrote: On Thursday 30 November 2006 20:35, John C. Bland II wrote: That's not bad for One Care. Think about it...other than geeks, how often do people buy new virus software? Buy ? Never. I had Norton because my bank gave it away for free, but it got s bloated and slow, and then they wanted money of me, so I moved to AVG. As did everyone I do the 'friendly geek' tech support for. -- Tom Chiverton Helping to administratively deliver global bandwidth This email is sent for and on behalf of Halliwells LLP. Halliwells LLP is a limited liability partnership registered in England and Wales under registered number OC307980 whose registered office address is at St James's Court Brown Street Manchester M2 2JF. A list of members is available for inspection at the registered office. Any reference to a partner in relation to Halliwells LLP means a member of Halliwells LLP. Regulated by the Law Society. CONFIDENTIALITY This email is intended only for the use of the addressee named above and may be confidential or legally privileged. If you are not the addressee you must not read it and must not use any information contained in nor copy it nor inform any person other than Halliwells LLP or the addressee of its existence or contents. If you have received this email in error please delete it and notify Halliwells LLP IT Department on 0870 365 8008. For more information about Halliwells LLP visit www.halliwells.com. ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:262500 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
Re: Vista (was: CrystalTech outage?)
On Thursday 30 November 2006 01:04, John C. Bland II wrote: An app can't auto-elevate itself. It runs in the sandbox given and if it Is this like the Java (etc) sandbox model ? The one that was, ya know, *software* and so had *bugs* that meant you could escape ? Even chroot on *nix used to have issues. needs to do something with elevated needs, UAC will stop it and ask you if it is ok. Unless UAC has a bug. Which it almost certainly has. definitions. Vista is the OS. If Vista has a hole, MSFT will fix it. Or not. It's not like they have a good track record of fixing (promptly) things. -- Tom Chiverton Helping to simultaneously optimize edge-of-your-seat designs This email is sent for and on behalf of Halliwells LLP. Halliwells LLP is a limited liability partnership registered in England and Wales under registered number OC307980 whose registered office address is at St James's Court Brown Street Manchester M2 2JF. A list of members is available for inspection at the registered office. Any reference to a partner in relation to Halliwells LLP means a member of Halliwells LLP. Regulated by the Law Society. CONFIDENTIALITY This email is intended only for the use of the addressee named above and may be confidential or legally privileged. If you are not the addressee you must not read it and must not use any information contained in nor copy it nor inform any person other than Halliwells LLP or the addressee of its existence or contents. If you have received this email in error please delete it and notify Halliwells LLP IT Department on 0870 365 8008. For more information about Halliwells LLP visit www.halliwells.com. ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:262196 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
RE: Vista (was: CrystalTech outage?)
One last thing (Jacob Munson), Vista can't be compared to a virus protection application (Norton's, etc). That is what they do...manage virus definitions. Vista is the OS. If Vista has a hole, MSFT will fix it. If a new virus comes out, MSFT will update One Care's virus definitions (a virus protecting program). I think you got confused, John. I was NOT comparing Vista to Virus protection, but that is what Microsoft and Dave were doing, but stating that you DON'T need virus protection with Vista. Their argument was that Vista is strong enough to protect against ALL future virus attacks, and therefore antivirus software is redundant and unnecessary. I strongly disagree, and from what you said, I think you and I are on the same page here. Now, was Microsoft including One Care in their blanket statement that Vista won't need virus protection? I don't know. Maybe not, and their whole point was that you don't need /3rd party/ virus protection. But I thought I heard somewhere that Microsoft is not going to include their virus scanner with Vista by default? -- This transmission may contain information that is privileged, confidential and/or exempt from disclosure under applicable law. If you are not the intended recipient, you are hereby notified that any disclosure, copying, distribution, or use of the information contained herein (including any reliance thereon) is STRICTLY PROHIBITED. If you received this transmission in error, please immediately contact the sender and destroy the material in its entirety, whether in electronic or hard copy format. Thank you. == EMF idahopower.com made the previous annotations. ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:262209 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
RE: Vista (was: CrystalTech outage?)
Their argument was that Vista is strong enough to protect against ALL future virus attacks, and therefore antivirus software is redundant and unnecessary. My argument is that preventing a user from running applications is a more secure approach than letting users run applications, but checking those applications' safety at runtime against an existing list of known bad applications. Therefore, if I were to choose a single mechanism for securing desktops, it would be the former rather than the latter. To the extent that Vista makes this easier, I'm all for it, but the concept of least privileges is not a new thing, you know. Windows historically has had a very strong security model; unfortunately, very few people actually use it! I suspect that the vast majority of Windows users right here on this list fall into this category. If you're running as an Administrator, and you have antivirus software installed, that's you. I submit that this is far more dangerous than running as a restricted user without antivirus software. It's easier, I think, so I understand why people do this. But relying on antivirus software for computer safety is a big mistake. Of course, you can do both. But antivirus software introduces its own problems. Here's Eugene Kaspersky's take on those problems: http://www.viruslist.com/en/analysis?pubid=174405517 You might recognize his name; he's the director of Kaspersky Labs, a well-known AV vendor (http://www.kaspersky.com/). I would assume he's biased in favor of antivirus software, but the article is a good read. Dave Watts, CTO, Fig Leaf Software http://www.figleaf.com/ Fig Leaf Software provides the highest caliber vendor-authorized instruction at our training centers in Washington DC, Atlanta, Chicago, Baltimore, Northern Virginia, or on-site at your location. Visit http://training.figleaf.com/ for more information! ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:262243 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
Re: Vista (was: CrystalTech outage?)
On Thursday 30 November 2006 15:31, Munson, Jacob wrote: protection. But I thought I heard somewhere that Microsoft is not going to include their virus scanner with Vista by default? Last I heard, they weren't going to (URL up thread). Instead, you'll get a box that flashes up all* the time saying 'your computer is about to explode, please pay microsoft some more money over at onecare to make it stop'. Needless to say, hopefully, the EU will put a stop to it, at least over here (I don't hold out much hope for you US folks), before MS does a Netscape on yet another part of the IT industry. *Again*. -- Tom Chiverton Helping to confidentially optimize transparent eyeballs This email is sent for and on behalf of Halliwells LLP. Halliwells LLP is a limited liability partnership registered in England and Wales under registered number OC307980 whose registered office address is at St James's Court Brown Street Manchester M2 2JF. A list of members is available for inspection at the registered office. Any reference to a partner in relation to Halliwells LLP means a member of Halliwells LLP. Regulated by the Law Society. CONFIDENTIALITY This email is intended only for the use of the addressee named above and may be confidential or legally privileged. If you are not the addressee you must not read it and must not use any information contained in nor copy it nor inform any person other than Halliwells LLP or the addressee of its existence or contents. If you have received this email in error please delete it and notify Halliwells LLP IT Department on 0870 365 8008. For more information about Halliwells LLP visit www.halliwells.com. ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:262247 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4
Re: Vista (was: CrystalTech outage?)
On Thursday 30 November 2006 16:31, Dave Watts wrote: Windows historically has had a very strong security model :giggles and thinks of the Windows 98 login screen. They one you bypassed by pressing escape. -- Tom Chiverton Helping to administratively repurpose interdependent networks This email is sent for and on behalf of Halliwells LLP. Halliwells LLP is a limited liability partnership registered in England and Wales under registered number OC307980 whose registered office address is at St James's Court Brown Street Manchester M2 2JF. A list of members is available for inspection at the registered office. Any reference to a partner in relation to Halliwells LLP means a member of Halliwells LLP. Regulated by the Law Society. CONFIDENTIALITY This email is intended only for the use of the addressee named above and may be confidential or legally privileged. If you are not the addressee you must not read it and must not use any information contained in nor copy it nor inform any person other than Halliwells LLP or the addressee of its existence or contents. If you have received this email in error please delete it and notify Halliwells LLP IT Department on 0870 365 8008. For more information about Halliwells LLP visit www.halliwells.com. ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:262248 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
RE: Vista (was: CrystalTech outage?)
Windows historically has had a very strong security model :giggles and thinks of the Windows 98 login screen. They one you bypassed by pressing escape. Windows NT, ok? I never used Windows 98/95, so I don't even think about those. Dave Watts, CTO, Fig Leaf Software http://www.figleaf.com/ Fig Leaf Software provides the highest caliber vendor-authorized instruction at our training centers in Washington DC, Atlanta, Chicago, Baltimore, Northern Virginia, or on-site at your location. Visit http://training.figleaf.com/ for more information! ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:262251 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
Re: Vista (was: CrystalTech outage?)
On Thursday 30 November 2006 17:33, Dave Watts wrote: :giggles and thinks of the Windows 98 login screen. They one you bypassed by pressing escape. Windows NT, ok? I never used Windows 98/95, so I don't even think about those. :-) -- Tom Chiverton Helping to autoschediastically syndicate visionary e-markets This email is sent for and on behalf of Halliwells LLP. Halliwells LLP is a limited liability partnership registered in England and Wales under registered number OC307980 whose registered office address is at St James's Court Brown Street Manchester M2 2JF. A list of members is available for inspection at the registered office. Any reference to a partner in relation to Halliwells LLP means a member of Halliwells LLP. Regulated by the Law Society. CONFIDENTIALITY This email is intended only for the use of the addressee named above and may be confidential or legally privileged. If you are not the addressee you must not read it and must not use any information contained in nor copy it nor inform any person other than Halliwells LLP or the addressee of its existence or contents. If you have received this email in error please delete it and notify Halliwells LLP IT Department on 0870 365 8008. For more information about Halliwells LLP visit www.halliwells.com. ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:262252 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
RE: Vista (was: CrystalTech outage?)
My argument is that preventing a user from running applications is a more secure approach than letting users run applications, but checking those applications' safety at runtime against an existing list of known bad applications. Therefore, if I were to choose a single mechanism for securing desktops, it would be the former rather than the latter. To the extent that Vista makes this easier, I'm all for it, but the concept of least privileges is not a new thing, you know. Windows historically has had a very strong security model; unfortunately, very few people actually use it! I agree, that approach is a lot more secure. That's why Unix and it's variants has done it that way for decades. ;) I suspect that the vast majority of Windows users right here on this list fall into this category. If you're running as an Administrator, and you have antivirus software installed, that's you. When it comes to Windows, I am in that boat, but that's because people have told me that a lot of software just won't run if you're not an admin. And unlike Linux, there's no 'sudo' that works all the time in Windows. I've tried the 'runas' thingy you can get off resource kit CDs, but it didn't work for some things. However, word is that Windows Vista fixes all this, so when I get into that OS, I'll definitely run as a restricted user. I do that in Linux, and I also do it with Databases I administer. EMF idahopower.com made the following annotations. -- This transmission may contain information that is privileged, confidential and/or exempt from disclosure under applicable law. If you are not the intended recipient, you are hereby notified that any disclosure, copying, distribution, or use of the information contained herein (including any reliance thereon) is STRICTLY PROHIBITED. If you received this transmission in error, please immediately contact the sender and destroy the material in its entirety, whether in electronic or hard copy format. Thank you. == ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:262257 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4
RE: Vista (was: CrystalTech outage?)
When it comes to Windows, I am in that boat, but that's because people have told me that a lot of software just won't run if you're not an admin. And unlike Linux, there's no 'sudo' that works all the time in Windows. I've tried the 'runas' thingy you can get off resource kit CDs, but it didn't work for some things. The runas command is part of the operating system since Windows 2000, actually. And, it actually does work all the time, in that it always lets you run a process with a specific set of credentials. Unfortunately, some software doesn't work if you're not an admin. Other software requires that you set ACLs properly if you want to run it without being an admin (just like Unix). Sometimes, you have to figure out what those ACLs might be. Fortunately, though, if you want to run as a non-privileged user on Windows XP, it is doable and practical for most knowledgeable users. I've been doing it for quite some time, and the only real problem I've had is that it takes me two or three steps, sometimes, to do something that I'd have previously done in a single step. However, word is that Windows Vista fixes all this, so when I get into that OS, I'll definitely run as a restricted user. That's really what I was getting at. The best thing you can do to improve user security is to run as a non-privileged user. Anything that makes this easier is more important and more valuable than any other single thing you can do to secure your computer. Dave Watts, CTO, Fig Leaf Software http://www.figleaf.com/ Fig Leaf Software provides the highest caliber vendor-authorized instruction at our training centers in Washington DC, Atlanta, Chicago, Baltimore, Northern Virginia, or on-site at your location. Visit http://training.figleaf.com/ for more information! ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:262268 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4
RE: Vista (was: CrystalTech outage?)
