Jump to content

98 no longer supported

PROBLEMCHYLD

By PROBLEMCHYLD
in Windows 9x Member Projects

 Share

Recommended Posts


Eck

Eck

Posted
Posted

I'm assuming that Windows Update might be left there, but never updated. I've read that some folks have managed to get to the old Windows 95 Windows Update site. They didn't say if it worked.

Really no problem. Just download them all from mdgx.com. Either get his kit which has his descriptions of the updates in text file format or just print out the pages you need.

Just organize them well in folders and sub-folders and burn them to a cdr. It'll take time, but you only do it once! Keep an eye on the thread here regarding new updates.

There will be a time when the system will not be completely secure, but no system really is anyway. If an attacker figures out an unpatched entry you're suseptable to having an attack succeed. This would be true even on the latest operating system.

Just keep your firewall's, virus scanners, spyware apps, etc updated and the system patched as much as is possible and in most cases nothing bad will get ya.

They stopped making fixes long ago (after all, we are on "extended support.") We just get security updates now anyway. Those WILL stop in June. So, once in a while we might get attacked and lose everything. Just make sure you're all backed up and this shouldn't be the end of the world if it happens.

Link to comment
Share on other sites
LLXX

LLXX

Posted
Posted

It seems that mdgx.com is going to be the "unofficial" Windows 9x Update site... is every single 9x-related fix/update there?

However, 98se is inherently more secure than the NT-series, as exemplified by the latest malwares and exploits (including WMF-vulnerability) that just don't work at all under a 9x system. This is because malware writers have focused on the most widely used operating systems so as to cause as much damage with their malware, and currently that OS is XP. A virgin install of 98se is, as far as I know, immune to *all* non-user-initiated remote exploits because of its detached network functionality.

I have NO virus scanner, NO antispyware, NO firewall, and have had NO problems for 5 years.

Link to comment
Share on other sites
Eck

Eck

Posted
Posted

I don't know if it's so locked up. My ZoneAlarm always shows ton's of stuff it has blocked from the outside world. It would be nice if I felt 98SE was so secure. Then I wouldn't need to fuss with Virus Scanning, firewalls, Spybot S&S, etc.

But I'm thinking there must be some stuff on your system you didn't ask for if you never block anything and never scan for spyware. Unless, and I don't know much about it, but I've read some folks apply some blocking themselves with Router's and using the hosts file.

I'm directly connected with a cable modem. I think I still need my firewall's virus scanners, spybot checkers, popup blockers, etc.

I don't normally go to potentially dangerous websites, but occasionally find myself wandering. It's nice to know I have some protection installed.

He, he! So by going back to 98SE I've upgraded my security further, eh?

Cool!

Link to comment
Share on other sites
Chozo4

Chozo4

Posted
Posted (edited)
I don't know if it's so locked up. My ZoneAlarm always shows ton's of stuff it has blocked from the outside world.

Most (if not all) of those alerts probably fall into one of the catagories below (which are mainly a form of ping for open ports):

1a) Is just a ping to your IP from a script-kiddie looking for open ports within an ip range

which your computer happened to fall into. If you have no open ports to the outside world there is nothing to worry about.

1b) A script kiddie and/or virus looking for open ports to NetBIOS 137,138, and 139. If you have file or printer sharing enabled, then netbios has those ports open. If you have no unprotected shares available, you should be fine. I've personally done some IP scans myself out of curiosity and a bit of personal research. Turns out that netbios is usually open with un-protected shares (often the c: drive) in the open on 1 out of every 20 PC's. It's often due to unknowing users enabling file sharing while not thinking of the consequences.

2) Probably a virii looking for a pre-infected system with a specific port open to exploit. Again, if you don't have ports open that shouldn't be open, thee isn't anything to worry about. Also, make sure you have security patches in place (MSBlast and LSASS ring a bell in the NT world?)

3) ZoneAlarm screaming for attention because it's lonely.

4) A form of spy/mal/ad-ware receiving data from it's provider.

note: The only ports I've noticed open on a regular basis are 21 (ftp) ,80 (http) , 137-139 (netbios). With the rare 3306 (mySql). 21 and 80 are often open to the outside world by the router for remote connecting and firmware updating. Otherwise it's a web\file server.

You can use a program called "netmon" (32-bit version of netstat) to view you're currently active conections and check for any open ports you don't want open. CLose your browser(s) first before opening it to clear out any connections open due to your browser connecting to a site you're viewing. You can also use 'netstat' in the command line to view any currently open ports and active connections.

