Linked by Eugenia Loli on Sun 13th Nov 2005 06:38 UTC, submitted by DKR
Windows This guide contains the practical security measures to secure your Windows desktop at home. This guide is not necessarily intended for business or enterprise use, but it might come in handy for some.
Thread beginning with comment 59746
To view parent comment, click here.
To read all comments associated with this story, please click here.
fmaxwell
Member since:
2005-11-13

Many worms have spread through firewalled systems where there was no one browsing anything.

Care to elaborate? Without further facts, sounds like a FUD.


You've really never heard of worms which spread through e-mail? How about VBS/Bubbleboy@MM, which used an exploit in Outlook and Outlook Express to execute VBScript via the HTML display engine -- even when the message was simply previewed? What are you going to block with the firewall? All access to your e-mail server?

Edited 2005-11-13 16:46

Reply Parent Score: 1

Bit_Rapist Member since:
2005-11-13

Many worms have spread through firewalled systems where there was no one browsing anything.

Yep and the first one ever was invented on a unix system. Whats the point ?

You've really never heard of worms which spread through e-mail?

That requires someone to be using the computer, and viewing something.

Blaster would be a nice exploit that was able to do damage without the computer being used, but merely turn 'on'

How about VBS/Bubbleboy@MM, which used an exploit in Outlook and Outlook Express to execute VBScript via the HTML display engine -- even when the message was simply previewed?

I remember it. Considering the changes that have been made to OE and outlook since that time I'd say it would be rare to see a repeat on that large of a scale but anything is possible I guess.

What are you going to block with the firewall? All access to your e-mail server?

I'm going to do nothing with my firewall. I'll let the scripts on my email server detect and remove something like that.

Reply Parent Score: 1

fmaxwell Member since:
2005-11-13

Yep and the first one ever was invented on a unix system. Whats the point ?

That my claim that worms spreading through firewalled systems was not "FUD" and that antivirus sofware is needed even when you have a firewall.

That requires someone to be using the computer, and viewing something.

So what? It's still a worm that could go right through firewalls. I'll agree that a computer is secure if it isn't on, but that's hardly a viable security solution.

I remember it. Considering the changes that have been made to OE and outlook since that time I'd say it would be rare to see a repeat on that large of a scale but anything is possible I guess.

Think outside the box: Any network app may have an exploitable hole -- not just Outlook/Outlook Express. It could be an instant messaging client, a USENET binary downloader client, a web server, or anything.

I'm going to do nothing with my firewall. I'll let the scripts on my email server detect and remove something like that.

And what happens when the next exploit isn't through e-mail? Or what if your e-mail server has a remotely exploitable buffer overflow and the server itself becomes the conduit for a worm? Without antivirus software, you'd be at risk.

Reply Parent Score: 1

jziegler Member since:
2005-07-14

OK. I know about e-mail worms. However "no one browsing anthing" implied "no one is using the computer". A little misunderstanding.

Reply Parent Score: 1

fmaxwell Member since:
2005-11-13

OK. I know about e-mail worms. However "no one browsing anthing" implied "no one is using the computer". A little misunderstanding.

But it's not like browsing. The preview pane would open and the worm would go to work. It didn't rely on you clicking a link, approving a software install, etc.

Besides, there are other worms which spread without anyone using the computer. How about Code Red? It was spread through millions of unmanned computers running IIS.

Now if you're going to say "no one at the computer, no servers running, computer unplugged", then you don't need a firewall to protect against worms.

Reply Parent Score: 1