Fortunately, though, if you want to run as a non-privileged user on Windows XP, it is doable and practical for most knowledgeable users. I've been doing it for quite some time, and the only real problem I've had is that it takes me two or three steps, sometimes, to do something that I'd have previously done in a single step. Yeah, it's the same in Linux. Doing any system admin type stuff, from changing network settings to installing software, all takes at least one extra step. Most of the stuff I run into requires just entering the admin password, and you're good to go (this option is using 'sudo'). On occasion I have to switch to an admin user, but Linux makes this easy (just type 'su' at the command prompt, and after entering the correct password, you're now in a full admin user environment, command-line only of course.) I hope Vista is that easy. EMF idahopower.com made the following annotations. -- This transmission may contain information that is privileged, confidential and/or exempt from disclosure under applicable law. If you are not the intended recipient, you are hereby notified that any disclosure, copying, distribution, or use of the information contained herein (including any reliance thereon) is STRICTLY PROHIBITED. If you received this transmission in error, please immediately contact the sender and destroy the material in its entirety, whether in electronic or hard copy format. Thank you. == ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:262272 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4
Re: Vista (was: CrystalTech outage?)
Ahh...my bad Jacob. Vista is more secure though so I understand what Dave and them are saying. If the (virus) app can't do something crazy (edit the registry, delete files, etc) without user approval, then the virus is dead WITHOUT the users input (which is the biggest problem but at least they will be notified of potential issues now). No, One Care is separate and costs. On 11/30/06, Munson, Jacob [EMAIL PROTECTED] wrote: One last thing (Jacob Munson), Vista can't be compared to a virus protection application (Norton's, etc). That is what they do...manage virus definitions. Vista is the OS. If Vista has a hole, MSFT will fix it. If a new virus comes out, MSFT will update One Care's virus definitions (a virus protecting program). I think you got confused, John. I was NOT comparing Vista to Virus protection, but that is what Microsoft and Dave were doing, but stating that you DON'T need virus protection with Vista. Their argument was that Vista is strong enough to protect against ALL future virus attacks, and therefore antivirus software is redundant and unnecessary. I strongly disagree, and from what you said, I think you and I are on the same page here. Now, was Microsoft including One Care in their blanket statement that Vista won't need virus protection? I don't know. Maybe not, and their whole point was that you don't need /3rd party/ virus protection. But I thought I heard somewhere that Microsoft is not going to include their virus scanner with Vista by default? -- This transmission may contain information that is privileged, confidential and/or exempt from disclosure under applicable law. If you are not the intended recipient, you are hereby notified that any disclosure, copying, distribution, or use of the information contained herein (including any reliance thereon) is STRICTLY PROHIBITED. If you received this transmission in error, please immediately contact the sender and destroy the material in its entirety, whether in electronic or hard copy format. Thank you. == EMF idahopower.com made the previous annotations. ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:262274 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
Re: Vista (was: CrystalTech outage?)
One Care has a 90-day free trial and after the trial, the service is marketed at $49/year, so about $4 per month. Considering that Symantec et all charge for the live update service after 18 months, you can probably break about even. You can avoid the liveupdate cost by upgrading your software every 18 months which is not uncommon as you want the most current methodologies to try at least counteract the known viruses available. One Care as been pretty lightweight thus far. I disliked Symantec in the past as it kept thinking Java was a virus. The notifications for applications requesting access to the internet have been non-evasive unlike Symantec which injects a graphic window to prompt you. If you are in a full screen application, you can get a rude awakening. Teddy On 11/30/06, John C. Bland II [EMAIL PROTECTED] wrote: Ahh...my bad Jacob. Vista is more secure though so I understand what Dave and them are saying. If the (virus) app can't do something crazy (edit the registry, delete files, etc) without user approval, then the virus is dead WITHOUT the users input (which is the biggest problem but at least they will be notified of potential issues now). No, One Care is separate and costs. On 11/30/06, Munson, Jacob [EMAIL PROTECTED] wrote: One last thing (Jacob Munson), Vista can't be compared to a virus protection application (Norton's, etc). That is what they do...manage virus definitions. Vista is the OS. If Vista has a hole, MSFT will fix it. If a new virus comes out, MSFT will update One Care's virus definitions (a virus protecting program). I think you got confused, John. I was NOT comparing Vista to Virus protection, but that is what Microsoft and Dave were doing, but stating that you DON'T need virus protection with Vista. Their argument was that Vista is strong enough to protect against ALL future virus attacks, and therefore antivirus software is redundant and unnecessary. I strongly disagree, and from what you said, I think you and I are on the same page here. Now, was Microsoft including One Care in their blanket statement that Vista won't need virus protection? I don't know. Maybe not, and their whole point was that you don't need /3rd party/ virus protection. But I thought I heard somewhere that Microsoft is not going to include their virus scanner with Vista by default? -- This transmission may contain information that is privileged, confidential and/or exempt from disclosure under applicable law. If you are not the intended recipient, you are hereby notified that any disclosure, copying, distribution, or use of the information contained herein (including any reliance thereon) is STRICTLY PROHIBITED. If you received this transmission in error, please immediately contact the sender and destroy the material in its entirety, whether in electronic or hard copy format. Thank you. == EMF idahopower.com made the previous annotations. ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:262281 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
Re: Vista (was: CrystalTech outage?)
That's not bad for One Care. Think about it...other than geeks, how often do people buy new virus software? My mom had Norton's 2001 or 2002 until she brought her PC down on her last trip. Her virus definitions weren't updated because she didn't understand what they were trying to make her pay. So, old software and no updated definitions. One Care gets you the updated software and definitions all under 1 umbrella fee, right? Not bad. I wonder how they'll handle One Care v2 costs (have to pay again or auto-update). On 11/30/06, Teddy Payne [EMAIL PROTECTED] wrote: One Care has a 90-day free trial and after the trial, the service is marketed at $49/year, so about $4 per month. Considering that Symantec et all charge for the live update service after 18 months, you can probably break about even. You can avoid the liveupdate cost by upgrading your software every 18 months which is not uncommon as you want the most current methodologies to try at least counteract the known viruses available. One Care as been pretty lightweight thus far. I disliked Symantec in the past as it kept thinking Java was a virus. The notifications for applications requesting access to the internet have been non-evasive unlike Symantec which injects a graphic window to prompt you. If you are in a full screen application, you can get a rude awakening. Teddy On 11/30/06, John C. Bland II [EMAIL PROTECTED] wrote: Ahh...my bad Jacob. Vista is more secure though so I understand what Dave and them are saying. If the (virus) app can't do something crazy (edit the registry, delete files, etc) without user approval, then the virus is dead WITHOUT the users input (which is the biggest problem but at least they will be notified of potential issues now). No, One Care is separate and costs. On 11/30/06, Munson, Jacob [EMAIL PROTECTED] wrote: One last thing (Jacob Munson), Vista can't be compared to a virus protection application (Norton's, etc). That is what they do...manage virus definitions. Vista is the OS. If Vista has a hole, MSFT will fix it. If a new virus comes out, MSFT will update One Care's virus definitions (a virus protecting program). I think you got confused, John. I was NOT comparing Vista to Virus protection, but that is what Microsoft and Dave were doing, but stating that you DON'T need virus protection with Vista. Their argument was that Vista is strong enough to protect against ALL future virus attacks, and therefore antivirus software is redundant and unnecessary. I strongly disagree, and from what you said, I think you and I are on the same page here. Now, was Microsoft including One Care in their blanket statement that Vista won't need virus protection? I don't know. Maybe not, and their whole point was that you don't need /3rd party/ virus protection. But I thought I heard somewhere that Microsoft is not going to include their virus scanner with Vista by default? -- This transmission may contain information that is privileged, confidential and/or exempt from disclosure under applicable law. If you are not the intended recipient, you are hereby notified that any disclosure, copying, distribution, or use of the information contained herein (including any reliance thereon) is STRICTLY PROHIBITED. If you received this transmission in error, please immediately contact the sender and destroy the material in its entirety, whether in electronic or hard copy format. Thank you. == EMF idahopower.com made the previous annotations. ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:262286 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4
Re: Vista (was: CrystalTech outage?)
The One Care is a member service, so it has your credentials and your account identifier. One Car was made to avoid installing new software as it has a software upate service similar to the windows update. Also, there is a member identifier that should allow you to use the product with Vista if you upgrade your windows XP to Vista. I could not find the marketing materials for the Vista version or if it pre-deployed with Vista or not. My laptop is Vista capable, so I may upgrade after the proverbial first service pack is released. Teddy On 11/30/06, John C. Bland II [EMAIL PROTECTED] wrote: That's not bad for One Care. Think about it...other than geeks, how often do people buy new virus software? My mom had Norton's 2001 or 2002 until she brought her PC down on her last trip. Her virus definitions weren't updated because she didn't understand what they were trying to make her pay. So, old software and no updated definitions. One Care gets you the updated software and definitions all under 1 umbrella fee, right? Not bad. I wonder how they'll handle One Care v2 costs (have to pay again or auto-update). On 11/30/06, Teddy Payne [EMAIL PROTECTED] wrote: One Care has a 90-day free trial and after the trial, the service is marketed at $49/year, so about $4 per month. Considering that Symantec et all charge for the live update service after 18 months, you can probably break about even. You can avoid the liveupdate cost by upgrading your software every 18 months which is not uncommon as you want the most current methodologies to try at least counteract the known viruses available. One Care as been pretty lightweight thus far. I disliked Symantec in the past as it kept thinking Java was a virus. The notifications for applications requesting access to the internet have been non-evasive unlike Symantec which injects a graphic window to prompt you. If you are in a full screen application, you can get a rude awakening. Teddy On 11/30/06, John C. Bland II [EMAIL PROTECTED] wrote: Ahh...my bad Jacob. Vista is more secure though so I understand what Dave and them are saying. If the (virus) app can't do something crazy (edit the registry, delete files, etc) without user approval, then the virus is dead WITHOUT the users input (which is the biggest problem but at least they will be notified of potential issues now). No, One Care is separate and costs. On 11/30/06, Munson, Jacob [EMAIL PROTECTED] wrote: One last thing (Jacob Munson), Vista can't be compared to a virus protection application (Norton's, etc). That is what they do...manage virus definitions. Vista is the OS. If Vista has a hole, MSFT will fix it. If a new virus comes out, MSFT will update One Care's virus definitions (a virus protecting program). I think you got confused, John. I was NOT comparing Vista to Virus protection, but that is what Microsoft and Dave were doing, but stating that you DON'T need virus protection with Vista. Their argument was that Vista is strong enough to protect against ALL future virus attacks, and therefore antivirus software is redundant and unnecessary. I strongly disagree, and from what you said, I think you and I are on the same page here. Now, was Microsoft including One Care in their blanket statement that Vista won't need virus protection? I don't know. Maybe not, and their whole point was that you don't need /3rd party/ virus protection. But I thought I heard somewhere that Microsoft is not going to include their virus scanner with Vista by default? -- This transmission may contain information that is privileged, confidential and/or exempt from disclosure under applicable law. If you are not the intended recipient, you are hereby notified that any disclosure, copying, distribution, or use of the information contained herein (including any reliance thereon) is STRICTLY PROHIBITED. If you received this transmission in error, please immediately contact the sender and destroy the material in its entirety, whether in electronic or hard copy format. Thank you. == EMF idahopower.com made the previous annotations. ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:262293 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm
Re: Vista (was: CrystalTech outage?)
