08-25-2004, 10:45 AM | #11 |
Galvatron
Join Date: June 24, 2002
Location: aa
Posts: 2,101
|
Yes, be careful and have your protection up. I remember some quotes that you can have as much protection as you want but that it's not going to help if you're really uncareful yourself. I also read it wasn't a very good virus. BTW it doesn't really surprise me, I recently heard of a program that allows you to see someone else desktop completely with runnning programs and this is only a little step further controlling some hardware.
|
08-25-2004, 03:26 PM | #12 |
Apophis
Join Date: July 29, 2003
Location: The Underdark cavern of Zagreb
Age: 37
Posts: 4,679
|
Remote Desktop is a program heavily exploited, and incorporated in Win XP. That's the telnet of the today, altho telnet is still the best. There's a bunch more, like connection simulators that make you an outside user of a computer, and you need to watch out for al of them. Luckily, most of them(hackers) can't use those through firewalls, not to mention proxys. I'm currently waiting for a friend of mine to give me a proxy simulator to test, he says it's great. Expect update.
__________________
MAKE LOVE, NOT SPAM! |
08-26-2004, 09:56 AM | #13 | |
Galvatron
Join Date: June 24, 2002
Location: aa
Posts: 2,101
|
Speaking of telnet I saw it was still on my computer. Must be in some base package for linux then. Goodbye
Quote:
|
|
08-26-2004, 10:15 AM | #14 |
Apophis
Join Date: July 29, 2003
Location: The Underdark cavern of Zagreb
Age: 37
Posts: 4,679
|
Erm... you probably shouldn't have done that, because Linux uses telnet(telnet is on all OSs) in different ways, one of them could be(depending on settings) file transfer on LAN, and P2P network. I don't know if you do any of that, but try and read up on what it's actually for before killing it.
__________________
MAKE LOVE, NOT SPAM! |
08-26-2004, 11:32 AM | #15 |
40th Level Warrior
Join Date: October 29, 2001
Location: Western Wilds of Michigan
Posts: 11,752
|
Telnet is actually quite useful... that's one of the things that can let you access one machine from another. I use it frequently at work, and here in the home office when I want to do something on my RedHat box, but don't want to walk all the way over there to log in. I'd put it back... the security problems come in when someone can telnet in and guess an account and password. Make sure those are secure first...
__________________
*B* Save Early, Save Often Save Before, Save After Two-Star General, Spelling Soldiers -+-+-+ Give 'em a hug one more time. It might be the last. |
08-26-2004, 11:39 AM | #16 | ||
Galvatron
Join Date: June 24, 2002
Location: aa
Posts: 2,101
|
Quote:
Quote:
[ 08-26-2004, 11:40 AM: Message edited by: philip ] |
||
08-26-2004, 02:17 PM | #17 |
40th Level Warrior
Join Date: October 29, 2001
Location: Western Wilds of Michigan
Posts: 11,752
|
You can telnet to a windows box if there's a telnet server on that box. Windows doesn't provide one by default until... XP, perhaps; at older versions, I have customers who have used third party telnet packages like Georgia Softworks to enable telnet onto Windows servers.
Removing telnet feels a whole lot like saying I'm going to remove notepad to prevent people from editing files. There are other ways that they can do it, and frankly, all it does it make my own life a little more difficult. You still have rlogin, ssh, rsh, and at least a couple of other methods for getting into that Linux box that are available. All you've done is made sure that anyone who gets in will have to be a sophisticated hacker, not a simple one. IOW, common hoodlums are not allowed; you must be mafioso or yakuza to get in. That being said, what are you trying to protect your Linux box from? If it's on your LAN, and your LAN is properly secured, you're protecting yourself from... yourself. If it's exposed to the internet, then there are many more important things besides telnet that you need to worry about. BTW, Samba can leave you with an even bigger hole than telnet. If you're not requiring passwords for the shares, then you're even worse off.
__________________
*B* Save Early, Save Often Save Before, Save After Two-Star General, Spelling Soldiers -+-+-+ Give 'em a hug one more time. It might be the last. |
08-26-2004, 03:27 PM | #18 | |||
Galvatron
Join Date: June 24, 2002
Location: aa
Posts: 2,101
|
Quote:
Quote:
Quote:
[ 08-26-2004, 03:28 PM: Message edited by: philip ] |
|||
08-26-2004, 05:35 PM | #19 |
40th Level Warrior
Join Date: October 29, 2001
Location: Western Wilds of Michigan
Posts: 11,752
|
The WLAN is separate from your Linux box. IOW, removing telnet does nothing to make your Linux box safer; like I said, there are at least three more ways to connect in that are similar to telnet. If it makes you feel good to take it out, go ahead; personally, I'd leave it in because I consider it to be such a basic building block of Unix that something else may break if it's not there.
As for WEP, it should work just fine. Sure, it can be cracked, but so can anything, given the appropriate time and resources. You're just trying to make it easier for honest people to stay honest. If you have problems setting it up, drop me a line. I highly recommend it [img]smile.gif[/img] As for Samba, you do know that it is sharing files on your computer, right? I mean, that's what Samba does -- makes it possible for one computer to see the resources (files, printers, etc.) of another computer. It's not like Kazaa or other peer-to-peer sharing services, but it's sharing, pure and simple. And just like in Windows, you can share something wide open (where anyone can see it), or you can require a user ID and password to be able to access it. And you can set up specific rights (read only, full access) for that user. If I were you, I'd do three things: 1. Set up the accounts for those siblings of yours as non-poweruser accounts. IOW, they don't get administrator rights or anything. That way, they can't really screw anything up. Dulecki's law of system access applies: You get access to what you can fix, should you happen to break it. 2. Focus back on your WLAN setup and configuration to get it in shape. That's your first line of defense. 3. Put back telnet and just protect your entire network. Hopefully, you're not doing any work as root on your Linux box, or as Administrator on the Windows boxes. Make sure you require passwords on all profiles on all accounts... and something more, I think... but I've got to run up for dinner now [img]smile.gif[/img] Hasta later with more thoughts...
__________________
*B* Save Early, Save Often Save Before, Save After Two-Star General, Spelling Soldiers -+-+-+ Give 'em a hug one more time. It might be the last. |
08-27-2004, 10:14 AM | #20 | ||||||
Galvatron
Join Date: June 24, 2002
Location: aa
Posts: 2,101
|
Quote:
Quote:
Quote:
Quote:
Quote:
Quote:
Thanks for the advice! [img]smile.gif[/img] edit: hotkeys and spelling [ 08-27-2004, 10:25 AM: Message edited by: philip ] |
||||||
Currently Active Users Viewing This Thread: 1 (0 members and 1 guests) | |
|
|
Similar Threads | ||||
Thread | Thread Starter | Forum | Replies | Last Post |
Mean little trojan was found on my PC | Larry_OHF | General Discussion | 6 | 04-15-2005 10:59 AM |
Want a trojan guys? | Ziroc | General Conversation Archives (11/2000 - 01/2005) | 30 | 06-26-2004 05:28 AM |
trojan in my site | philip | Neverwinter Nights 1 & 2 Also SoU & HotU Forum | 3 | 06-25-2004 03:36 AM |
trojan in my site | philip | Neverwinter Nights 1 & 2 Also SoU & HotU Forum | 0 | 06-23-2004 02:17 PM |
Trojan Virus | Lord | General Conversation Archives (11/2000 - 01/2005) | 24 | 03-14-2004 12:02 PM |