• We’re currently investigating an issue related to the forum theme and styling that is impacting page layout and visual formatting. The problem has been identified, and we are actively working on a resolution. There is no impact to user data or functionality, this is strictly a front-end display issue. We’ll post an update once the fix has been deployed. Thanks for your patience while we get this sorted.

Win-XP, Raw Sockets, and GRC.

So no one cares what MS is doing?
Or did I just give to much info to read?

This could be serious stuff... Little kids able to syn flood from their home PC, armies of zombie computers who?s attacks are unfilterable.

MS thinks that?s a good thing? And that their new OS won't be prone to getting viruses?
 
I read his article about IRC bots. great read. The part where he is chatting with the bots coder was awesome. Great television.
 
You have succumbed to Steve's clever writing.

He is basically asking Microsoft to deliberately cripple Windows XP, because a feature
that already exists in Windows2000 might be exploitable in the new "consumer" version
of the OS. Overlooking that the security model of Windows2000 is much better
at handling such exploits if neccesary, and that security will be carried over to
the WXP Home version. That feature also exists in Linux, BSD, Unix and any other
modern networking OS; so it would be more silly for MS to not want to keep up
with current standards.

What he is not doing is paying attention to his own hype.

He makes a bunch of claims about what might happen, but has not actually
sat down with a beta of WindowsXP to find out if it can happen the way
he claims.

He claims that this exploit will be more dangerous in WXP, because current versions
of Windows 9x/ME cannot spoof IP. Which is not true, as there are cracker tools
which can add that functionality to the Windows 9x TCP/IP stack.
In fact it is surprising that the current Trojan Horse programs don't already do that.

He seems to be trying to make some valid points about OS security, but seems to be missing
some basic concepts of user and ISP security that make what he proposes a little harder
to accomplish in reality. As much as I like Steve, the tabloid style of his site doesn't
help his credibility in this either.
 


<< He claims that this exploit will be more dangerous in WXP, because current versions of Windows 9x/ME cannot spoof IP. Which is not true, as there are cracker tools which can add that functionality to the Windows 9x TCP/IP stack. In fact it is surprising that the current Trojan Horse programs don't already do that. >>



He talks about that too...
and cr(h)ackers have generally not used that. But once the default ability to spoof ip's and syn flood are in wxp then there would be no reason to not use them, and I think thats the issue that he is aiming for.
 
CQuinn you nailed it, His tabloid/diary approach is what I liked in the article I read. The form was, refreshing for the topic and I think he communicated his experience well. I can't comment on his M$ allegations or slamming, I don't believe everything I read or watch, not even PBS. LOL But the entertainment was there, and it does contribute to a body of knowledge.... hence

<< Great television >>

 
You must log in or register to reply here.

TRENDING THREADS

Back
Top