No, it doesn't come on Vista. Well, RC2 didn't have it. One Care 1.5 is for Vista. It is currently in beta. On 11/30/06, Teddy Payne [EMAIL PROTECTED] wrote: The One Care is a member service, so it has your credentials and your account identifier. One Car was made to avoid installing new software as it has a software upate service similar to the windows update. Also, there is a member identifier that should allow you to use the product with Vista if you upgrade your windows XP to Vista. I could not find the marketing materials for the Vista version or if it pre-deployed with Vista or not. My laptop is Vista capable, so I may upgrade after the proverbial first service pack is released. Teddy On 11/30/06, John C. Bland II [EMAIL PROTECTED] wrote: That's not bad for One Care. Think about it...other than geeks, how often do people buy new virus software? My mom had Norton's 2001 or 2002 until she brought her PC down on her last trip. Her virus definitions weren't updated because she didn't understand what they were trying to make her pay. So, old software and no updated definitions. One Care gets you the updated software and definitions all under 1 umbrella fee, right? Not bad. I wonder how they'll handle One Care v2 costs (have to pay again or auto-update). On 11/30/06, Teddy Payne [EMAIL PROTECTED] wrote: One Care has a 90-day free trial and after the trial, the service is marketed at $49/year, so about $4 per month. Considering that Symantec et all charge for the live update service after 18 months, you can probably break about even. You can avoid the liveupdate cost by upgrading your software every 18 months which is not uncommon as you want the most current methodologies to try at least counteract the known viruses available. One Care as been pretty lightweight thus far. I disliked Symantec in the past as it kept thinking Java was a virus. The notifications for applications requesting access to the internet have been non-evasive unlike Symantec which injects a graphic window to prompt you. If you are in a full screen application, you can get a rude awakening. Teddy On 11/30/06, John C. Bland II [EMAIL PROTECTED] wrote: Ahh...my bad Jacob. Vista is more secure though so I understand what Dave and them are saying. If the (virus) app can't do something crazy (edit the registry, delete files, etc) without user approval, then the virus is dead WITHOUT the users input (which is the biggest problem but at least they will be notified of potential issues now). No, One Care is separate and costs. On 11/30/06, Munson, Jacob [EMAIL PROTECTED] wrote: One last thing (Jacob Munson), Vista can't be compared to a virus protection application (Norton's, etc). That is what they do...manage virus definitions. Vista is the OS. If Vista has a hole, MSFT will fix it. If a new virus comes out, MSFT will update One Care's virus definitions (a virus protecting program). I think you got confused, John. I was NOT comparing Vista to Virus protection, but that is what Microsoft and Dave were doing, but stating that you DON'T need virus protection with Vista. Their argument was that Vista is strong enough to protect against ALL future virus attacks, and therefore antivirus software is redundant and unnecessary. I strongly disagree, and from what you said, I think you and I are on the same page here. Now, was Microsoft including One Care in their blanket statement that Vista won't need virus protection? I don't know. Maybe not, and their whole point was that you don't need /3rd party/ virus protection. But I thought I heard somewhere that Microsoft is not going to include their virus scanner with Vista by default? -- This transmission may contain information that is privileged, confidential and/or exempt from disclosure under applicable law. If you are not the intended recipient, you are hereby notified that any disclosure, copying, distribution, or use of the information contained herein (including any reliance thereon) is STRICTLY PROHIBITED. If you received this transmission in error, please immediately contact the sender and destroy the material in its entirety, whether in electronic or hard copy format. Thank you. == EMF idahopower.com made the previous annotations. ~| Introducing the Fusion Authority Quarterly Update. 80
Re: Vista (was: CrystalTech outage?)
On Tuesday 28 November 2006 17:06, Dave Watts wrote: Vista simply makes that a little simpler, by requiring user intervention for administrative actions Unless it's turned off. Or broken. Or there's an issue with a privileged network deamon. Or... If you can't accidentally run executables, you can't accidentally turn your machine into a spambot. As I said, it's not what users do that bothers me, it's the non-user related holes. from zombie Windows machines, you should hope that everyone upgrades to Vista as soon as it's available. Either it'll work, and their machines won't be zombies, or it won't, and their machines won't run at all. I hear the 2nd is a feature... -- Tom Chiverton Helping to appropriately network synergistic eyeballs This email is sent for and on behalf of Halliwells LLP. Halliwells LLP is a limited liability partnership registered in England and Wales under registered number OC307980 whose registered office address is at St James's Court Brown Street Manchester M2 2JF. A list of members is available for inspection at the registered office. Any reference to a partner in relation to Halliwells LLP means a member of Halliwells LLP. Regulated by the Law Society. CONFIDENTIALITY This email is intended only for the use of the addressee named above and may be confidential or legally privileged. If you are not the addressee you must not read it and must not use any information contained in nor copy it nor inform any person other than Halliwells LLP or the addressee of its existence or contents. If you have received this email in error please delete it and notify Halliwells LLP IT Department on 0870 365 8008. For more information about Halliwells LLP visit www.halliwells.com. ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:261976 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
Re: Vista (was: CrystalTech outage?)
On Wednesday 29 November 2006 00:33, John C. Bland II wrote: Yeah, but some of the best hackers couldn't get through. Only 1 did, which is amazing taking the history of Windows. The best hackers (in terms of success rate) work for spammers or crime syndicates. They have an incentive to keep quiet about problems with Vista until it is (widely) deployed. -- Tom Chiverton Helping to administratively create guinine relationships This email is sent for and on behalf of Halliwells LLP. Halliwells LLP is a limited liability partnership registered in England and Wales under registered number OC307980 whose registered office address is at St James's Court Brown Street Manchester M2 2JF. A list of members is available for inspection at the registered office. Any reference to a partner in relation to Halliwells LLP means a member of Halliwells LLP. Regulated by the Law Society. CONFIDENTIALITY This email is intended only for the use of the addressee named above and may be confidential or legally privileged. If you are not the addressee you must not read it and must not use any information contained in nor copy it nor inform any person other than Halliwells LLP or the addressee of its existence or contents. If you have received this email in error please delete it and notify Halliwells LLP IT Department on 0870 365 8008. For more information about Halliwells LLP visit www.halliwells.com. ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:261977 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
Re: Vista (was: CrystalTech outage?)
On Wednesday 29 November 2006 01:05, Snake wrote: Linux users would argue otherwise :-) That's odd, because my old public DNS server was attacked, and my new Sendmail install bounces at lest one a day. Never mind all the funny things in the Apache logs. True, most of them are IIS attacks :-) -- Tom Chiverton Helping to proactively streamline sticky users This email is sent for and on behalf of Halliwells LLP. Halliwells LLP is a limited liability partnership registered in England and Wales under registered number OC307980 whose registered office address is at St James's Court Brown Street Manchester M2 2JF. A list of members is available for inspection at the registered office. Any reference to a partner in relation to Halliwells LLP means a member of Halliwells LLP. Regulated by the Law Society. CONFIDENTIALITY This email is intended only for the use of the addressee named above and may be confidential or legally privileged. If you are not the addressee you must not read it and must not use any information contained in nor copy it nor inform any person other than Halliwells LLP or the addressee of its existence or contents. If you have received this email in error please delete it and notify Halliwells LLP IT Department on 0870 365 8008. For more information about Halliwells LLP visit www.halliwells.com. ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:261978 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4
RE: Vista (was: CrystalTech outage?)
I didn't compare either one to the other or claim either was better than the other. They both have their uses where I'm concerned. I use both on a daily basis. I simply said (in a round-about way) that Linux isn't as secure as a lot of people like to think or make others think. I'd say the same thing about Windows but there really isn't any opposition to that argument so it's pointless to even bring it up. That would be Pre-Vista of course... I don't know enough about Vista to say one way or another but hey... they claimed IE7 was all new and improved too didn't they. So did they just code in the same old bugs or lie about writing it from scratch this time around? The only person and argument you have to worry about starting a debate in this trhead would be Dave the Disruptor claiming the all mighty MAC supremecy. ;-) ..:.:.:.:.:.:.:.:.:.:.:. Bobby Hartsfield http://acoderslife.com -Original Message- From: John C. Bland II [mailto:[EMAIL PROTECTED] Sent: Tuesday, November 28, 2006 11:02 PM To: CF-Talk Subject: Re: Vista (was: CrystalTech outage?) You may not want to open that bag of worms. lol. Plee: Please don't start a Linux vs Windows flame war. On 11/28/06, Bobby Hartsfield [EMAIL PROTECTED] wrote: argue blindly maybe :-) There are plenty of holes in the security of default Linux installations and just as many viruses/Trojans written specifically with Linux in mind. ..:.:.:.:.:.:.:.:.:.:.:. Bobby Hartsfield http://acoderslife.com -Original Message- From: Snake [mailto:[EMAIL PROTECTED] Sent: Tuesday, November 28, 2006 8:06 PM To: CF-Talk Subject: RE: Vista (was: CrystalTech outage?) Linux users would argue otherwise :-) -Original Message- From: Robertson-Ravo, Neil (RX) [mailto:[EMAIL PROTECTED] Sent: 28 November 2006 22:13 To: CF-Talk Subject: Re: Vista (was: CrystalTech outage?) Aren't all comps open to hack/attacks... This e-mail is from Reed Exhibitions (Gateway House, 28 The Quadrant, Richmond, Surrey, TW9 1DN, United Kingdom), a division of Reed Business, Registered in England, Number 678540. It contains information which is confidential and may also be privileged. It is for the exclusive use of the intended recipient(s). If you are not the intended recipient(s) please note that any form of distribution, copying or use of this communication or the information in it is strictly prohibited and may be unlawful. If you have received this communication in error please return it to the sender or call our switchboard on +44 (0) 20 89107910. The opinions expressed within this communication are not necessarily those expressed by Reed Exhibitions. Visit our website at http://www.reedexpo.com -Original Message- From: Munson, Jacob To: CF-Talk Sent: Tue Nov 28 21:56:27 2006 Subject: RE: Vista (was: CrystalTech outage?) They actually let hackers take a shot at Vista this summer and rave reviews came out of it. I think 1 person was able to trick UAC but this was in...hrmmm...I think Beta 2. That hole was covered in the next major release. See, this is exactly what I'm talking about. I have no doubt that Vista will be more secure than XP, merely because of the non-admin user thing. But there /will/ be holes that allow hackers to bypass the UAC stuff. Mark my words. Will antivirus programs solve this? They could, but like Dave pointed out you still have to have updated virus definitions (which should be automated anyway). -- This transmission may contain information that is privileged, confidential and/or exempt from disclosure under applicable law. If you are not the intended recipient, you are hereby notified that any disclosure, copying, distribution, or use of the information contained herein (including any reliance thereon) is STRICTLY PROHIBITED. If you received this transmission in error, please immediately contact the sender and destroy the material in its entirety, whether in electronic or hard copy format. Thank you. == EMF idahopower.com made the previous annotations. ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:261985 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
RE: Vista (was: CrystalTech outage?)
Vista simply makes that a little simpler, by requiring user intervention for administrative actions Unless it's turned off. Or broken. Or there's an issue with a privileged network deamon. Or... How is this any different from anything else? Fortunately, most users won't be able to figure out how to disable UAC, I suspect. As I said, it's not what users do that bothers me, it's the non-user related holes. The remote attack surface for a patched Windows XP SP2 machine with the Windows firewall enabled is pretty small. I have every reason to expect the attack surface for Vista to be as small or smaller. That, by itself, doesn't mean that users can't do stupid things that will get their machines compromised. So I'm not sure why you'd be so unconcerned with user security. Dave Watts, CTO, Fig Leaf Software http://www.figleaf.com/ Fig Leaf Software provides the highest caliber vendor-authorized instruction at our training centers in Washington DC, Atlanta, Chicago, Baltimore, Northern Virginia, or on-site at your location. Visit http://training.figleaf.com/ for more information! ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:261995 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4
Re: Vista (was: CrystalTech outage?)
On Wednesday 29 November 2006 14:07, Dave Watts wrote: How is this any different from anything else? Fortunately, most users won't be able to figure out how to disable UAC, I suspect. It'll be interesting to see how many computers ship with it off because it's very broken. As I said, it's not what users do that bothers me, it's the non-user related holes. The remote attack surface for a patched Windows XP SP2 machine with the Windows firewall enabled is pretty small. I have every reason to expect the attack surface for Vista to be as small or smaller. It may be. But there's the whole 'packet of death' thing that's *built into it as a feature*. doesn't mean that users can't do stupid things that will get their machines compromised. So I'm not sure why you'd be so unconcerned with user security. I very concerened about both, don't get me wrong ! -- Tom Chiverton Helping to interactively innovate impactful communities This email is sent for and on behalf of Halliwells LLP. Halliwells LLP is a limited liability partnership registered in England and Wales under registered number OC307980 whose registered office address is at St James's Court Brown Street Manchester M2 2JF. A list of members is available for inspection at the registered office. Any reference to a partner in relation to Halliwells LLP means a member of Halliwells LLP. Regulated by the Law Society. CONFIDENTIALITY This email is intended only for the use of the addressee named above and may be confidential or legally privileged. If you are not the addressee you must not read it and must not use any information contained in nor copy it nor inform any person other than Halliwells LLP or the addressee of its existence or contents. If you have received this email in error please delete it and notify Halliwells LLP IT Department on 0870 365 8008. For more information about Halliwells LLP visit www.halliwells.com. ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:262022 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
RE: Vista (was: CrystalTech outage?)