Not to gloat or anything but my win98se system is

in the DMZ of my router. It also has no firewalls installed and runs 24/7 as a webserver. I'm basically a fort with no walls which has yet to have any savage 'invaders' come home for lunch. I'd say windows 98 is pretty secure :)

I'm directly connected with a cable modem. I think I still need my firewall's virus scanners, spybot checkers, popup blockers, etc.

Of course, pop-ups are inevitable and so is spy/ad/mal-ware. No system can prevent those using default system settings. Only way to avoid them is to not wander off the reputable sites path and install software that you know do not contain any 3rd party software bundled with it.

However, the old saying always stands true... "Curiosity killed the cat" (Or killed the pc).

Edited by Chozo4
Link to comment
Share on other sites
LLXX

LLXX

Posted
Posted

My ports 137-139 are open according to netstat -a -n, but refuse all connections.

Of course, pop-ups are inevitable and so is spy/ad/mal-ware. No system can prevent those using default system settings. Only way to avoid them is to not wander off the reputable sites path and install software that you know do not contain any 3rd party software bundled with it.
For some reason everyone "has to have" a popup-blocker and antispyware program running in the background. I find that disturbing, since in reality a default install of 98se can already be configured using what it has, to completely eliminate such annoyance and risks. This is what I recommend instead:

1. HOSTS file: Make one that blocks as much advertising and malicious sites as you can. You can download many of them from the Internet, then merge them together and remove duplicate lines. Now, all of those annoying advertising banners will disappear. As an added benefit, you can easily add entries to this blocklist, and also use it as a sort of DNS server to reach important sites if DNS servers are down.

2. IE configuration: Very Important! Everyone blames IE because it's so insecure, but in fact they are the ones that don't take the time to configure it properly. Configure Internet Zone security to Custom Level, and disable everything contained within. Repeat for Restricted Sites Zone. Most important to disable are:

- ActiveX <- the most dangerous

- File Download

- Font Download <- an "exploit" font can cause execution of arbitrary code when rendered...

- Javascript <- also kills popups too!

- Active Scripting <- also kills popups too!

Then configure the Trusted Sites zone to enable most items, except ActiveX which has been more useless than useful. I'd leave Font Download disabled too. Add sites that you absolutely trust not to harm your computer to this zone e.g. MSFN.

3. Antispyware/adware: Get any good antispyware/adware program e.g. Adaware, and run it, removing anything that it detects as malicious. Then get rid of the antispyware program itself. You won't be needing it.

4. Antivirus: Download and run more than one antivirus program one after another, scanning for and removing any infection. Do not install it so as to run in the background nor attempt to provide "active protection". I like to keep one standalone scanner, e.g. F-Prot for DOS (free version), around for scanning downloaded files. There is no need to scan every file in the system periodically if you know that they were not infected. Only scan files that were just downloaded.

5. Firewall: Not needed at all. A hardware disconnect switch, or just unplugging the network cable, is more than sufficient security if all you plan to do is work off-line for a while.

6. Awareness: Although you can now visit, with absolutely no effect, sites that would overwhelm a system that was not properly configured with inenumerable amounts of popups and malware, what you choose to download must still be inspected carefully. In other words, the system itself is secured, so all entry points have to be secured as well. This would be software that you download or receive from others. Besides a preliminary virus scan, careful inspection of the files contained within must be done. I usually unpack installers and extract what files I need of the software manually.

You follow all of the above steps, your system will stay clean forever :)

Link to comment
Share on other sites
Chozo4

Chozo4

Posted
Posted (edited)

You explained that better than I could personally LLXX. When I meant default settings... I meant manufacturer\factory presets. Didn't mean user settings such as IE at 'highest' security settings with a couple other additional user-tweaks to it for example. :)

My ports 137-139 are open according to netstat -a -n, but refuse all connections.

Sounds like you don't have file&Printer sharing enabled then. :)

If you don't have File&Printer sharing enabled and if you wish to close those ports, there is a way. By default, netBIOS is enabled in the tcp-ip protocols whenever you install any network adaptor (even with dial-up).

To disable it, install IPX\SPX or NETBeui. Then unbind all components listed under your TCP-IP protocol 'bindings' tab and accept settings. It may ask if you want to bind one now. Just say no and continue. Re-open then click the 'netbios' tab. The checkbox should no-longer be gray and checked. If still checked but not gray, uncheck it, accept changes and restart.

NetBIOS is now disabled and those ports (137-139) closed. Disabling netbios only has the side effect of not being able to use computer name recognition (urls such as "\\petes_pc") to connect to file&Printers shared on other pc's through file\printer sharing. Rather you would use the actual ip (such as "\\192.168.0.1") or bind network drives to letters using "net" in the command line.

Edited by Chozo4
Link to comment
Share on other sites
Eck

Eck

Posted
Posted

And, using Firefox as default for browsing couldn't hurt. Although, if folks follow your advice and turn off all that stuff I suppose IE is just a safe.

