Jump to content

vipejc

Member
  • Posts

    312
  • Joined

  • Last visited

  • Donations

    0.00 USD 
  • Country

    United States

Posts posted by vipejc

  1. I think you misunderstand this stuff.

    Thanks for all that firewall info. Stealth mode is safer because a computer that can't be seen is safer than one that can be seen, but my gateway uses NAT, which means my internal IP address is translated into the external public IP address of the ISP, which is in a stealth mode, meaning I'm very safe from probing attacks. I took the GRC tests and my system passed all tests except the one where it responded to pings. This isn't a big concern, because even if a hacker tries to hack my computer, they're not getting in. They'll be like a person with a plastic hammer hitting a concrete-walled fortress. LOL But one thing I don't understand is I have the Windows XP Firewall set to not "Allow incoming echo requests" under the ICMP settings, so why is my computer responding to pings?

    1 - NAT translates your EXTERNAL to the INTERNAL, not the other way around, as you "think"

    2 - NOW you say your Router is set to Stealth (now that you know what it is), which is good

    3a - You misunderstand PING. Reread the text after another test -OR- read this (still applies) -

    http://pic.dhe.ibm.com/infocenter/powersys/v3r1m5/topic/p7hcgl/ping.htm

    3b - The Router MUST allow that so your ISP can "find" you to assign an IP (an assumption on my part). It WILL be opened on the Router and then Closed (or at least SHOULD be). In all other cases (Ports) you are "invisible".

    3c - The setting on your PC Firewall on you INTERNAL IP is applicable regardless. The GRC test is testing your EXTERNAL ROUTER IP Address, and NOT your INTERNAL PC IP Address. I thought I made it clear about MY settings and "how stuff works" (I gave you links to learn about that).

    3d - Your XP Firewall does NOT do Stealth Mode (ref. the MS TechNet article link), so yep, it's NOT "invisible".

    3e - IOW, someone OUTSIDE can "see" your EXTERNAL IP (an attack on a Router is kind of foolish), but they would be BLOCKED at the PC (Internal IP) but still "there".

    Be aware of requirements for WWW/FTP/FileSharing ports. I personally had a little "learning curve" to set myself up for this stuff on my INTERNAL IP PC 3d Party Firewall. I see no reason to provide you with my paricular settings since you aren't "serving" anything and (apparently) connect to the Router -AND- any Local LAN PC's would have to have their Windows Firewall set up to allow intercommunications for (at minumum) File Sharing (look at the other settings in it).

    Side note: It's entirely possible to make a simple "base" (even an OLD one) PC with One NIC In and One Or More NICs Out and use it as a router by installing a DHCP/NAT Server type of OS (Linux or any flavor of MS Server). I've done that on my Server before. In THAT case it would STILL have to respond to a Direct Cable Modem (not a router) request in order for the Modem to assign the Dynamic (single) IP.

    You're protected as well as can be. Just do some more "light reading" so you'll understand better. ;)

    HTH

    So again I ask why is the Windows XP Firewall responding to ping requests when I have it set to not "Allow incoming echo requests" set under ICMP settings? Shouldn't this setting make me invisible and simulate stealth mode?

  2. What limitations do you face using 9x or ME in 2014?

    Can you still access the Internet?

    Have you lost the ability to watch YouTube videos?

    Can you no longer bank and shop on the Internet through SSL?

    Do certain buttons and features on websites no longer work because your version of Flash or Java are too old?

    Is your web browser awfully slow and takes a long time to render webpages?

    Do you think sometime in the future you'll be forced to retire Windows 9x or ME?

    Feel free to add any other issues you have.

  3. Technet "Stealth Mode" -

    http://technet.microsoft.com/en-us/library/dd448557%28v=ws.10%29.aspx

    Take a look also here (look for the "Stealth Mode" paragraph) -

    http://www.bleepingcomputer.com/tutorials/understanding-and-using-firewalls/

    http://www.linuxtopia.org/LinuxSecurity/LinuxSecurity_Firewall_How.html

    Basically, a hacker can detect "you are there", regardless of blocks. A "closed port" is not the same as "you can't even see me".