The remote attack surface for a patched Windows XP SP2 machine with the Windows firewall enabled is pretty small. I have every reason to expect the attack surface for Vista to be as small or smaller. That, by itself, doesn't mean that users can't do stupid things that will get their machines compromised. So I'm not sure why you'd be so unconcerned with user security. The statement that started this whole conversation was a Microsoft exec. claiming that Vista won't need antivirus software. I TOTALLY agree that Vista will be way more secure than previous versions. But to claim that Vista won't need antivirus software is to claim that it won't have holes. Microsoft is notorious for taking a while to fix holes. On the other hand, antivirus companies usually have updated definitions within a few hours. So the first time a critical zero day exploit is released, even if it does require user intervention, what is a network admin to do? Hope and pray that MS develops and hurries a patch to market, and in the mean time all of their users read the emails and posted warning signs? That won't happen, so their only recourse is to get the updated definitions pushed ASAP, or maybe send everybody home in the mean time. I think this MS quote will be added to the previous retarded quotes that have come from Redmond: No user will ever need more than 64 KB of RAM The NTFS file system doesn't ever get fragmented and now, Vista doesn't need antivirus software -- This transmission may contain information that is privileged, confidential and/or exempt from disclosure under applicable law. If you are not the intended recipient, you are hereby notified that any disclosure, copying, distribution, or use of the information contained herein (including any reliance thereon) is STRICTLY PROHIBITED. If you received this transmission in error, please immediately contact the sender and destroy the material in its entirety, whether in electronic or hard copy format. Thank you. == EMF idahopower.com made the previous annotations. ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:262029 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4
RE: Vista (was: CrystalTech outage?)
It'll be interesting to see how many computers ship with it off because it's very broken. My guess is that no computers will ship with it off. It doesn't seem broken to me, either. If by broken you mean makes things more difficult for the user, well, yes, I guess it's broken. I'm using Vista RC1. Can you explain what you mean by that? Dave Watts, CTO, Fig Leaf Software http://www.figleaf.com/ Fig Leaf Software provides the highest caliber vendor-authorized instruction at our training centers in Washington DC, Atlanta, Chicago, Baltimore, Northern Virginia, or on-site at your location. Visit http://training.figleaf.com/ for more information! ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:262039 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
RE: Vista (was: CrystalTech outage?)
The statement that started this whole conversation was a Microsoft exec. claiming that Vista won't need antivirus software. I TOTALLY agree that Vista will be way more secure than previous versions. But to claim that Vista won't need antivirus software is to claim that it won't have holes. No, those aren't the same at all. It might have as many holes as a block of Swiss cheese, but if the user can't execute the virus because he lacks permissions to do so, the virus can't run. If the user can execute the virus, but lacks permissions to modify the operating system itself, the virus can't do those things either. In previous versions of Windows, the way you solved this problem was by logging in as a non-privileged user, which would prevent you from performing administrative actions. If you did actually want to perform an administrative action, you'd log in using an account with the required privileges, or you'd use something like runas to run a specific process with those privileges. This is how I've been using Windows XP (and before that, Windows 2000) for some time. Unfortunately, it's kind of clunky to do this, because many applications simply aren't designed to easily run without those privileges. So, for an average user on his own, this isn't an easy route to take. I've found this site to be helpful: http://nonadmin.editme.com/ In Vista, by default, when you log in as a privileged user, you are still prompted every time you do something that requires administrative privileges. In any case, running without administrative privileges is a better security measure than relying on antivirus software. For the most part, antivirus software knows what's been done before that's bad (virus signatures) and prevents you from doing those known bad things. Running without administrative privileges doesn't differentiate between bad and good things, it just prevents you from doing things to the system, period. If you actually want to do those things, you have to jump a few hurdles to do so (if you can do them at all). Of course, there's a bit of oversimplification here, as should be expected on a discussion list, such as the fact that a virus could destroy user data when executed with that user's rights. In general, though, a deny, then allow approach (like restricting user rights) is superior to an allow, then deny approach (like using antivirus software). Dave Watts, CTO, Fig Leaf Software http://www.figleaf.com/ Fig Leaf Software provides the highest caliber vendor-authorized instruction at our training centers in Washington DC, Atlanta, Chicago, Baltimore, Northern Virginia, or on-site at your location. Visit http://training.figleaf.com/ for more information! ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:262041 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4
RE: Vista (was: CrystalTech outage?)
No, those aren't the same at all. It might have as many holes as a block of Swiss cheese, but if the user can't execute the virus because he lacks permissions to do so, the virus can't run. If the user can execute the virus, but lacks permissions to modify the operating system itself, the virus can't do those things either. Right. I understand that. I feel like we're running in circles here. I know that Microsoft is making most people a non-privileged user in Vista, and I like and agree with that decision. But, viruses can and probably will find ways around that limitation. You and Microsoft are assuming that all of their coding that prevents software from accessing sensitive files will ALWAYS work, and will NEVER have any holes in /itself/. Yes, I know that MS is doing a good thing here, but they are still human, and humans create software with holes. However, antivirus software can plug those holes while we wait for MS to put out a patch. -- This transmission may contain information that is privileged, confidential and/or exempt from disclosure under applicable law. If you are not the intended recipient, you are hereby notified that any disclosure, copying, distribution, or use of the information contained herein (including any reliance thereon) is STRICTLY PROHIBITED. If you received this transmission in error, please immediately contact the sender and destroy the material in its entirety, whether in electronic or hard copy format. Thank you. == EMF idahopower.com made the previous annotations. ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:262050 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4
Re: Vista (was: CrystalTech outage?)
On Wednesday 29 November 2006 16:02, Dave Watts wrote: If by broken you mean makes things more difficult for the user, well, yes, I guess it's broken. I'm using Vista RC1. Can you explain what you mean by that? It's Just Another Box. Users will click it and type their usernames without reading it, because they are users. Or software will fake the box (trusted path not withstanding, this is Windows), get the password, and elevate itself. I'm with Jacob - it doesn't matter how flash and secure Vista is. It's software. It'll have problems. MS will fix them, once a month, or not. In the mean time the only thing that'll stop yet another Windows virus outbreak is having Anti-everything installed. -- Tom Chiverton Helping to dramatically generate network methodologies This email is sent for and on behalf of Halliwells LLP. Halliwells LLP is a limited liability partnership registered in England and Wales under registered number OC307980 whose registered office address is at St James's Court Brown Street Manchester M2 2JF. A list of members is available for inspection at the registered office. Any reference to a partner in relation to Halliwells LLP means a member of Halliwells LLP. Regulated by the Law Society. CONFIDENTIALITY This email is intended only for the use of the addressee named above and may be confidential or legally privileged. If you are not the addressee you must not read it and must not use any information contained in nor copy it nor inform any person other than Halliwells LLP or the addressee of its existence or contents. If you have received this email in error please delete it and notify Halliwells LLP IT Department on 0870 365 8008. For more information about Halliwells LLP visit www.halliwells.com. ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:262049 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4
Re: Vista (was: CrystalTech outage?)
Tom, have you even seen or worked with Vista, specifically UAC? You have strong opinions about Vista but it doesn't sound like you're speaking from present knowledge. Just curious here. To clear one thing up, Vista WILL NOT come with UAC turned off on ANY box. An app can't auto-elevate itself. It runs in the sandbox given and if it needs to do something with elevated needs, UAC will stop it and ask you if it is ok. One last thing (Jacob Munson), Vista can't be compared to a virus protection application (Norton's, etc). That is what they do...manage virus definitions. Vista is the OS. If Vista has a hole, MSFT will fix it. If a new virus comes out, MSFT will update One Care's virus definitions (a virus protecting program). On 11/29/06, Tom Chiverton [EMAIL PROTECTED] wrote: On Wednesday 29 November 2006 16:02, Dave Watts wrote: If by broken you mean makes things more difficult for the user, well, yes, I guess it's broken. I'm using Vista RC1. Can you explain what you mean by that? It's Just Another Box. Users will click it and type their usernames without reading it, because they are users. Or software will fake the box (trusted path not withstanding, this is Windows), get the password, and elevate itself. I'm with Jacob - it doesn't matter how flash and secure Vista is. It's software. It'll have problems. MS will fix them, once a month, or not. In the mean time the only thing that'll stop yet another Windows virus outbreak is having Anti-everything installed. -- Tom Chiverton Helping to dramatically generate network methodologies This email is sent for and on behalf of Halliwells LLP. Halliwells LLP is a limited liability partnership registered in England and Wales under registered number OC307980 whose registered office address is at St James's Court Brown Street Manchester M2 2JF. A list of members is available for inspection at the registered office. Any reference to a partner in relation to Halliwells LLP means a member of Halliwells LLP. Regulated by the Law Society. CONFIDENTIALITY This email is intended only for the use of the addressee named above and may be confidential or legally privileged. If you are not the addressee you must not read it and must not use any information contained in nor copy it nor inform any person other than Halliwells LLP or the addressee of its existence or contents. If you have received this email in error please delete it and notify Halliwells LLP IT Department on 0870 365 8008. For more information about Halliwells LLP visit www.halliwells.com. ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:262153 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
Re: CrystalTech outage?
On Monday 27 November 2006 17:55, Ray Champagne wrote: Yikes. Poor tech guys, and on Cyber Monday. 'Cyber Monday' is a myth. -- Tom Chiverton Helping to continually enable high-yield features This email is sent for and on behalf of Halliwells LLP. Halliwells LLP is a limited liability partnership registered in England and Wales under registered number OC307980 whose registered office address is at St James's Court Brown Street Manchester M2 2JF. A list of members is available for inspection at the registered office. Any reference to a partner in relation to Halliwells LLP means a member of Halliwells LLP. Regulated by the Law Society. CONFIDENTIALITY This email is intended only for the use of the addressee named above and may be confidential or legally privileged. If you are not the addressee you must not read it and must not use any information contained in nor copy it nor inform any person other than Halliwells LLP or the addressee of its existence or contents. If you have received this email in error please delete it and notify Halliwells LLP IT Department on 0870 365 8008. For more information about Halliwells LLP visit www.halliwells.com. ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:261826 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4
Re: CrystalTech outage?
On Monday 27 November 2006 19:37, Brad Wood wrote: That's what scares me about the general uneducated public with crummy Trojan infested machines who unknowingly help hackers out with this stuff. *shudder* That's OK, Microsoft say you can use Vista without any antivirus or antispyware, and it'll be fine. /me rolls in the aisle -- Tom Chiverton Helping to widespreadedly cultivate interdependent systems This email is sent for and on behalf of Halliwells LLP. Halliwells LLP is a limited liability partnership registered in England and Wales under registered number OC307980 whose registered office address is at St James's Court Brown Street Manchester M2 2JF. A list of members is available for inspection at the registered office. Any reference to a partner in relation to Halliwells LLP means a member of Halliwells LLP. Regulated by the Law Society. CONFIDENTIALITY This email is intended only for the use of the addressee named above and may be confidential or legally privileged. If you are not the addressee you must not read it and must not use any information contained in nor copy it nor inform any person other than Halliwells LLP or the addressee of its existence or contents. If you have received this email in error please delete it and notify Halliwells LLP IT Department on 0870 365 8008. For more information about Halliwells LLP visit www.halliwells.com. ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:261827 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
Re: CrystalTech outage?