Personally, I'd rather have the functionality and don't mind the ad's on web pages. It's the popups and being diverted to other sites that are the annoying things. But using Firefox with the popup blocker enabled generally protects against that. And since I don't wander around all that much I rarely encounter websites that do evil stuff!

I install the Yahoo Toolbar for the occasional IE use, like when a site uses ActiveX for stuff. Hardly ever really. And the Yahoo thing has its popup blocker. When using XP I don't even install that. XP's IE has its own.

I recently was using a very old computer so I didn't install Firefox since IE plays better with limited resources. I hadn't used IE for years for general browsing. Ya know what? I really didn't miss Firefox. Internet Explorer is pretty good! No wonder the browser usage percent, although growing for Firefox, is so heavily IE. After all, it's built in and unless folks have problems most will just use what their computer comes with.

I've read that HP will be including Firefox on new computers and offer a choice of browsers as part of its OOBE. That's cool.

Link to comment
Share on other sites
Eck

Eck

Posted
Posted

On a 98SE no longer supported mode, has anyone noticed what Apple is doing with Quicktime? They're encouraging webmasters to encode in formats that Quicktime 6.5.2 can't use (since Apple won't update it to allow it.)

And, even on video's that will play fine on 6.5.2, the player will stop playing the video (which had been playing fine, and proceed to go to the playing site's video page where you can click a link that tells you to install XP if you want to play these video's. (A system requirements page.)

So they'll play fine but Apple doesn't want to let the 6.5.2 player do it!

Last time it happened, I was at a site that offered WMP as a choice so I just finished the video that way.

Jeez! I was halfway throught the video in the Quicktime browser embed when it stopped and hijacked me back to the page of the website's Quicktime video's. And when I just clicked the link again it opened the embed for a second then immediately hijacked me back. So, like I said I just watched it in WMP9.

But that's not possible on sites that are only Quicktime.

And has anyone noticed that 6.5.2 plays and sounds better than 7.0.4? The thing's still buggy.

Even Microsoft issued an codecs update with WMP 10 codecs for the 9 player. What's with Apple? I can see them making the new player only for XP, but why not let their most recent older version still play stuff? I'm not talking about that new format but all the stuff it's completely able of playing.

Link to comment
Share on other sites
Eck

Eck

Posted
Posted

That would be a great fix if it was fully effective. I don't think it's just the mov file format though. It's internet sites either using that new codec only available on Quicktime 7 or somehow shutting down the links when they don't detect Quicktime 7.

Apple REALLY wants everyone updated to 7, and they don't care if the minicule percentage of users on Windows 9x get shut out.

I don't think the just the Quicktime codec and MPClassic will enable these files to play.

Am I thinking incorrectly? (Wouldn't be the first time.)

Is Quicktime Alternative now up to date with the newer file formats introduced in Quicktime 7? I'd imagine those folks are working on it, but I've never used it. This makes me unsure how using that with, say, MediaPlayerClassic would interact with embedded Quicktime content on the internet.

Never having used 3rd party unofficial codec packages, I'm inexperienced with how it all works.

For Quicktime I've always installed the 2.1.2.59 player so my old games would be happy and whatever the latest official Quicktime release is so the web functions would work. I don't think the older player is even used by the old games. The file associations remain with the new player. The game just detects the old player on the system and so it doesn't error out.

I have one old Star Trek Picard Chronicles encyclopeic type thing that only runs if Quicktime 2.0.8 (I think that's the one) is installed. Since that version changes the file associations too much I've taken to do without seeing Captain Picard's Borg experience. Saw it, been there. I'd rather not have to play so much with the file type settings to get them near where they belong. It moves JPEG out to a seperate type. And I need to apply a fix to restore thumbnails since 2.0.8 breaks them. I can do without that.

So, I've established that Apple is strange the way they design for the Windows versions of Quicktime. But my point of putting this here was to say that here's one example of total 98 abandonment. It seems they want you to throw out your old games and operating systems and buy new stuff. BUT I LIKE MY OLD STUFF!

From my experience with 98SE now, I'd say it's running my hardware better than XP can. Things are noticably zippier!

Link to comment
Share on other sites
apathetic_loser

apathetic_loser

Posted
Posted

I've been happily using ffdshow and/or QuickTime Alternative to watch QT files. Streaming can be a little dicey, but for the most part I've had success. I'm a little biased though; I got sick of Apple QT refusing to properly play high quality trailers and such, only to have a more versatile media player and the afore-mentioned decoders run through it like it was nothing. I also (and maybe this no longer applies) enjoy being able to full-screen video without having to pay to do so.

Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...