    At the risk of "hacking off" jaclaz ( :w00t:) try this -

    https://www.grc.com/default.htm

    Scroll down to "Shields Up!" and select "All Service Ports". Bear in mind, the it's using my external Dynamic IP provided by my ISP (the one the Router sees) and my Firewall (3d Party) does NOT have "Stealth Mode" set. I get a different result if the Firewall has "Stealth Blocked Ports" enabled. -AGAIN-, I have FTP/HTTP ports passing through the Router and have some "special" settings in the Firewall itself (for e.g. Local File Sharing, etc.). -ALSO- note that i do NOT have my Main PC on the Router in the DMZ.

    Does that help? Please report back any results you may have with the Windows Firewall, if you don't mind. (Not in the mood to fire up a "vanilla" XP machine right now).

    edit - forgot to mention that you can find out more via this Google

    "stealth mode" firewall

    edit2 - AH! I also do NOT have "full" Stealth set on my Router, also an ATT 2wire, as noted in the following -

    http://www.wilderssecurity.com/threads/no-firewall-will-stealth-my-ports-no-router-stealth-mode.334217/

    (forgot the setting was there - duh!)

    HTH

    Thanks for all that firewall info. Stealth mode is safer because a computer that can't be seen is safer than one that can be seen, but my gateway uses NAT, which means my internal IP address is translated into the external public IP address of the ISP, which is in a stealth mode, meaning I'm very safe from probing attacks. I took the GRC tests and my system passed all tests except the one where it responded to pings. This isn't a big concern, because even if a hacker tries to hack my computer, they're not getting in. They'll be like a person with a plastic hammer hitting a concrete-walled fortress. LOL But one thing I don't understand is I have the Windows XP Firewall set to not "Allow incoming echo requests" under the ICMP settings, so why is my computer responding to pings?

  4. Well,

    but unlike what you said, the Windows Firewall closes ALL inbound ports, so a hacker can't get in the system.
    ...ever heard of "stealth mode"? And see Post#34 - there ARE OutBound connections - call them "Phone Home". ;)

    No, what's stealth mode? And I know the XP Firewall doesn't protect against outbound connections, but if you don't let a hacker in, it's not an issue.

  5. Windows PE 4.0 supposedly won't run on a system with a CPU that doesn't support NX, PAE, or SSE2. Could you confirm this, Trip?

    WinPE should follow the basic system requirements of the OS it was created from. So for WinPE4/5, it would match the CPU requirements of Windows 8. So I think you would be correct.

    http://windows.microsoft.com/en-us/windows-8/system-requirements

    Obviously the other reqs are invalid, although you probably do need 1GB for a 64bit PE4/5 to function properly.

    Yeah, just to be safe, I'm sticking with PE 3.1 because it's compatible with all my hardware and I don't want to risk problems just to get some useless new features.

  6. If your Windows XP installation uses hardware PE 4.0 and up doesn't support, it becomes an OS issue.

    Sure :), and if my grandpa had 5 (steel ;)) balls he would have been a pinball.

    jaclaz

    XP installations run on legacy hardware and since Windows PE 4.0 uses Windows 8 code, the chance it'll work is slim.

  7. You know, this came up before. I am testing a WinPE5 image with all our hardware now, with the intention of replacing the WinPE4 image. If our XP and DOS images do not deploy, it will be a problem. I suspect it will come down to how we are using it.

    For example, what applications are you running? Are you using DISM or Imagex or something else? And even if this is the case, why couldn't you just use one of the older binaries instead?

    After 4 hours or so of tough research, I found the answer. Windows PE 3.1 is the last version for Windows XP. Windows PE 4.0 supposedly won't run on a system with a CPU that doesn't support NX, PAE, or SSE2. Could you confirm this, Trip? Why can't Microsoft just be intelligent and say that? Just because they cut XP support, doesn't mean Microsoft should stop telling people if newer programs and tools support XP. I really can't stand stupid!

  8. I know Windows PE 3.0 works with Windows XP, but what about the newer Windows PE 3.1 to 5.1? If Windows PE support is discontinued for Windows XP, what's the last supported version? Microsoft has a habit of not telling people that older operating systems still work with newer tools.