I think they mean they ship it internally.. :) not that I will ever not install them! Though to be fair, looks like Mac users will have to start being more cautious with recent news... This e-mail is from Reed Exhibitions (Gateway House, 28 The Quadrant, Richmond, Surrey, TW9 1DN, United Kingdom), a division of Reed Business, Registered in England, Number 678540. It contains information which is confidential and may also be privileged. It is for the exclusive use of the intended recipient(s). If you are not the intended recipient(s) please note that any form of distribution, copying or use of this communication or the information in it is strictly prohibited and may be unlawful. If you have received this communication in error please return it to the sender or call our switchboard on +44 (0) 20 89107910. The opinions expressed within this communication are not necessarily those expressed by Reed Exhibitions. Visit our website at http://www.reedexpo.com -Original Message- From: Tom Chiverton To: CF-Talk Sent: Tue Nov 28 09:05:03 2006 Subject: Re: CrystalTech outage? On Monday 27 November 2006 19:37, Brad Wood wrote: That's what scares me about the general uneducated public with crummy Trojan infested machines who unknowingly help hackers out with this stuff. *shudder* That's OK, Microsoft say you can use Vista without any antivirus or antispyware, and it'll be fine. /me rolls in the aisle -- Tom Chiverton Helping to widespreadedly cultivate interdependent systems This email is sent for and on behalf of Halliwells LLP. Halliwells LLP is a limited liability partnership registered in England and Wales under registered number OC307980 whose registered office address is at St James's Court Brown Street Manchester M2 2JF. A list of members is available for inspection at the registered office. Any reference to a partner in relation to Halliwells LLP means a member of Halliwells LLP. Regulated by the Law Society. CONFIDENTIALITY This email is intended only for the use of the addressee named above and may be confidential or legally privileged. If you are not the addressee you must not read it and must not use any information contained in nor copy it nor inform any person other than Halliwells LLP or the addressee of its existence or contents. If you have received this email in error please delete it and notify Halliwells LLP IT Department on 0870 365 8008. For more information about Halliwells LLP visit www.halliwells.com. ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:261828 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4
Re: CrystalTech outage?
On Tuesday 28 November 2006 09:11, Robertson-Ravo, Neil (RX) wrote: I think they mean they ship it internally.. :) not that I will ever not install them! http://it.slashdot.org/article.pl?sid=06/01/30/1941243 Microsoft will omit anti-virus protection in Vista http://it.slashdot.org/article.pl?sid=06/11/10/0114210 Microsoft co-president Jim Allchin, ... told a reporter that the system's new lockdown features are so capable and thorough that he was comfortable with his own seven-year-old son using Vista without antivirus software installed. And I notice IE7 being shoved down my unwilling throat this morning, hurrah :-( Though to be fair, looks like Mac users will have to start being more cautious with recent news... *Linux* users need to be cautious. I can't think of anything that's safe from incautious users. -- Tom Chiverton Helping to globally exploit scalable synergies This email is sent for and on behalf of Halliwells LLP. Halliwells LLP is a limited liability partnership registered in England and Wales under registered number OC307980 whose registered office address is at St James's Court Brown Street Manchester M2 2JF. A list of members is available for inspection at the registered office. Any reference to a partner in relation to Halliwells LLP means a member of Halliwells LLP. Regulated by the Law Society. CONFIDENTIALITY This email is intended only for the use of the addressee named above and may be confidential or legally privileged. If you are not the addressee you must not read it and must not use any information contained in nor copy it nor inform any person other than Halliwells LLP or the addressee of its existence or contents. If you have received this email in error please delete it and notify Halliwells LLP IT Department on 0870 365 8008. For more information about Halliwells LLP visit www.halliwells.com. ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:261832 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
RE: CrystalTech outage?
-Original Message- From: Tom Chiverton [mailto:[EMAIL PROTECTED] Sent: Tuesday, November 28, 2006 5:53 AM To: CF-Talk Subject: Re: CrystalTech outage? On Tuesday 28 November 2006 09:11, Robertson-Ravo, Neil (RX) wrote: I think they mean they ship it internally.. :) not that I will ever not install them! http://it.slashdot.org/article.pl?sid=06/01/30/1941243 Microsoft will omit anti-virus protection in Vista And if they had included it they would have sued for monopolistic practices. http://it.slashdot.org/article.pl?sid=06/11/10/0114210 Microsoft co-president Jim Allchin, ... told a reporter that the system's new lockdown features are so capable and thorough that he was comfortable with his own seven-year-old son using Vista without antivirus software installed. Yes... he feels able to leave a 7-year old, in lockdown mode, on a machine with no Virus protection. This does not say that an adult, with full privileges should consider running that way. It's saying that the lockdown mode (a reduced functionality mode unable to install software, launch system tools, make registry changes, restricts users to a white-list of websites, etc) is good enough (in his opinion) to keep a PC safe when used by a (presumably) non-malicious user. And I notice IE7 being shoved down my unwilling throat this morning, hurrah :-( Good. It's a great browser with a tremendously better rendering engine than previous versions. The sooner it replaces older versions the better. Jim Davis ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:261855 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4
Re: CrystalTech outage?
On Tuesday 28 November 2006 14:58, Jim Davis wrote: http://it.slashdot.org/article.pl?sid=06/01/30/1941243 Microsoft will omit anti-virus protection in Vista And if they had included it they would have sued for monopolistic practices. I didn't say not doing so was a bad thing :-) I do think it's a bad thing that rather than fix the problem, they are pushing users into paying for their sticky plaster via OneCare. Yes... he feels able to leave a 7-year old, in lockdown mode, on a machine with no Virus protection. He has much, much, *much* more faith than I have in Vista then. It's saying that the lockdown mode (a reduced functionality mode unable to install software, launch system tools, make registry changes, restricts users to a white-list of websites, etc) is good enough (in his opinion) to keep a PC safe when used by a (presumably) non-malicious user. The maliciousness (or not) of the person sat in front of a Windows machine is not what bothers me, most of the time. /me glares at spam email box And I notice IE7 being shoved down my unwilling throat this morning, hurrah :-( Good. It's a great browser with a tremendously better rendering engine than previous versions. The sooner it replaces older versions the better. Pity it looks aweful and is a pain to use then. -- Tom Chiverton Helping to elementarily administrate value-added IPOs This email is sent for and on behalf of Halliwells LLP. Halliwells LLP is a limited liability partnership registered in England and Wales under registered number OC307980 whose registered office address is at St James's Court Brown Street Manchester M2 2JF. A list of members is available for inspection at the registered office. Any reference to a partner in relation to Halliwells LLP means a member of Halliwells LLP. Regulated by the Law Society. CONFIDENTIALITY This email is intended only for the use of the addressee named above and may be confidential or legally privileged. If you are not the addressee you must not read it and must not use any information contained in nor copy it nor inform any person other than Halliwells LLP or the addressee of its existence or contents. If you have received this email in error please delete it and notify Halliwells LLP IT Department on 0870 365 8008. For more information about Halliwells LLP visit www.halliwells.com. ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:261880 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4
RE: Vista (was: CrystalTech outage?)
That's OK, Microsoft say you can use Vista without any antivirus or antispyware, and it'll be fine. /me rolls in the aisle Don't laugh too hard. You can use Windows XP without antivirus or antispyware, and it'll be fine. You just have to do two things: 1. Don't run as an administrator. 2. Don't do anything obviously stupid. Vista simply makes that a little simpler, by requiring user intervention for administrative actions even when you're logged in as an administrator already. It's saying that the lockdown mode (a reduced functionality mode unable to install software, launch system tools, make registry changes, restricts users to a white-list of websites, etc) is good enough (in his opinion) to keep a PC safe when used by a (presumably) non-malicious user. The maliciousness (or not) of the person sat in front of a Windows machine is not what bothers me, most of the time. /me glares at spam email box If you can't accidentally run executables, you can't accidentally turn your machine into a spambot. If your only concern is the amount of spam you get from zombie Windows machines, you should hope that everyone upgrades to Vista as soon as it's available. Either it'll work, and their machines won't be zombies, or it won't, and their machines won't run at all. Dave Watts, CTO, Fig Leaf Software http://www.figleaf.com/ Fig Leaf Software provides the highest caliber vendor-authorized instruction at our training centers in Washington DC, Atlanta, Chicago, Baltimore, Northern Virginia, or on-site at your location. Visit http://training.figleaf.com/ for more information! ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:261888 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
RE: Vista (was: CrystalTech outage?)
If you can't accidentally run executables, you can't accidentally turn your machine into a spambot. I think that the changes that Microsoft have made in Vista are awesome, but they won't stop the Trojans that take advantage of security vulnerabilities. Unless you think that Vista won't have any security holes (yeah right). The average user that is prone to let their PC become a zombie doesn't apply patches. So the first big security hole that is exploited will spawn a whole batch Vista zombies. Hence why it's important to run antivirus. EMF idahopower.com made the following annotations. -- This transmission may contain information that is privileged, confidential and/or exempt from disclosure under applicable law. If you are not the intended recipient, you are hereby notified that any disclosure, copying, distribution, or use of the information contained herein (including any reliance thereon) is STRICTLY PROHIBITED. If you received this transmission in error, please immediately contact the sender and destroy the material in its entirety, whether in electronic or hard copy format. Thank you. == ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:261909 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4
RE: Vista (was: CrystalTech outage?)
I think that the changes that Microsoft have made in Vista are awesome, but they won't stop the Trojans that take advantage of security vulnerabilities. Unless you think that Vista won't have any security holes (yeah right). The average user that is prone to let their PC become a zombie doesn't apply patches. So the first big security hole that is exploited will spawn a whole batch Vista zombies. Hence why it's important to run antivirus. Viruses aren't, by definition, simply exploits that take advantage of existing vulnerabilities. They typically require user intervention. If a user doesn't have the ability to run unapproved executables, then the user can't run the executable containing the virus. Preventing a user from running a program that may or may not contain a virus is a much more effective countermeasure than trying to detect the virus when a user runs a program; especially if, as you noted, people don't keep their machines (including virus signatures) up to date. And, of course, patches generally don't protect you from trojans and viruses, which again typically require user intervention and permissions. If I run an executable program, and I have adequate permissions to allow that program to do whatever it wants to do, there's no patch for that. Patches are much more important when it comes to protecting against remote exploits, but a firewall is a more reliable protection against that sort of thing. So, to the extent that Vista's UAC prompting actually makes people think about what they're doing, it will, in fact, stop trojans, which like viruses rely on people running programs within a privileged security context. If, on the other hand, people disable this or just click through it without thinking, then we're back where we started, and no amount of antivirus software will prevent it. Dave Watts, CTO, Fig Leaf Software http://www.figleaf.com/ Fig Leaf Software provides the highest caliber vendor-authorized instruction at our training centers in Washington DC, Atlanta, Chicago, Baltimore, Northern Virginia, or on-site at your location. Visit http://training.figleaf.com/ for more information! ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:261918 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4
Re: Vista (was: CrystalTech outage?)
They actually let hackers take a shot at Vista this summer and rave reviews came out of it. I think 1 person was able to trick UAC but this was in...hrmmm...I think Beta 2. That hole was covered in the next major release. I'd definitely say Vista is more secure and agree with Dave's statements. I have been on Vista for 9 months and without virus protection almost 2 with no worries at all for any of the first 7 months. Well, at first I was a bit worried but as time went on I grew much more comfortable. In October I installed One Care 1.5 (beta) and have been using it since. The combination of One Care and Vista seems great. One Care has some growing to do in the firewall but it takes care of my pc's very nicely (with automatic updates of all sorts of drivers, automatic backups, scans, etc). I'm not putting it against Norton's or anything but it runs in the background and keeps my tidy with no interaction at all, ever. On 11/28/06, Dave Watts [EMAIL PROTECTED] wrote: I think that the changes that Microsoft have made in Vista are awesome, but they won't stop the Trojans that take advantage of security vulnerabilities. Unless you think that Vista won't have any security holes (yeah right). The average user that is prone to let their PC become a zombie doesn't apply patches. So the first big security hole that is exploited will spawn a whole batch Vista zombies. Hence why it's important to run antivirus. Viruses aren't, by definition, simply exploits that take advantage of existing vulnerabilities. They typically require user intervention. If a user doesn't have the ability to run unapproved executables, then the user can't run the executable containing the virus. Preventing a user from running a program that may or may not contain a virus is a much more effective countermeasure than trying to detect the virus when a user runs a program; especially if, as you noted, people don't keep their machines (including virus signatures) up to date. And, of course, patches generally don't protect you from trojans and viruses, which again typically require user intervention and permissions. If I run an executable program, and I have adequate permissions to allow that program to do whatever it wants to do, there's no patch for that. Patches are much more important when it comes to protecting against remote exploits, but a firewall is a more reliable protection against that sort of thing. So, to the extent that Vista's UAC prompting actually makes people think about what they're doing, it will, in fact, stop trojans, which like viruses rely on people running programs within a privileged security context. If, on the other hand, people disable this or just click through it without thinking, then we're back where we started, and no amount of antivirus software will prevent it. Dave Watts, CTO, Fig Leaf Software http://www.figleaf.com/ Fig Leaf Software provides the highest caliber vendor-authorized instruction at our training centers in Washington DC, Atlanta, Chicago, Baltimore, Northern Virginia, or on-site at your location. Visit http://training.figleaf.com/ for more information! ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:261928 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
RE: Vista (was: CrystalTech outage?)
