Navigacija
Lista poslednjih: 16, 32, 64, 128 poruka.

Trabant je gori od kupusare

[es] :: Advocacy :: Trabant je gori od kupusare

Strane: 1 2

[ Pregleda: 8490 | Odgovora: 33 ] > FB > Twit

Postavi temu Odgovori

Autor

Pretraga teme: Traži
Markiranje Štampanje RSS

Dejan Lozanovic
Dejan Lozanovic
Beograd

Član broj: 691
Poruke: 2325
195.178.35.*

Jabber: null@elitesecurity.org
Sajt: speedy-order.com


+75 Profil

icon Trabant je gori od kupusare08.03.2005. u 16:43 - pre 231 meseci
M$-u treba stvarno dati jako veliku pohvalu po pitanju backward kompatibilnosti, ne samo da gura kompatibilnost u nazad sa starim programima, nego gura i kompatibilnost sa starim rupama :) pa eto tako stari exploiti i dalje rade :)

http://it.slashdot.org/article...d=05/03/07/1414234&tid=201
 
Odgovor na temu

Dragi Tata
Malo ispod Kanade

Član broj: 1958
Poruke: 3906
*.bos.east.verizon.net.



+6 Profil

icon Re: Trabant je gori od kupusare08.03.2005. u 17:44 - pre 231 meseci
"Granted, you need to have the firewall turned off for this work"

Da podsetim da XP SP2 ima firewall uključen po defaultu. Ko je lud da ga isključi?
 
Odgovor na temu

Dejan Lozanovic
Dejan Lozanovic
Beograd

Član broj: 691
Poruke: 2325
195.178.35.*

Jabber: null@elitesecurity.org
Sajt: speedy-order.com


+75 Profil

icon Re: Trabant je gori od kupusare08.03.2005. u 17:53 - pre 231 meseci
To ne menja cinjenicu da MS drzi backward Compatibility :) a sto se tice firewall-a
http://bink.nu/Article2734.bink
 
Odgovor na temu

vindic8or

Član broj: 13207
Poruke: 2960
*.mobtel.co.yu.

Jabber: vindic8or@elitesecurity.org


+1 Profil

icon Re: Trabant je gori od kupusare08.03.2005. u 17:55 - pre 231 meseci
ja ga uvek iskljucim...

postoje mnogo bolji FWz... zapravo svi su bolji od tog integrisanog....
 
Odgovor na temu

Dejan Lozanovic
Dejan Lozanovic
Beograd

Član broj: 691
Poruke: 2325
195.178.35.*

Jabber: null@elitesecurity.org
Sajt: speedy-order.com


+75 Profil

icon Re: Trabant je gori od kupusare08.03.2005. u 18:01 - pre 231 meseci
http://www.eweek.com/article2/0,1759,1757786,00.asp
http://www.infoworld.com/article/04/08/18/HNholesinsp2_1.html



 
Odgovor na temu

vindic8or

Član broj: 13207
Poruke: 2960
*.mobtel.co.yu.

Jabber: vindic8or@elitesecurity.org


+1 Profil

icon Re: Trabant je gori od kupusare08.03.2005. u 18:11 - pre 231 meseci
blagi offtopic:

inace, da li bi neko mogao da mi da fill-in, za ovu novu sleng terminologiju..

kupusara, trabant i to?

):)
 
Odgovor na temu

Dragi Tata
Malo ispod Kanade

Član broj: 1958
Poruke: 3906
*.bos.east.verizon.net.



+6 Profil

icon Re: Trabant je gori od kupusare08.03.2005. u 18:35 - pre 231 meseci
Kupusara je opšteprihvaćen naziv za Linux, a sad Deki pokušava da kontrira Trabantom.
 
Odgovor na temu

dinke
Dragan Dinić
General Manager / Lampix.net
Beograd

Član broj: 933
Poruke: 1008
*.kg.sbb.co.yu.