  9. I'm just going to monitor the system. If it crashes again, I'll run an extensive VRAM test. If it passes, I'll swap out the old power supply for the new one. If it fails, I'll swap this video card for a new one. Just have to play the "process of elimination" game until I can solve this riddle.

  10. Just for fun I enabled the Windows Firewall log for a few hours and tracked all the dropped packets. I had no idea somebody was trying to attack my computer almost every second! Now I really see why a firewall is critical to any computer connected to the Internet. NAT alone would be a security risk, but unlike what you said, the Windows Firewall closes ALL inbound ports, so a hacker can't get in the system.

  11. Power supplies lose efficiency as they get older and the capacitors age. After five years you should really consider replacing it--it's no longer capable of putting out 420W. At nine years I'm surprised it hasn't failed completely. Just saying.

    There's a discussion at AnandTech concerning capacitor aging if you're interested.

    You're exactly right, but if it still works as expected, I'm not going to buy a new one. This problem is something different, and I'm hell bent on finding out what it is.

  12. It may be your power supply. The addition of a power hungry video card may be too much for your original supply. What is its rating? And how old is it?

    No, my power supply is fine. It's 420 W and about nine years old. The card doesn't use more than 45 W and the system uses around 180 W.

  13. Guys, I've used onboard video for 10 years, and never did I have an issue with it. Well, then my 17" CRT monitor died, so I was forced to buy a new monitor. The monitor I bought has a DVI interface, and since my motherboard only has a VGA interface, I bought what I thought was a great mainstream AGP graphics card, a HIS ATI X1650. I installed the card and the latest drivers. The card seemed to work great for a month or so, but then I noticed issues as I used it for different things. The first was an issue where Flash would lag while watching HD videos. This is because even though the card supports HD video and hardware acceleration, Flash uses the CPU to process video through software and my CPU isn't powerful enough to process HD video by itself. When I watch streaming video in HD, the CPU temperature rises as high as 65 C, the video lags, and then the computer crashes. Lesson learned: I can't watch HD streaming video. Okay, fine I accepted that. The next issues are intermittment and cause the computer to crash while using my web browser. Sometimes it crashes while I copy-and-paste text and other times it just crashes when the CPU temperature rises to 65 C while watching standard streaming video in 480p, or browsing a webpage with a lot of advertisements, like animated banners. I have tested the VRAM using the quick test, and the card has no errors. If the system crashes again, I'll run the extensive test. Is it normal for a graphics card to crash all the time, sometimes after a few days and sometimes after weeks? Did I sacrifice stability for power? The card's fan also makes a loud noise on startup but then runs whisper quiet once it warms up, and the fan does work fine. I just want to solve this. I've tried almost everything, including disabling all browser add-ons and updating my browser and all its plug-ins. It's so annoying when the video card drops the connection, the monitor goes to sleep, and I have to press the reset button to set the system straight again.

  14. I just learned my gateway uses NAT only and has the hardware firewall disabled. I can enable it, but I know it's disabled by default to prevent connection issues. I know NAT isn't a firewall, but it is a form of security. Am I safe with the NAT-only gateway and the built-in Windows software firewall? I think so, but I want to hear your thoughts. NAT takes my real IP address and translates it into a fake IP address when making external connections to the Internet, and the Windows firewall offers solid protection from inbound traffic, which is fine, as the hacker would never get on my system to send outbound traffic.

  15. Also XP has had 13 years of fixes and improvements under its belt.

    Hackers nowadays are focusing on windows 7 ++++ why would the give a sh*t about someone who can't afford or care to upgrade from XP?

    Yes, 13 years or so of patches and improvements UP TO April 8, 2014. Don't think for a second that the elite hackers won't research Windows 7 or 8 security holes and then reverse-engineer them, test them in XP, and if they work, put them on the black market to the highest bidder or just use them themselves to exploit XP systems. That was my real concern, and it was a legitmate one, not some newbie nonsense rant.

    Please note I wasn't in any way saying you are just noob ranting.

    It's cool. I don't know everything. Nobody does. We computer users need to always share our knowledge so together we can stop all these sales pitches and make the best personal decisions for our computers. MS is not half as smart as all of us and our collective knowledge.