They actually let hackers take a shot at Vista this summer and rave reviews came out of it. I think 1 person was able to trick UAC but this was in...hrmmm...I think Beta 2. That hole was covered in the next major release. See, this is exactly what I'm talking about. I have no doubt that Vista will be more secure than XP, merely because of the non-admin user thing. But there /will/ be holes that allow hackers to bypass the UAC stuff. Mark my words. Will antivirus programs solve this? They could, but like Dave pointed out you still have to have updated virus definitions (which should be automated anyway). -- This transmission may contain information that is privileged, confidential and/or exempt from disclosure under applicable law. If you are not the intended recipient, you are hereby notified that any disclosure, copying, distribution, or use of the information contained herein (including any reliance thereon) is STRICTLY PROHIBITED. If you received this transmission in error, please immediately contact the sender and destroy the material in its entirety, whether in electronic or hard copy format. Thank you. == EMF idahopower.com made the previous annotations. ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:261929 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
Re: Vista (was: CrystalTech outage?)
Aren't all comps open to hack/attacks... This e-mail is from Reed Exhibitions (Gateway House, 28 The Quadrant, Richmond, Surrey, TW9 1DN, United Kingdom), a division of Reed Business, Registered in England, Number 678540. It contains information which is confidential and may also be privileged. It is for the exclusive use of the intended recipient(s). If you are not the intended recipient(s) please note that any form of distribution, copying or use of this communication or the information in it is strictly prohibited and may be unlawful. If you have received this communication in error please return it to the sender or call our switchboard on +44 (0) 20 89107910. The opinions expressed within this communication are not necessarily those expressed by Reed Exhibitions. Visit our website at http://www.reedexpo.com -Original Message- From: Munson, Jacob To: CF-Talk Sent: Tue Nov 28 21:56:27 2006 Subject: RE: Vista (was: CrystalTech outage?) They actually let hackers take a shot at Vista this summer and rave reviews came out of it. I think 1 person was able to trick UAC but this was in...hrmmm...I think Beta 2. That hole was covered in the next major release. See, this is exactly what I'm talking about. I have no doubt that Vista will be more secure than XP, merely because of the non-admin user thing. But there /will/ be holes that allow hackers to bypass the UAC stuff. Mark my words. Will antivirus programs solve this? They could, but like Dave pointed out you still have to have updated virus definitions (which should be automated anyway). -- This transmission may contain information that is privileged, confidential and/or exempt from disclosure under applicable law. If you are not the intended recipient, you are hereby notified that any disclosure, copying, distribution, or use of the information contained herein (including any reliance thereon) is STRICTLY PROHIBITED. If you received this transmission in error, please immediately contact the sender and destroy the material in its entirety, whether in electronic or hard copy format. Thank you. == EMF idahopower.com made the previous annotations. ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:261930 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4
Re: Vista (was: CrystalTech outage?)
Yeah, but some of the best hackers couldn't get through. Only 1 did, which is amazing taking the history of Windows. The 1 that got through even gave great praise for the new system. If I can find the email/post, I will post it here. I just have no idea where it came from. Windows, OS X, etc are all open to viruses and hackers. It is all about the person using the system and what they allow. (to simplify what Dave has stated a couple times) On 11/28/06, Munson, Jacob [EMAIL PROTECTED] wrote: They actually let hackers take a shot at Vista this summer and rave reviews came out of it. I think 1 person was able to trick UAC but this was in...hrmmm...I think Beta 2. That hole was covered in the next major release. See, this is exactly what I'm talking about. I have no doubt that Vista will be more secure than XP, merely because of the non-admin user thing. But there /will/ be holes that allow hackers to bypass the UAC stuff. Mark my words. Will antivirus programs solve this? They could, but like Dave pointed out you still have to have updated virus definitions (which should be automated anyway). -- This transmission may contain information that is privileged, confidential and/or exempt from disclosure under applicable law. If you are not the intended recipient, you are hereby notified that any disclosure, copying, distribution, or use of the information contained herein (including any reliance thereon) is STRICTLY PROHIBITED. If you received this transmission in error, please immediately contact the sender and destroy the material in its entirety, whether in electronic or hard copy format. Thank you. == EMF idahopower.com made the previous annotations. ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:261951 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
RE: Vista (was: CrystalTech outage?)
Linux users would argue otherwise :-) -Original Message- From: Robertson-Ravo, Neil (RX) [mailto:[EMAIL PROTECTED] Sent: 28 November 2006 22:13 To: CF-Talk Subject: Re: Vista (was: CrystalTech outage?) Aren't all comps open to hack/attacks... This e-mail is from Reed Exhibitions (Gateway House, 28 The Quadrant, Richmond, Surrey, TW9 1DN, United Kingdom), a division of Reed Business, Registered in England, Number 678540. It contains information which is confidential and may also be privileged. It is for the exclusive use of the intended recipient(s). If you are not the intended recipient(s) please note that any form of distribution, copying or use of this communication or the information in it is strictly prohibited and may be unlawful. If you have received this communication in error please return it to the sender or call our switchboard on +44 (0) 20 89107910. The opinions expressed within this communication are not necessarily those expressed by Reed Exhibitions. Visit our website at http://www.reedexpo.com -Original Message- From: Munson, Jacob To: CF-Talk Sent: Tue Nov 28 21:56:27 2006 Subject: RE: Vista (was: CrystalTech outage?) They actually let hackers take a shot at Vista this summer and rave reviews came out of it. I think 1 person was able to trick UAC but this was in...hrmmm...I think Beta 2. That hole was covered in the next major release. See, this is exactly what I'm talking about. I have no doubt that Vista will be more secure than XP, merely because of the non-admin user thing. But there /will/ be holes that allow hackers to bypass the UAC stuff. Mark my words. Will antivirus programs solve this? They could, but like Dave pointed out you still have to have updated virus definitions (which should be automated anyway). -- This transmission may contain information that is privileged, confidential and/or exempt from disclosure under applicable law. If you are not the intended recipient, you are hereby notified that any disclosure, copying, distribution, or use of the information contained herein (including any reliance thereon) is STRICTLY PROHIBITED. If you received this transmission in error, please immediately contact the sender and destroy the material in its entirety, whether in electronic or hard copy format. Thank you. == EMF idahopower.com made the previous annotations. ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:261954 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
RE: Vista (was: CrystalTech outage?)
argue blindly maybe :-) There are plenty of holes in the security of default Linux installations and just as many viruses/Trojans written specifically with Linux in mind. ..:.:.:.:.:.:.:.:.:.:.:. Bobby Hartsfield http://acoderslife.com -Original Message- From: Snake [mailto:[EMAIL PROTECTED] Sent: Tuesday, November 28, 2006 8:06 PM To: CF-Talk Subject: RE: Vista (was: CrystalTech outage?) Linux users would argue otherwise :-) -Original Message- From: Robertson-Ravo, Neil (RX) [mailto:[EMAIL PROTECTED] Sent: 28 November 2006 22:13 To: CF-Talk Subject: Re: Vista (was: CrystalTech outage?) Aren't all comps open to hack/attacks... This e-mail is from Reed Exhibitions (Gateway House, 28 The Quadrant, Richmond, Surrey, TW9 1DN, United Kingdom), a division of Reed Business, Registered in England, Number 678540. It contains information which is confidential and may also be privileged. It is for the exclusive use of the intended recipient(s). If you are not the intended recipient(s) please note that any form of distribution, copying or use of this communication or the information in it is strictly prohibited and may be unlawful. If you have received this communication in error please return it to the sender or call our switchboard on +44 (0) 20 89107910. The opinions expressed within this communication are not necessarily those expressed by Reed Exhibitions. Visit our website at http://www.reedexpo.com -Original Message- From: Munson, Jacob To: CF-Talk Sent: Tue Nov 28 21:56:27 2006 Subject: RE: Vista (was: CrystalTech outage?) They actually let hackers take a shot at Vista this summer and rave reviews came out of it. I think 1 person was able to trick UAC but this was in...hrmmm...I think Beta 2. That hole was covered in the next major release. See, this is exactly what I'm talking about. I have no doubt that Vista will be more secure than XP, merely because of the non-admin user thing. But there /will/ be holes that allow hackers to bypass the UAC stuff. Mark my words. Will antivirus programs solve this? They could, but like Dave pointed out you still have to have updated virus definitions (which should be automated anyway). -- This transmission may contain information that is privileged, confidential and/or exempt from disclosure under applicable law. If you are not the intended recipient, you are hereby notified that any disclosure, copying, distribution, or use of the information contained herein (including any reliance thereon) is STRICTLY PROHIBITED. If you received this transmission in error, please immediately contact the sender and destroy the material in its entirety, whether in electronic or hard copy format. Thank you. == EMF idahopower.com made the previous annotations. ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:261956 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
Re: Vista (was: CrystalTech outage?)
lol. Yeah, they always do. :-D On 11/28/06, Snake [EMAIL PROTECTED] wrote: Linux users would argue otherwise :-) -Original Message- From: Robertson-Ravo, Neil (RX) [mailto:[EMAIL PROTECTED] Sent: 28 November 2006 22:13 To: CF-Talk Subject: Re: Vista (was: CrystalTech outage?) Aren't all comps open to hack/attacks... This e-mail is from Reed Exhibitions (Gateway House, 28 The Quadrant, Richmond, Surrey, TW9 1DN, United Kingdom), a division of Reed Business, Registered in England, Number 678540. It contains information which is confidential and may also be privileged. It is for the exclusive use of the intended recipient(s). If you are not the intended recipient(s) please note that any form of distribution, copying or use of this communication or the information in it is strictly prohibited and may be unlawful. If you have received this communication in error please return it to the sender or call our switchboard on +44 (0) 20 89107910. The opinions expressed within this communication are not necessarily those expressed by Reed Exhibitions. Visit our website at http://www.reedexpo.com -Original Message- From: Munson, Jacob To: CF-Talk Sent: Tue Nov 28 21:56:27 2006 Subject: RE: Vista (was: CrystalTech outage?) They actually let hackers take a shot at Vista this summer and rave reviews came out of it. I think 1 person was able to trick UAC but this was in...hrmmm...I think Beta 2. That hole was covered in the next major release. See, this is exactly what I'm talking about. I have no doubt that Vista will be more secure than XP, merely because of the non-admin user thing. But there /will/ be holes that allow hackers to bypass the UAC stuff. Mark my words. Will antivirus programs solve this? They could, but like Dave pointed out you still have to have updated virus definitions (which should be automated anyway). -- This transmission may contain information that is privileged, confidential and/or exempt from disclosure under applicable law. If you are not the intended recipient, you are hereby notified that any disclosure, copying, distribution, or use of the information contained herein (including any reliance thereon) is STRICTLY PROHIBITED. If you received this transmission in error, please immediately contact the sender and destroy the material in its entirety, whether in electronic or hard copy format. Thank you. == EMF idahopower.com made the previous annotations. ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:261958 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
Re: Vista (was: CrystalTech outage?)