Sajt: www.dinke.net


+2 Profil

icon Re: Trabant je gori od kupusare08.03.2005. u 19:55 - pre 231 meseci
Kupusara nije opšte prihvaćen termin za Linux, već ga degojs (koji izgleda koristi Linux više od svih zealota zajedno) od milošte tako zove. :)
 
Odgovor na temu

degojs

Član broj: 4716
Poruke: 5096



+51 Profil

icon Re: Trabant je gori od kupusare08.03.2005. u 22:46 - pre 231 meseci
Vala, nešto se češće vidi kod tebe "OS: Windows XP", nego "OS: Kupusara" kod mene :)

Inače, po duhu u kom se razvija kupusara, više bi baš njoj pristajao naziv "Trabant" nego Windowsu. Čisto da se setimo DDR-a i ostalih lepih stvari koje nam je svojevremeno darovao propali sistem..

Nego, da se vratimo na temu: Deki, još samo da isključimo firewall, pa da pričamo o sigurnosti sistema.. Samo firewall, ništa više :)

Commercial-Free !!!
 
Odgovor na temu

byM4k5

Član broj: 22363
Poruke: 428
*.dialup.blic.net.



Profil

icon Re: Trabant je gori od kupusare09.03.2005. u 01:01 - pre 231 meseci
Deki, meni bolje zvuci kada malo ispreturamo i dobijemo:

Trabant => TrubaNT :>
 
Odgovor na temu

milanche
San Francisco

Član broj: 2447
Poruke: 1200
*.client.comcast.net.



+1001 Profil

icon Re: Trabant je gori od kupusare09.03.2005. u 03:18 - pre 231 meseci
Kad ste vec u fazonu, cisto da vas podsetim stare fore:

(WinCE + WinME + WinNT = WinCEMENT)
 
Odgovor na temu

Časlav Ilić
Braunšvajg, Nemačka

Član broj: 4945
Poruke: 565
*.informatik.uni-erlangen.de.



+27 Profil

icon Re: Trabant je gori od kupusare09.03.2005. u 12:00 - pre 231 meseci
Citat:
dinke:
Kupusara nije opšte prihvaćen termin za Linux, već ga degojs [...] tako zove. :)

U stvari, meni se sve više dopada ova Dejanova dosetka. Kao sjajan, gladak turistički vodič prema dnevniku Henrija Džonsa starijeg...
 
Odgovor na temu

Dejan Lozanovic
Dejan Lozanovic
Beograd

Član broj: 691
Poruke: 2325
195.178.35.*

Jabber: null@elitesecurity.org
Sajt: speedy-order.com


+75 Profil

icon Re: Trabant je gori od kupusare09.03.2005. u 14:19 - pre 231 meseci
Citat:
degojs: Vala, nešto se češće vidi kod tebe "OS: Windows XP", nego "OS: Kupusara" kod mene :)

Inače, po duhu u kom se razvija kupusara, više bi baš njoj pristajao naziv "Trabant" nego Windowsu. Čisto da se setimo DDR-a i ostalih lepih stvari koje nam je svojevremeno darovao propali sistem..

Nego, da se vratimo na temu: Deki, još samo da isključimo firewall, pa da pričamo o sigurnosti sistema.. Samo firewall, ništa više :)


A da pogledas one linkove ispod, gde se pise o zaobilazenju vaseg firewall-a :) koji je tek posebna prica, mislite da ste bezbedni, a u stvari niste :)

Ali to i dalje ne menja cinjenicu da MS ima backward kompatibilnost sa starim sigurnosnim propustima :)
 
Odgovor na temu

degojs

Član broj: 4716
Poruke: 5096



+51 Profil

icon Re: Trabant je gori od kupusare09.03.2005. u 15:21 - pre 231 meseci
Ma piše i u ovom članku to što piše, a onda piše da treba isključiti firewall da bi to radilo :))) Samo firewall Deki, ništa drugo.. hehe.

Bojim se da od svega ostaje priča kojom se Linuxovci teše kako su pametni što koriste kupusaru.
Commercial-Free !!!
 