  16. Yeah, just scare tactics to try and sell one crappy 8. :P

    But one thing does worry me, and I'd like for you to answer it. A popular computer guy named Eli the Computer Guy, who is very arrogant and makes very little sense, said that any XP system with an OS vulnerability can be hacked, even if it's just used as a server, cash register, or ATM, because any device connected to the Internet, whether wired or wireless, that uses broadband and is always connected to the Internet is a target for hackers. [...]

    In principle, anything directely connected to the WAN is more at risk than anything behind a common, garden-variety, router (or wireless router), which firewall (the proverbial hardware firewall) is activated and correctly configured. If there is a router firewall between your machine and the WAN, then its the router firewall (in ROM, linux or proprietary OS) that is seen from the outside. Now tell me please, how can a hacker attack a XP machine that is always on, but which that hacker cannot even see? I say: FUD!!! icon33.gif

    And I say more: long live XP! :yes:

    Sounds like it can't. Well, thanks for clearing this up. All these replies just confirm that XP is completely safe for a home user now and forever.

  17. Also XP has had 13 years of fixes and improvements under its belt.

    Hackers nowadays are focusing on windows 7 ++++ why would the give a sh*t about someone who can't afford or care to upgrade from XP?

    Yes, 13 years or so of patches and improvements UP TO April 8, 2014. Don't think for a second that the elite hackers won't research Windows 7 or 8 security holes and then reverse-engineer them, test them in XP, and if they work, put them on the black market to the highest bidder or just use them themselves to exploit XP systems. That was my real concern, and it was a legitmate one, not some newbie nonsense rant.

  18. Let's put it this other way (anecdotal :w00t:), I have never seen in my whole life an actual vulnerability actually being taken advantage of by a "hacker" on a non-business installment.

    Anything I ever came across was introduced in the affected machine(s):

    1. by senselessly clicking on a link on a received e-mail (or with Outlook/Outlook Express just opening a received e-mail)
    2. by getting a virus/malware as "strings attached" to a downloaded file, usually "border line" with legality or beyond it (warez, pirated movies, etc.)
    3. by browsing on a malicious site (often connected with the above)
    4. by physical insertion in the machine of a USB stick (previously and separately affected because of one of the reasons above)

    The whole point is that someone that writes a malware/virus etc. would do this mainly for one of these three reasons:

    1. sheer fun/show off/brag about how clever he/she is <- no profit
    2. create havoc on large scale <- no profit
    3. get money (lots of it) <- profit

    Now:

    1. the first one is just a "kid" and has no interest in targeting specifically you, as it wouldn't produce the kind of publicity wished for.
    2. the second one is someone that is against all humanity (or technology or MS or all of them) and also has no interest in targeting you.
    3. the third one is someone that wants money and since you have not enough of it and it would cost him/her much more time and effort to target individuals (to get only a little money) than trying to collect money by infecting the largest possible number of machines, also has no particular interest on you.

    What remains are just two possibilities:

    1. you have (personally) offended the "hacker" or however made the "hacker" willing to take a personal revenge against you
    2. you have (personally) offended someone and this someone has enough money (and the capabilities) to find and hire a "hacker" to have him/her take the revenge

    All in all, if you behave nicely enough with all people :), you should be safe from these.

    You are however a target, but just one target in the mass of other targets, there is nothing particularly "safe" to do, but you will have to adopt a strategy similar to the one in the old bear joke:

    http://www.forensicfocus.com/Forums/viewtopic/p=6567580/#6567580

    you don't have to be "better than the hacker is", you need to be "better than a large enough number of possible victims".

    jaclaz

    Jaclaz, you should hear this tool named Eli the Computer Guy. Watch his stupid videos on YouTube about the end of support for XP. Here's my impression of him. OMGZ! You must kill XP now! All XP machines are sitting ducks and will be shot on site. It is essential that you buy Windows 7 or 8, now. If you don't, your computer will blow up, or a hacker will take over it and turn it into a zombie bot and destroy the worldz! The funniest thing he said was XP wasn't built for broadband or security, and that XP systems should be disconnected from the Internet and put on their own little private island. Well, Eli, my XP loves broadband. It's so fast and I get so much work done. Love the thing. LOL

