| View previous topic :: View next topic |
| Author |
Message |
LuftWolf
Joined: 09 May 2005
Posts: 1872
Location: Free New York
|
 Posted: Mon Apr 10, 2006 4:06 am Post subject: |
 |
|
I don't use GameSpy and I don't know much about it, and I haven't found much use for it, so I haven't had any inclination to use it any more than my Beta testing duties required.
I'm only speaking about using DW by directly connecting to your host's ip. |
|
| Back to top |
|
 |
Bellman
Joined: 14 Feb 2004
Posts: 1724
|
| Posted: Mon Apr 10, 2006 5:23 am Post subject: |
|
|
LW: | Quote: | | Once someone is in your system, they could put files anywhere... surely they would put them somewhere more useful than your DW folder? |
With respect if you read the posts in the thread you would ''follow this conversation,'' Egs:-
Bellman: | Quote: |
''Trojans finding their way into my DW folder and linking to so called secure storage area/s. ' |
The no-brainer reply to 'why put them there ' is because my DW folder is used a lot !!
Last edited by Bellman on Wed Apr 12, 2006 1:59 am; edited 1 time in total |
|
| Back to top |
|
|
OneShot
Joined: 24 Mar 2005
Posts: 704
Location: Germany
|
| Posted: Mon Apr 10, 2006 8:48 am Post subject: |
|
|
No offense, but somehow I get the feeling that some people are kinda overreacting (due to whatever reasons they have or think to have).
It's common knowledge that especially Windows is pretty leaky even if you patch it all up and have some additional programs covering the other holes. But as I mentioned earlier in all my time of playing Online I have yet to encounter one such problem as described previously - maybe its luck, but maybe it was bad luck on behalf of the side of the guys who catched something. Either way, while caution is a good thing, it should be kept reasonable - so you guys have been burned, poo poo happens. But try to avoid scaring other possible not very knowledgeable customers off playing DW - MP just because you encountered a hit by a Virus/Trojan.
Just my 2cts
OS |
|
| Back to top |
|
|
Bellman
Joined: 14 Feb 2004
Posts: 1724
|
| Posted: Mon Apr 10, 2006 10:46 am Post subject: |
|
|
Its a matter of personal judgement how much you 'expose' on the internet.
I dont think anyone will be scared off by a proper consideration of the risks and sensible steps to take.
You just have to accept that however careful you are and however much you spend on so called security software
- you can still get hit.
Now if you dont bank on the internet, set a credit card balance at peanuts level, and dont broadcast
personal details - you aint giving away anything worth having !
Last edited by Bellman on Wed Apr 12, 2006 2:01 am; edited 3 times in total |
|
| Back to top |
|
|
LuftWolf
Joined: 09 May 2005
Posts: 1872
Location: Free New York
|
| Posted: Mon Apr 10, 2006 7:31 pm Post subject: |
|
|
Playing DW online is about as risky as connecting your computer to the internet in the first place. So if you feel secure enough having a computer online, then you should feel secure enought to use it.  |
|
| Back to top |
|
|
Bellman
Joined: 14 Feb 2004
Posts: 1724
|
| Posted: Tue Apr 11, 2006 12:11 am Post subject: |
|
|
DW has for me been exceptionaly free from MP ''poo'' (OS) when compared with previous experience of other
MP games. Probably this is a compliment to the quality of the gamers - but neither SAS or we players
have any control over third-party 'observers'.
But nothing would prevent me from full participation in the most absorbing sim I have ever played on the internet.
 \   |
|
| Back to top |
|
|
MaHuJa
Joined: 10 Jan 2002
Posts: 447
Location: 59.96156N 11.02255E
|
| Posted: Wed Apr 12, 2006 9:09 am Post subject: |
|
|
Did somebody call? 
The thread hasn't managed to be all that coherent, with some people starting with things not even related, so this post becomes what it is... Essentially, I've just picked some pieces I wanted to comment on, and answered.
As a related; I recommend Tiny Firewall for its wide firewalling (app-app and app-filesystem is also firewalled) but there are two reasons why I would not recommend it: Further development was pretty much abandoned as they were bought out, with some annoying bugs left, and it is meant for rather advanced users.
But first, I want to clear up a few things.
First of all, port states. People here discuss open/closed; but this becomes quite wrong.
Filtered: A request to this port won't even reach the port. This may be the router not forwarding it, or a firewall on the target pc. (I'm discussing actual state rather than perceived state, for those familiar with nmap etc.)
Closed: A port at which nothing is listening.
Open: A port at which something is listening.
When people in this discussion has said "open ports" they really mean "unfilter(ed)" ports. For some it only means partially unfiltered, even. Does it still sound that bad?
| Quote: | | so it possible to have something bad piggy-back on a custom mission or use DW as a way into the system? |
No. Other than a custom installer for a mod (graphics/sound mods require these), which is rather obvious to the "computer literate", there is no way to do this. That is known, and I see no reason why any piece should actually be vulnerable.
| Quote: | | It is possible to imbed a virus into any file. |
Aye, but so what? Unless you can also get it to execute, it doesn't matter. There have been some episodes regarding winamp and playlists, as the playlists could hold exploit code (your "virus") - though the vulnerability fixed was always something about how it was made to execute it.
| Quote: | | The problem is distinguishing 'proper' authority overseeing from other neo-criminal activity. |
For my home network, I just assume there's no "proper authority" other than myself to begin with. 