Odgovor na temu

Dejan Lozanovic
Dejan Lozanovic
Beograd

Član broj: 691
Poruke: 2325
195.178.35.*

Jabber: null@elitesecurity.org
Sajt: speedy-order.com


+75 Profil

icon Re: Trabant je gori od kupusare09.03.2005. u 15:47 - pre 231 meseci
Citat:
degojs: Ma piše i u ovom članku to što piše, a onda piše da treba isključiti firewall da bi to radilo :))) Samo firewall Deki, ništa drugo.. hehe.

Bojim se da od svega ostaje priča kojom se Linuxovci teše kako su pametni što koriste kupusaru.


Ti si ocigledno slep pored ociju pa da ponovim jos jednom, firewall na XP-u se lako zaobilazi.

http://bink.nu/Article2734.bink
http://www.eweek.com/article2/0,1759,1757786,00.asp
http://www.infoworld.com/article/04/08/18/HNholesinsp2_1.html
 
Odgovor na temu

Dragi Tata
Malo ispod Kanade

Član broj: 1958
Poruke: 3906
*.bos.east.verizon.net.



+6 Profil

icon Re: Trabant je gori od kupusare09.03.2005. u 16:10 - pre 231 meseci
Deki, čitaš li ti šta piše na tim tvojim linkovima:

NOTE: This is a general problem with personal firewalls and can be exploited via any program granted access through the firewall without user interaction. It is a known issue and have been discussed in the security community about 2 years ago.
 
Odgovor na temu

degojs

Član broj: 4716
Poruke: 5096



+51 Profil

icon Re: Trabant je gori od kupusare09.03.2005. u 16:31 - pre 231 meseci
A sa trećeg linka koji je Deki ostavio:

Neither security hole could be exploited by a remote attacker, and both require Windows users to take actions, such as opening the Windows command shell, or renaming files to overwrite other files on Windows, he said.

:)
Commercial-Free !!!
 
Odgovor na temu

_Super_Ellite_Bug_
Novi Sad, konacno!!!

Član broj: 41318
Poruke: 145
*.nat-pool.nsad.sbb.co.yu.

Sajt: www.searchlores.org


Profil

icon Re: Trabant je gori od kupusare09.03.2005. u 20:40 - pre 231 meseci
Neko radio sa Microsoft Operations Manager 2005?
malo reklame....
Citat:

In short, MOM 2005 delivers enterprise-class operations management to improve the efficiency of IT operations. Now you can spend less time managing crises and more time delivering new services to your business.

a ono:
Citat:

The Microsoft Operations Manager 2005 agent does not install on computers that are running Windows XP with Service Pack 2 (SP2) and Windows Server 2003 with Service Pack 1 (SP1)
CAUSE
This issue can occur if Windows Firewall is running on the destination computer or on the MOM server computer. If Windows Firewall is running on a MOM server computer, MOM agents cannot communicate with the MOM Server. If Windows Firewall is running on a destination computer, or a potential MOM agent, the MOM server cannot perform a push installation of the agent.

By default, Windows XP with SP2 turns on Windows Firewall. By default, Windows Firewall is not turned on in Windows Server 2003 with SP1.
WORKAROUND
Warning This workaround may make your computer or your network more vulnerable to attack by malicious users or by malicious software such as viruses. We do not recommend this workaround but are providing this information so that you can implement this workaround at your own discretion. Use this workaround at your own risk.


http://support.microsoft.com/default.aspx?scid=kb;en-us;885726

da dodam:

SP2 je izasao :16 August 2004
MOM 2005 je izasao: August 20, 2004

Beta testeri su imali priliku da "skinu" i SP2 i MOM2005 par meseci ranije.
Dakle testiranje je NULA !!!

ISO/IEC JTC1/SC22/WG14-ISO/IEC 9899:1999
 
Odgovor na temu

degojs

Član broj: 4716
Poruke: 5096



+51 Profil

icon Re: Trabant je gori od kupusare09.03.2005. u 21:57 - pre 231 meseci
Citat:
Neko radio sa Microsoft Operations Manager 2005?