You may not want to open that bag of worms. lol. Plee: Please don't start a Linux vs Windows flame war. On 11/28/06, Bobby Hartsfield [EMAIL PROTECTED] wrote: argue blindly maybe :-) There are plenty of holes in the security of default Linux installations and just as many viruses/Trojans written specifically with Linux in mind. ..:.:.:.:.:.:.:.:.:.:.:. Bobby Hartsfield http://acoderslife.com -Original Message- From: Snake [mailto:[EMAIL PROTECTED] Sent: Tuesday, November 28, 2006 8:06 PM To: CF-Talk Subject: RE: Vista (was: CrystalTech outage?) Linux users would argue otherwise :-) -Original Message- From: Robertson-Ravo, Neil (RX) [mailto:[EMAIL PROTECTED] Sent: 28 November 2006 22:13 To: CF-Talk Subject: Re: Vista (was: CrystalTech outage?) Aren't all comps open to hack/attacks... This e-mail is from Reed Exhibitions (Gateway House, 28 The Quadrant, Richmond, Surrey, TW9 1DN, United Kingdom), a division of Reed Business, Registered in England, Number 678540. It contains information which is confidential and may also be privileged. It is for the exclusive use of the intended recipient(s). If you are not the intended recipient(s) please note that any form of distribution, copying or use of this communication or the information in it is strictly prohibited and may be unlawful. If you have received this communication in error please return it to the sender or call our switchboard on +44 (0) 20 89107910. The opinions expressed within this communication are not necessarily those expressed by Reed Exhibitions. Visit our website at http://www.reedexpo.com -Original Message- From: Munson, Jacob To: CF-Talk Sent: Tue Nov 28 21:56:27 2006 Subject: RE: Vista (was: CrystalTech outage?) They actually let hackers take a shot at Vista this summer and rave reviews came out of it. I think 1 person was able to trick UAC but this was in...hrmmm...I think Beta 2. That hole was covered in the next major release. See, this is exactly what I'm talking about. I have no doubt that Vista will be more secure than XP, merely because of the non-admin user thing. But there /will/ be holes that allow hackers to bypass the UAC stuff. Mark my words. Will antivirus programs solve this? They could, but like Dave pointed out you still have to have updated virus definitions (which should be automated anyway). -- This transmission may contain information that is privileged, confidential and/or exempt from disclosure under applicable law. If you are not the intended recipient, you are hereby notified that any disclosure, copying, distribution, or use of the information contained herein (including any reliance thereon) is STRICTLY PROHIBITED. If you received this transmission in error, please immediately contact the sender and destroy the material in its entirety, whether in electronic or hard copy format. Thank you. == EMF idahopower.com made the previous annotations. ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:261959 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
RE: Vista (was: CrystalTech outage?)
That is very true...nothing trumps stupid user tricks. When I love You made it's rounds, a guy in my department (we are supposed to know better) opened not only once, but twice...nuking all of the images on our server (luckily we had backups...I was at work till 1am that night restoring files g). The worse thing about is there were several signs warning us about the virus. The front door, by the elevators, in the elevators, just outside the elevators on the wall across from them when you step out, and on the doors that led to each office section. Only a blind person could not see the info. Human stupidity never ceases to amaze me. For intelligent creatures, we sure can be total dumba**es hehehe. Eric -Original Message- From: Munson, Jacob [mailto:[EMAIL PROTECTED] Sent: Tuesday, 28 November 2006 14:05 To: CF-Talk Subject: RE: Vista (was: CrystalTech outage?) If you can't accidentally run executables, you can't accidentally turn your machine into a spambot. I think that the changes that Microsoft have made in Vista are awesome, but they won't stop the Trojans that take advantage of security vulnerabilities. Unless you think that Vista won't have any security holes (yeah right). The average user that is prone to let their PC become a zombie doesn't apply patches. So the first big security hole that is exploited will spawn a whole batch Vista zombies. Hence why it's important to run antivirus. EMF idahopower.com made the following annotations. -- This transmission may contain information that is privileged, confidential and/or exempt from disclosure under applicable law. If you are not the intended recipient, you are hereby notified that any disclosure, copying, distribution, or use of the information contained herein (including any reliance thereon) is STRICTLY PROHIBITED. If you received this transmission in error, please immediately contact the sender and destroy the material in its entirety, whether in electronic or hard copy format. Thank you. == ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:261960 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4
CrystalTech outage?
Is anyone else experiencing outages for their CrystalTech sites? Seems like none of mine are up as of about 20 minutes ago. Ray Champagne Senior Application Developer CrystalVision Innovative Web eMarketing Solutions http://www.cvwp.com http://www.cvwp.com ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:261743 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
Re: CrystalTech outage?
Ray, On 11/27/06, Ray Champagne [EMAIL PROTECTED] wrote: Is anyone else experiencing outages for their CrystalTech sites? Seems like none of mine are up as of about 20 minutes ago. Actually, I think it's been almost an hour and a half. They're definitely dead in the water. Looks like either a complete power outage or a complete loss of connectivity, both of which are pretty scary. -- Thanks, Tom Tom McNeer MediumCool http://www.mediumcool.com 1735 Johnson Road NE Atlanta, GA 30306 404.589.0560 ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:261744 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
Re: CrystalTech outage?
Having said that it looks like CrystalTech's own site is up. It seemed to be down, too. Maybe they're getting back online. -- Thanks, Tom Tom McNeer MediumCool http://www.mediumcool.com 1735 Johnson Road NE Atlanta, GA 30306 404.589.0560 ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:261745 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4
Re: CrystalTech outage?
yep, I'm down too. On 11/27/06, Tom McNeer [EMAIL PROTECTED] wrote: Ray, On 11/27/06, Ray Champagne [EMAIL PROTECTED] wrote: Is anyone else experiencing outages for their CrystalTech sites? Seems like none of mine are up as of about 20 minutes ago. Actually, I think it's been almost an hour and a half. They're definitely dead in the water. Looks like either a complete power outage or a complete loss of connectivity, both of which are pretty scary. -- Thanks, Tom Tom McNeer MediumCool http://www.mediumcool.com 1735 Johnson Road NE Atlanta, GA 30306 404.589.0560 ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:261746 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4
RE: CrystalTech outage?
Of course theirs is up first. :) -Original Message- From: Tom McNeer [mailto:[EMAIL PROTECTED] Sent: Monday, November 27, 2006 11:53 AM To: CF-Talk Subject: Re: CrystalTech outage? Having said that it looks like CrystalTech's own site is up. It seemed to be down, too. Maybe they're getting back online. -- Thanks, Tom Tom McNeer MediumCool http://www.mediumcool.com 1735 Johnson Road NE Atlanta, GA 30306 404.589.0560 ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:261747 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4
RE: CrystalTech outage?
Our dedicated servers are all functioning normally. Maybe we got lucky. Eric J. Hoffman Managing Partner 2081 Industrial Blvd StillwaterMN55082 mail: [EMAIL PROTECTED] www: http://www.ejhassociates.com tel: 651.717.4105 fax: 651.717.4115 mob: 651.245.2717 Adobe Solutions Partner Microsoft Certified Partner This message contains confidential information and is intended only for [EMAIL PROTECTED] If you are not cf-talk@houseoffusion.com you should not disseminate, distribute or copy this e-mail. Please notify [EMAIL PROTECTED] immediately by e-mail if you have received this e-mail by mistake and delete this e-mail from your system. E-mail transmission cannot be guaranteed to be secure or error-free as information could be intercepted, corrupted, lost, destroyed, arrive late or incomplete, or contain viruses. Eric J. Hoffman therefore does not accept liability for any errors or omissions in the contents of this message, which arise as a result of e-mail transmission. If verification is required please request a hard-copy version. -Original Message- From: Ray Champagne [mailto:[EMAIL PROTECTED] Sent: Monday, November 27, 2006 11:18 AM To: CF-Talk Subject: RE: CrystalTech outage? Of course theirs is up first. :) -Original Message- From: Tom McNeer [mailto:[EMAIL PROTECTED] Sent: Monday, November 27, 2006 11:53 AM To: CF-Talk Subject: Re: CrystalTech outage? Having said that it looks like CrystalTech's own site is up. It seemed to be down, too. Maybe they're getting back online. -- Thanks, Tom Tom McNeer MediumCool http://www.mediumcool.com 1735 Johnson Road NE Atlanta, GA 30306 404.589.0560 ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:261750 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4
RE: CrystalTech outage?
Looks like if you use the IP, you're good. Must be some kind of DNS issue... http://www.crystaltech.com/forum/topic.asp?TOPIC_ID=16202 -Original Message- From: Jerry Johnson [mailto:[EMAIL PROTECTED] Sent: Monday, November 27, 2006 11:58 AM To: CF-Talk Subject: Re: CrystalTech outage? Importance: High yep, I'm down too. On 11/27/06, Tom McNeer [EMAIL PROTECTED] wrote: Ray, On 11/27/06, Ray Champagne [EMAIL PROTECTED] wrote: Is anyone else experiencing outages for their CrystalTech sites? Seems like none of mine are up as of about 20 minutes ago. Actually, I think it's been almost an hour and a half. They're definitely dead in the water. Looks like either a complete power outage or a complete loss of connectivity, both of which are pretty scary. -- Thanks, Tom Tom McNeer MediumCool http://www.mediumcool.com 1735 Johnson Road NE Atlanta, GA 30306 404.589.0560 ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:261751 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4
RE: CrystalTech outage?
I just called - We're sorry, all circuits are busy now... Yikes. Poor tech guys, and on Cyber Monday. -Original Message- From: Jerry Johnson [mailto:[EMAIL PROTECTED] Sent: Monday, November 27, 2006 11:58 AM To: CF-Talk Subject: Re: CrystalTech outage? Importance: High yep, I'm down too. On 11/27/06, Tom McNeer [EMAIL PROTECTED] wrote: Ray, On 11/27/06, Ray Champagne [EMAIL PROTECTED] wrote: Is anyone else experiencing outages for their CrystalTech sites? Seems like none of mine are up as of about 20 minutes ago. Actually, I think it's been almost an hour and a half. They're definitely dead in the water. Looks like either a complete power outage or a complete loss of connectivity, both of which are pretty scary. -- Thanks, Tom Tom McNeer MediumCool http://www.mediumcool.com 1735 Johnson Road NE Atlanta, GA 30306 404.589.0560 ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:261753 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4
Re: CrystalTech outage?
Not just my websites, but my email as well seems to be down. Not good on a Monday. --- Mary Jo ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:261761 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4
Re: CrystalTech outage?
Can you post the IP address? Ray Champagne wrote: Looks like if you use the IP, you're good. Must be some kind of DNS issue... http://www.crystaltech.com/forum/topic.asp?TOPIC_ID=16202 -Original Message- From: Jerry Johnson [mailto:[EMAIL PROTECTED] Sent: Monday, November 27, 2006 11:58 AM To: CF-Talk Subject: Re: CrystalTech outage? Importance: High yep, I'm down too. On 11/27/06, Tom McNeer [EMAIL PROTECTED] wrote: Ray, On 11/27/06, Ray Champagne [EMAIL PROTECTED] wrote: Is anyone else experiencing outages for their CrystalTech sites? Seems like none of mine are up as of about 20 minutes ago. Actually, I think it's been almost an hour and a half. They're definitely dead in the water. Looks like either a complete power outage or a complete loss of connectivity, both of which are pretty scary. -- Thanks, Tom Tom McNeer MediumCool http://www.mediumcool.com 1735 Johnson Road NE Atlanta, GA 30306 404.589.0560 ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:261762 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
RE: CrystalTech outage?
Um, no, I meant if you use the IP of *your* site. There is no IP to give you, only you'd know that. It's prolly not going to help your customers too much, but you can at least access your site(s) if you need to. -Original Message- From: Jeff Langevin [mailto:[EMAIL PROTECTED] Sent: Monday, November 27, 2006 1:51 PM To: CF-Talk Subject: Re: CrystalTech outage? Importance: High Can you post the IP address? Ray Champagne wrote: Looks like if you use the IP, you're good. Must be some kind of DNS issue... http://www.crystaltech.com/forum/topic.asp?TOPIC_ID=16202 -Original Message- From: Jerry Johnson [mailto:[EMAIL PROTECTED] Sent: Monday, November 27, 2006 11:58 AM To: CF-Talk Subject: Re: CrystalTech outage? Importance: High yep, I'm down too. On 11/27/06, Tom McNeer [EMAIL PROTECTED] wrote: Ray, On 11/27/06, Ray Champagne [EMAIL PROTECTED] wrote: Is anyone else experiencing outages for their CrystalTech sites? Seems like none of mine are up as of about 20 minutes ago. Actually, I think it's been almost an hour and a half. They're definitely dead in the water. Looks like either a complete power outage or a complete loss of connectivity, both of which are pretty scary. -- Thanks, Tom Tom McNeer MediumCool http://www.mediumcool.com 1735 Johnson Road NE Atlanta, GA 30306 404.589.0560 ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:261763 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4
Re: CrystalTech outage?
