-
December 8th, 2003, 12:54 AM
#11
Hi Ali,
Nice stuff..................I have answered your question in another thread.......might not be the "hottest" topic, but very worthy of your attentions IMHO
Cheers
-
December 8th, 2003, 01:55 AM
#12
Member
Just like someone else said, a lot of information.
But i dont think doing just those things will really help.
Most firewalls dont stop exploits, so you also gotta make sure you install every single hotfix.
The best thing to do for the windows XP users is enable the build in XP firewall, since it totally clocks you from the net.
-
December 8th, 2003, 02:02 AM
#13
Banned
-
December 8th, 2003, 11:44 AM
#14
The best thing to do for the windows XP users is enable the build in XP firewall, since it totally clocks you from the net.
The XP firewall DOES NOT totally block you from the net. All it does is prevent connections to some ports. All outgoing connections are permitted.
Cheers,
cgkanchi
-
December 8th, 2003, 03:28 PM
#15
My appologies. I just noted there was not sites or references on the original post.
-
December 8th, 2003, 03:51 PM
#16
Info Tech Geek... I appreciate your time and integrity to apologize.. but he does have a link in his sig which shows his site and that was one of the top listings you would of found on google..
regards..
-
December 8th, 2003, 05:02 PM
#17
Member
Originally posted here by cgkanchi
The XP firewall DOES NOT totally block you from the net. All it does is prevent connections to some ports. All outgoing connections are permitted.
Cheers,
cgkanchi
the XP firewall doesnt respond to ICMP and ping replies, 2 things you need when scanning or things like that.
You can still get axx to a box even when the XP firewall is enabled, but you gotta work directly with exploits. enumeration and scanning are out of the question when a box doesnt repond to your request.
Since it doesnt respond to pings you are as good as off-line.
-
December 8th, 2003, 05:21 PM
#18
the XP firewall doesnt respond to ICMP and ping replies, 2 things you need when scanning or things like that.
No you don't. That's just for one form of scanning. You can do scanning without the ICMP. Take a look at nmap -P0 <ip>
-
December 8th, 2003, 05:49 PM
#19
LOL, beat me to it MsM. I LOVE nmap -p0. It's helped me scan myself remotely a few times. Also, nmap pingsweeps OWN.
Cheers,
cgkanchi
-
December 8th, 2003, 07:05 PM
#20
As some have already said it, the built-in xp fw only filters inbond... that's why many users fell they're pretty much safe when they are indeed vulnerable to any trojan they get from the web, since the FW doens't prevent it from phoning home.
And although nmap is the best (of the best, of the best), it isn't the only scanner allowing you to scan without pinging... so if you think the XP's FW is enough you are (IMHO) incredibly wrong.
-not to mention the multiple problems it gives (and gave me) users...it prevents some proggies from running and loads of other stuff... just google it for problems and you'll see what i mean: http://www.google.pt/search?q=xp+fir...hl=pt-PT&meta=.
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|