Hvala bogu pa si ti radio. Ma šta radio, držao u ruci.. zato moraš i da kopaš po MSDN-u ne bi li našao nešto izgleda. Usput, malo si promašio i temu - nije baš da ovde pričamo o testiranju..

Što reče Dimković, kad skontamo razliku između projekta i proizvoda možemo o tome kako ko testira...

Kad smo već tu.. da vidimo šta kaže kupusara danas:

Citat:
Need to get 48.2MB of archives.


Dobro, od ovoga možemo da odbijemo 7 MB od zadnji put, jer sam u međuvremenu vratio "sliku" bez tog zadnjeg apdejta. Dakle, još 40 MB. Nije loše :) Ili će biti da ja izmišljam :))
Commercial-Free !!!
 
Odgovor na temu

impaque
Ivan Savčić
YUnet International
Beograd, Zvezdara

Član broj: 717
Poruke: 939
*.sbb.co.yu.

ICQ: 27215173
Sajt: www.imped.net


Profil

icon Re: Trabant je gori od kupusare09.03.2005. u 22:56 - pre 231 meseci
http://it.slashdot.org/comments.pl?sid=141641&cid=11866821 :
Citat:
but the reality is this vulnerability happened after SP2 was released.

Actually no, this vulnerability showed up 8 years ago and was patched in Windows 98 I believe. So this isn't something new that Microsoft is just now learning about and need to fix, it's something quite old. Since the vulnerability came out ME, 2000 and XP all were released.

Perhaps they setup a firewall to allow them to fix things underneath without totally destroying everyone's networks?

If you're trying to say that MS feels that having the firewall on by default in XP SP2 is a shortcut for fixing problems, well, I certainly HOPE they're not taking that attitude. Yes the firewall needs to be on by default for better security, but they should have tested the OS against known vulnerabilities with the firewall off to be certain they wouldn't work. Failure to do so shows some serious problems in MS land.

When you have as large of an installbase as MS does you can't shift things right away or you will lose customers, you have to make changes slowly and incrimentally so that users don't get confused.

You seem royally confused about what this actually is. Land is a DOS attack that is caused by sending a SYN packet to an open port on a machine with the source and destination addresses the same. This isn't something that is _needed_ by any app, it's a TCP/IP oddity, a packet that would normally never occur. Back 8 years ago it was understandable that MS and others didn't anticipate this attack, but after 8 years there's not any excuse.

Simply this is not something users are going to notice the lack of. They'll certainly notice it's there if their machines gets hit with a Land attack though. It is NOT a case of MS trying to make changes slowly to not confuse customers, it's a big blunder.

MS has been working a lot on connectivity over the last year or so with some protocol enhancements and increased IPv6 support. I imagine things are going to get worse before they get better, but don't kid yourself, they are working on fixing it.

Frankly if their "working on fixing it" involves re-introducing exploits first identified and fixed 8 YEARS ago then I'm certainly not going to hold my breath that they'll ever fix anything.

Ultimately though your defense of MS is unwarranted. They publically declared a while back (1-2 years now I think) that security was going to be a primary focus for them. This was pre-SP2 days. That they re-introduced a vulnerability from eight years ago speaks great volumes about that focus. If MS wants to claim they're security-focused now they deserve the lumps they get for foolish mistakes like this.


http://it.slashdot.org/comments.pl?sid=141641&cid=11865945 :
Citat:
A box running no services should be not vulnerable of any dos except brute force even without a firewall. A firewall shouldn't be a solution to poor design/implementation problems and code bugs. That is simply not working. What if someone gets through the firewall?


http://it.slashdot.org/comments.pl?sid=141641&cid=11866480 :
Citat:
Anybody with a web server must accept incoming syn packets. If they are "protected" by something like:

permit tcp any host 1.2.3.4 eq 80

Then they are probably vulnerable.

 
Odgovor na temu

[es] :: Advocacy :: Trabant je gori od kupusare

Strane: 1 2

[ Pregleda: 8490 | Odgovora: 33 ] > FB > Twit

Postavi temu Odgovori

Navigacija
Lista poslednjih: 16, 32, 64, 128 poruka.