Dude, they have MAJOR problems right now. All my sites are down too. And CT's website was down for quite a while. Will ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:261764 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
Re: CrystalTech outage?
2 of our clients said they are out. We're on dedicated though so that is good to go (as someone else noted). On 11/27/06, Ray Champagne [EMAIL PROTECTED] wrote: Um, no, I meant if you use the IP of *your* site. There is no IP to give you, only you'd know that. It's prolly not going to help your customers too much, but you can at least access your site(s) if you need to. -Original Message- From: Jeff Langevin [mailto:[EMAIL PROTECTED] Sent: Monday, November 27, 2006 1:51 PM To: CF-Talk Subject: Re: CrystalTech outage? Importance: High Can you post the IP address? Ray Champagne wrote: Looks like if you use the IP, you're good. Must be some kind of DNS issue... http://www.crystaltech.com/forum/topic.asp?TOPIC_ID=16202 -Original Message- From: Jerry Johnson [mailto:[EMAIL PROTECTED] Sent: Monday, November 27, 2006 11:58 AM To: CF-Talk Subject: Re: CrystalTech outage? Importance: High yep, I'm down too. On 11/27/06, Tom McNeer [EMAIL PROTECTED] wrote: Ray, On 11/27/06, Ray Champagne [EMAIL PROTECTED] wrote: Is anyone else experiencing outages for their CrystalTech sites? Seems like none of mine are up as of about 20 minutes ago. Actually, I think it's been almost an hour and a half. They're definitely dead in the water. Looks like either a complete power outage or a complete loss of connectivity, both of which are pretty scary. -- Thanks, Tom Tom McNeer MediumCool http://www.mediumcool.com 1735 Johnson Road NE Atlanta, GA 30306 404.589.0560 ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:261765 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
Re: CrystalTech outage?
Ah, I see. I meant the IP address of crystaltech. I am just curious whether their own website has any info on the problem. --Jeff Ray Champagne wrote: Um, no, I meant if you use the IP of *your* site. There is no IP to give you, only you'd know that. It's prolly not going to help your customers too much, but you can at least access your site(s) if you need to. -Original Message- From: Jeff Langevin [mailto:[EMAIL PROTECTED] Sent: Monday, November 27, 2006 1:51 PM To: CF-Talk Subject: Re: CrystalTech outage? Importance: High Can you post the IP address? Ray Champagne wrote: Looks like if you use the IP, you're good. Must be some kind of DNS issue... http://www.crystaltech.com/forum/topic.asp?TOPIC_ID=16202 -Original Message- From: Jerry Johnson [mailto:[EMAIL PROTECTED] Sent: Monday, November 27, 2006 11:58 AM To: CF-Talk Subject: Re: CrystalTech outage? Importance: High yep, I'm down too. On 11/27/06, Tom McNeer [EMAIL PROTECTED] wrote: Ray, On 11/27/06, Ray Champagne [EMAIL PROTECTED] wrote: Is anyone else experiencing outages for their CrystalTech sites? Seems like none of mine are up as of about 20 minutes ago. Actually, I think it's been almost an hour and a half. They're definitely dead in the water. Looks like either a complete power outage or a complete loss of connectivity, both of which are pretty scary. -- Thanks, Tom Tom McNeer MediumCool http://www.mediumcool.com 1735 Johnson Road NE Atlanta, GA 30306 404.589.0560 ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:261766 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
Re: CrystalTech outage?
Is anyone else experiencing outages for their CrystalTech sites? Seems like none of mine are up as of about 20 minutes ago. Hey, maybe it's the same construction crew that hit HostMySite awhile back. lol! Will ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:261767 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4
Re: CrystalTech outage?
Looks like it is back up... --Jeff Jeff Langevin wrote: Ah, I see. I meant the IP address of crystaltech. I am just curious whether their own website has any info on the problem. --Jeff Ray Champagne wrote: Um, no, I meant if you use the IP of *your* site. There is no IP to give you, only you'd know that. It's prolly not going to help your customers too much, but you can at least access your site(s) if you need to. -Original Message- From: Jeff Langevin [mailto:[EMAIL PROTECTED] Sent: Monday, November 27, 2006 1:51 PM To: CF-Talk Subject: Re: CrystalTech outage? Importance: High Can you post the IP address? Ray Champagne wrote: Looks like if you use the IP, you're good. Must be some kind of DNS issue... http://www.crystaltech.com/forum/topic.asp?TOPIC_ID=16202 -Original Message- From: Jerry Johnson [mailto:[EMAIL PROTECTED] Sent: Monday, November 27, 2006 11:58 AM To: CF-Talk Subject: Re: CrystalTech outage? Importance: High yep, I'm down too. On 11/27/06, Tom McNeer [EMAIL PROTECTED] wrote: Ray, On 11/27/06, Ray Champagne [EMAIL PROTECTED] wrote: Is anyone else experiencing outages for their CrystalTech sites? Seems like none of mine are up as of about 20 minutes ago. Actually, I think it's been almost an hour and a half. They're definitely dead in the water. Looks like either a complete power outage or a complete loss of connectivity, both of which are pretty scary. -- Thanks, Tom Tom McNeer MediumCool http://www.mediumcool.com 1735 Johnson Road NE Atlanta, GA 30306 404.589.0560 ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:261768 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
RE: CrystalTech outage?
DOS attack on their DNS server, according to them. Something like 2500 IP have been isolated so far. This sucks. -Original Message- From: Will Tomlinson [mailto:[EMAIL PROTECTED] Sent: Monday, November 27, 2006 1:09 PM To: CF-Talk Subject: Re: CrystalTech outage? Is anyone else experiencing outages for their CrystalTech sites? Seems like none of mine are up as of about 20 minutes ago. Hey, maybe it's the same construction crew that hit HostMySite awhile back. lol! Will ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:261769 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
Re: CrystalTech outage?
This from the crystaltech forums: - We have experienced a very large distributed denial of service attack DDOS on our main network. The attack is against our shared segment and DNS specifically. We have currently blocked over 2200 DDOS IPs and are continuing to containe the issue. I will keep everyone posted as we learn more. Bob Cichon President and Chief Operating Officer CrystalTech Web Hosting Inc. -- Jeff Langevin wrote: Ah, I see. I meant the IP address of crystaltech. I am just curious whether their own website has any info on the problem. --Jeff Ray Champagne wrote: Um, no, I meant if you use the IP of *your* site. There is no IP to give you, only you'd know that. It's prolly not going to help your customers too much, but you can at least access your site(s) if you need to. -Original Message- From: Jeff Langevin [mailto:[EMAIL PROTECTED] Sent: Monday, November 27, 2006 1:51 PM To: CF-Talk Subject: Re: CrystalTech outage? Importance: High Can you post the IP address? Ray Champagne wrote: Looks like if you use the IP, you're good. Must be some kind of DNS issue... http://www.crystaltech.com/forum/topic.asp?TOPIC_ID=16202 -Original Message- From: Jerry Johnson [mailto:[EMAIL PROTECTED] Sent: Monday, November 27, 2006 11:58 AM To: CF-Talk Subject: Re: CrystalTech outage? Importance: High yep, I'm down too. On 11/27/06, Tom McNeer [EMAIL PROTECTED] wrote: Ray, On 11/27/06, Ray Champagne [EMAIL PROTECTED] wrote: Is anyone else experiencing outages for their CrystalTech sites? Seems like none of mine are up as of about 20 minutes ago. Actually, I think it's been almost an hour and a half. They're definitely dead in the water. Looks like either a complete power outage or a complete loss of connectivity, both of which are pretty scary. -- Thanks, Tom Tom McNeer MediumCool http://www.mediumcool.com 1735 Johnson Road NE Atlanta, GA 30306 404.589.0560 ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:261770 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
RE: CrystalTech outage?
From what I understand about most DDOS's is that hackers will use a large network of compromised machines running a Trojan virus. That means, if your anti-virus isn't up-to-date, your computer could be helping out with the attack. :) That's what scares me about the general uneducated public with crummy Trojan infested machines who unknowingly help hackers out with this stuff. *shudder* ~Brad -Original Message- From: Jeff Langevin [mailto:[EMAIL PROTECTED] Sent: Monday, November 27, 2006 1:32 PM To: CF-Talk Subject: Re: CrystalTech outage? This from the crystaltech forums: - We have experienced a very large distributed denial of service attack DDOS on our main network. The attack is against our shared segment and DNS specifically. We have currently blocked over 2200 DDOS IPs and are continuing to containe the issue. I will keep everyone posted as we learn more. ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:261772 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
RE: CrystalTech outage?
Oh, that's why we are still working on our dedicated scenario. We use external DNS through zoneedit. They have had a DNS issue before if memory serves, its why we went this route. Just in case anyone wants to look at it: www.zoneedit.com Cheap as heck and reliable. Eric J. Hoffman Managing Partner 2081 Industrial Blvd StillwaterMN55082 mail: [EMAIL PROTECTED] www: http://www.ejhassociates.com tel: 651.717.4105 fax: 651.717.4115 mob: 651.245.2717 Adobe Solutions Partner Microsoft Certified Partner This message contains confidential information and is intended only for [EMAIL PROTECTED] If you are not cf-talk@houseoffusion.com you should not disseminate, distribute or copy this e-mail. Please notify [EMAIL PROTECTED] immediately by e-mail if you have received this e-mail by mistake and delete this e-mail from your system. E-mail transmission cannot be guaranteed to be secure or error-free as information could be intercepted, corrupted, lost, destroyed, arrive late or incomplete, or contain viruses. Eric J. Hoffman therefore does not accept liability for any errors or omissions in the contents of this message, which arise as a result of e-mail transmission. If verification is required please request a hard-copy version. -Original Message- From: Ray Champagne [mailto:[EMAIL PROTECTED] Sent: Monday, November 27, 2006 12:59 PM To: CF-Talk Subject: RE: CrystalTech outage? Um, no, I meant if you use the IP of *your* site. There is no IP to give you, only you'd know that. It's prolly not going to help your customers too much, but you can at least access your site(s) if you need to. -Original Message- From: Jeff Langevin [mailto:[EMAIL PROTECTED] Sent: Monday, November 27, 2006 1:51 PM To: CF-Talk Subject: Re: CrystalTech outage? Importance: High Can you post the IP address? Ray Champagne wrote: Looks like if you use the IP, you're good. Must be some kind of DNS issue... http://www.crystaltech.com/forum/topic.asp?TOPIC_ID=16202 -Original Message- From: Jerry Johnson [mailto:[EMAIL PROTECTED] Sent: Monday, November 27, 2006 11:58 AM To: CF-Talk Subject: Re: CrystalTech outage? Importance: High yep, I'm down too. On 11/27/06, Tom McNeer [EMAIL PROTECTED] wrote: Ray, On 11/27/06, Ray Champagne [EMAIL PROTECTED] wrote: Is anyone else experiencing outages for their CrystalTech sites? Seems like none of mine are up as of about 20 minutes ago. Actually, I think it's been almost an hour and a half. They're definitely dead in the water. Looks like either a complete power outage or a complete loss of connectivity, both of which are pretty scary. -- Thanks, Tom Tom McNeer MediumCool http://www.mediumcool.com 1735 Johnson Road NE Atlanta, GA 30306 404.589.0560 ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:261776 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4
Re: CrystalTech outage?
Luckily none of my dedicated servers were affected, nor any of my clients. SORT OF... One of my clients uses a combination of his own SQL Server and CT's, where the CT server manages a peripheral app and his client variables (!). His CF connections kept working but his ASP DSN's died. I *guess* I connected to the IP in CF when I set up the server, and his ASP guy did machine name ([EMAIL PROTECTED]). We've had major issues with the reliability of their shared SQL Servers and I finally weaned the client off of his but I get it for free shared SQL Server to a dedicated one. I'll make sure he knows I saved his a$$ yet again in my next email to him :-) One more example of why you want to stay truly dedicated if you go that route. I think I'll recommend he get another server for his final legacy stuff. -- [EMAIL PROTECTED] Janitor, MSB Web Systems mysecretbase.com ~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:261795 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4