September 21st, 2004, 05:02 PM
I know that everyone is putting little faith in these notes... and that Tiger Shark has sniffed and found nothing... but I'm going to have to disagree.... -- Check out
Using Microsoft Windows XP Search Companion, you can search for all types of objects, from pictures, music, and documents, to printers, computers, and people. You can search your own computer, other computers (if you are connected to a network or workgroup), and the Internet. You can also choose to search with the help of an animated screen character.
When you search the Internet using the Search Companion, the following information is collected regarding your use of the service: the text of your Internet search query, grammatical information about the query, the list of tasks which the Search Companion Web service recommends, and any tasks you select from the recommendation list. Search Companion does not record your choice of Internet search engine, and does not collect or request any personal or demographic information. Information collected by the Search Companion can not be used to identify you individually, and is never used in conjunction with other data sources that may contain personal data. All information is retained for twelve months, and discarded in the thirteenth month following collection.
Where did I find that you might ask?? When I ran a sniff and searched... I'm wondering if when TS did it, he forgot to reenable the default Windows Services... I turned Alerter, ALGS, BITS, Error Reporting and a few others back on before running my sniffs.
Anyways Check out the screen shot.. If anyone wants the capture to see the details they can PM me.
IT Blog: .:Computer Defense:.
(Pronounced Pinched): Acronym - Point 'n Click Hacked. As in: "That website was pinched" or "The skiddie pinched my computer because I forgot to patch".
September 21st, 2004, 06:04 PM
FYI- I'm not sure if any of you read the comments at the bottom of the page... but there is a discussion going on at hackinthebox.org too. The author has joined in on that discussion and further explains his concerns.
is a firefox extension that gives you stats on how long you have quit smoking, how much money you\'ve saved, how much you haven\'t smoked and recent milestones. Very helpful for people who quit smoking and used to smoke at their computers... Helps out with the urges.
September 21st, 2004, 06:32 PM
I Agree with i2C, the impression I was getting was the writer was pushing another product.
This is very interesting
September 21st, 2004, 08:27 PM
Great article, but am I the only one that found this part ironic?
But then he went on to demonstrate quite well that in order to be properly interpreted, facts have to be taken in context?
They never could grasp that context is irrelevant to the scientific process or methodology, science examines facts, not interpretation
1+1=2, that's a fact.
1+1=3, also a fact (dig out your trigonometry text )
My 2 cents.
Great article on many levels. Thanks phish.
September 21st, 2004, 08:51 PM
September 22nd, 2004, 04:44 AM
I'm going to chime in behind i2c and Tiger Shark on this one. I've seen this article, or articles like it, since the advent of Win3.11 (the networkable version). All too common for someone with a smattering of technical knowledge to make those broad, sweeping statements and not back up any of the claims with anything of substance.
I sniff traffic going in and out of more than 500 Windows systems on a regular basis. Contrary to the paranoid line of thinking, Windows doesn't really give up much, anymore. At least, when it is not infected with spyware, trojans or P2P systems. It ain't like it was with earlier versions of Win98 and it just gave out everything, including the baby's bathwater.
Keep in mind that Microsoft has to do business in almost every country in the world, and the various privacy and trade laws make it imperrative that sensitive data and private information be protected, first and foremost.
As for 1+1=3, I remember having to write a proof for that statement. 9th Grade Algebra, if I remember correctly.
September 22nd, 2004, 06:27 AM
Firstly, wrong forum, I wouldn't be surprised if a mod moved this to a different forum.
Secondly, there is so much misinformation and lack of understanding on the author's part in that document so as to make it useless. Cacosapo pretty well covered a lot of it, but an addendum to #15:
The author states:
This is untrue on several points:
The truth is, raw sockets is not required, however, it just makes life simpler. For real time software, the overhead presented by TCP, is too great and the effects can be seen on excessive lag during online gaming, or media playback. A streamlined custom stack, allows for faster processing of the IP packet and over a 1000% improvement to connectivity management than TCP encapsulation.
Many developers do not realize that TCP is not required and that custom packets can be encapsulated within IP alone. IP routes the packet, from A to B, and TCP provides a data path encapsulated with the IP packet. This allows Internet routing to change, without effecting application support. Custom stack creation is a 'walk in the park', all it involves is parsing a binary stream and executing functions based on flags or value, it also, automatically, supports the OSI/DoD model.
By breaking support for raw sockets on Windows 2000, Microsoft manipulated the entire global market, as no developer could be assured their applications would function after 12-24 months. It also provided a way for Microsoft to eliminate tools such as 'Ethereal' that could inspect the communications of a Windows system.
- There are other commonly supported protocols than TCP that have lower overheads -- Unreal engine games have historically used UDP for data transfer for this reason.
- Since the author suggests he or she can trivially write a hugely superior protocol, how come I don't see any links to the specs for such a protocol?
- Raw socket support in all versions of Windows can be had using 3rd party libraries, which applications like Ethereal are capable of using. In fact, certain versions of Ethereal support raw sockets just fine, even when Windows does not.
All in all the site is largely inaccurate, the author evidently didn't do a lot of research, and the result is a collection of mostly false information, negatively skewed opinion, and uninformed derision being used wholly to put forth one person's paranoid delusional view.
The Nelson-Shepherd cutoff: The point at which you realise someone is an idiot while trying to help them.
\"Well as far as the spelling, I speak fluently both your native languages. Do you even can try spell mine ?\" -- Failed Insult
Is your whole family retarded, or did they just catch it from you?