  19. Then it sounds like I have absolutely nothing to worry about, as I'm as careful as they come and haven't had a virus in over 10 years! I just wanted to make sure I didn't overlook something because I invested a lot of time and money into XP. Look, the truth is MS just wants everybody to upgrade to Windows 7 or newer and stupidly spend $200 for a dummed down OS with a lot less functionality and slightly better security. But the truth is Windows 7 and newer also have OS exploits that will also need to be constantly patched as they age. The only reason 7 and newer don't get hacked as much is because they're much newer. Someday they'll be in the same boat as XP. The truth is XP is the most stable and productive OS in the world, and only a fool would stop using it. If MS would just get some intelligence and work hard to surpass it, so many people would say "Yes, this new Windows makes XP look like DOS. It's so much faster and more productive. No more Blue Screens. Just a world better." Then even I would drop XP. But that will never happen. MS was always okay until mid-2006. Never great at anything, but mostly passable. Then once Gates left, it's been all downhill. Every MS product is a joke, from the Xbox 360 to Windows 8. So simply put, don't buy any Microsoft products. It's nothing but a money-making game. They want to play computer Nazi and force upgrades, instead of making people want to buy. It's pathetic. And I just want Microsoft dead and buried. The world doesn't need them anymore. The moral of this story is simple. Either Microsoft starts working harder and always works hard to keep pushing technology in the right direction, or they need to just GTFO of business. The game never stops. Microsoft likes to make an OS and support it for 2 years. Then they say time to upgrade for no good reason. They just want stupid money. And if they earned my money, I'd be happy to give it to them.

  20. Yeah, just scare tactics to try and sell one crappy 8. :P

    Den, I'm the leader of the hate-MS tribe, and I know 99.9% of it is scare tactics and fear mongering for MS to try their hardest to force upgrades because they're too stupid and lazy to legitimately make an OS better than XP that people actually say "OK, this blows XP away. I must have it." But one thing does worry me, and I'd like for you to answer it. A popular computer guy named Eli the Computer Guy, who is very arrogant and makes very little sense, said that any XP system with an OS vulnerability can be hacked, even if it's just used as a server, cash register, or ATM, because any device connected to the Internet, whether wired or wireless, that uses broadband and is always connected to the Internet is a target for hackers. He then says and the user doesn't even have to use the Internet, click a rogue e-mail link, download a rogue attachment, or go to a rogue site. That makes me think that if a hacker does find an OS exploit, no protection can stop them from hacking my computer because there's no OS patch to prevent it. So I could be sleeping, and then all the while the hacker randomly breaches the built-in XP firewall or something and takes over my computer. Is that true, or is this more "I love MS" BS? And I just want to say F you, Microsoft! You'll never get another penny from me. Thanks for XP, suckers. I'll be using it forever for free. LMAO

  21. It's fud cooked up by MS and people who want you to upgrade to Win8 and other browsers.

    Think of this:

    I am a hacker and I see your name on some randomm net site, now I decide I hate you and have to do the following:

    Hack that site to get your ip

    or

    Send you a email in hopes you respond so I can get your ip

    then

    I have to spend all the time tracking your ip to get to your pc

    then I have to try the couple of backdoors I know to get into your pc

    then I have to crack your pass word to get to anything in your pc.

    OR:

    I am a hacker and I am going to spend my time hacking into some place that gives me a guaranteed payoff, like sony playstation network or xbox live.

    Not waste my time on you when I know i'll likely have no payoff.

    Home users get hacked every day that aren't major corporations with lots of wealth. You just said I'd have to try some backdoor programs to get inside your computer. What do you mean by this? And could an XP OS vulnerability let you right in to my system? My concern is that I heard a popular computer guy say that an XP system that's just used as a cash register, server, or ATM, can be hacked even if the user doesn't browse the Internet or check e-mail. He says any device connected to the Internet, wired or wireless, can be randomly hacked and turned into a malware center. That scares me. Is this true? If so, is this true of local computers, not WANS, that they can just be hacked if the user does nothing to get hacked because they exploited an XP OS vulnerability?

×
×
  • Create New...