Wether a packet trail etc is the result of some attacker or some desirable automated process, however, is a bit more difficult. I believe that's more along the lines of what you meant?
| Quote: | | so if I had left the required ports on my router for MP open for a week, but left my zonealarm on at the sametime, would I be vulnerable to anything slipping in unseen, something that could attack my system while the computer was off and/or while it was on? |
This is what I meant by partially unfiltered. Zonealarm would be the second filter, and you unfiltered it only in the first filter. Zonealarm is then capable of unfiltering when it turns open, so there's no real difference from closed, as far as opening for an actual attack through it goes. ("Stealthing ports" is somewhat overrated.)
| Quote: | | Is playing DW multiplayer any more dangerous than playing other online games like WWIIOnline, or EVE, Ghost Recon/Rainbow SIx, etc. that dont require opening any special ports? |
DW shouldn't require any incoming ports unfiltered in order to join, but in order to host a game, you will need to unfilter ports there too. (The MMO games are excepted as they don't have a "host mode")
| Quote: | | It is not necessary to crack the code - just introduce spy measures into any folder. |
Not sure what you're smo... err... mean here. The "crack the code", reading that as "finding a security hole", means finding the way to let that little virus or whatever, which can be embedded in a mission, actually be executed. Without that, you're talking about things that are actually unrelated to DW.
| Quote: | | The no-brainer reply to 'why put them there ' is because my DW folder is used a lot !! |
Umm... isn't that a good reason to avoid putting it there?
(Or do you need to be more specific what you mean?)
| Quote: | | Now if you dont bank on the internet, set a credit card balance at peanuts level, and dont broadcast personal details - you aint giving away anything worth having ! |
Even then, they may turn your computer and its internet connection into a DoS zombie, attack relay, or use it to send spam which can then only be traced back to you.
| Quote: | | DW has for me been exceptionaly free from MP ''poo'' (OS) when compared with previous experience of other MP games. Probably this is a compliment to the quality of the gamers - but neither SAS or we players have any control over third-party 'observers'. |
Ummm... I thought this thread was about computer security and DW?
| Quote: | | I've been working on this problem for hours and its beginning to drive me nuts, this is a brand new install of XP so im surprised to be hit with something so depilatating so quickly after a re-format. |
Brand new install is when it is at its most vulnerable to attack, before you've patched security holes, etc.
| Quote: | | but still my internet is dragging |
Care to be a bit more specific? Exactly what are you seeing, that makes you say that? Is some internet-using app (e.g. webbrowser) slow to load pages? Does the entire computer slow down a lot when you're doing something on the net?
I think it would qualify as rule #1 of tech support, that you should never assume the guy who needs help knows what he's talking about. (Unless you've seen otherwise from him/her before.) Sentences like that prove it. |
|
| Back to top |
|
|
Bellman
Joined: 14 Feb 2004
Posts: 1724
|
| Posted: Wed Apr 12, 2006 10:29 am Post subject: |
|
|
 Thanks for giving these issues some time MHJ - it is appreciated.
However talking specifics I am no further on with my mysterious Starchart and replay folders which
both link to a fortunately empty so called secure file called 'Folder Lock'.
Note re 'Poo'. OS put it quite aptly - OneShot: | Quote: | | '' so you guys have been burned, poo poo happens. |
|
|
| Back to top |
|
|
Wildcat
Joined: 10 Jan 2002
Posts: 438
|
| Posted: Sat Apr 29, 2006 3:06 am Post subject: |
|
|
If you are getting trojans on your computer merely from having gamespy's ports open it means your computer has those trojans before you even connect. Opening ports does not make you some kind of huge internet target. The only ports that need to be filtered at the netbios and msrpc ports (basically everything from 1 to 1064 should be filtered by your firewall, then unfilter certain ports as you deem necessary such as port 80 for web browsing, msn port, etc..)
Again, if trojans are just magically appearing on your computer then you are already infected. Trojans do not just weasel their way into your system if you don't have a firewall going. I have no firewall and have no problems, because I make sure I don't invite problems onto my system. If you get crap on your system you basically open the floodgate whether or not you have a firewall. In fact most good spyware will disable your firewall without letting you know it's done that.
Consider using a downloaded anti spyware program like hijack-this, CWS Shredder, ad aware and spybot search and destroy. Avoid crap products like norton and mcaffee. They just return false positives all the time. |
|
| Back to top |
|
|
MaHuJa
Joined: 10 Jan 2002
Posts: 447
Location: 59.96156N 11.02255E
|
| Posted: Mon May 01, 2006 10:48 pm Post subject: |
|
|
| Wildcat wrote: | | then unfilter certain ports as you deem necessary such as port 80 for web browsing |
Sounds like somebody hasn't caught on to the difference between inbound and outbound...
The technical details (source port, destination port) are more than I think I should confuse people here with unless specifically asked for, though.
| Quote: | | Again, if trojans are just magically appearing on your computer then you are already infected. |
Presuming that to be true, installing windows already has you infected with internet explorer 
| Quote: | | I have no firewall and have no problems, because I make sure I don't invite problems onto my system. If you get crap on your system you basically open the floodgate whether or not you have a firewall. In fact most good spyware will disable your firewall without letting you know it's done that. |
Firewalls are overrated - but they are still too good a line of defense to be just plain ignored. (Not implying you are ignoring them, it would seem you've made a wellinformed decision) The problems start when people start relying on (only) the firewall, and get lax with the rest. (And restart with reinstall or end with scrapped pcs  )
| Quote: | | Avoid crap products like norton and mcaffee. They just return false positives all the time. |
The software sheriffs, outlawing anything for any reason... or that is at least how it initially appears. You see, the most common targets (that I know of) are security products...... ...but at least for the most part those that can be used for an attack; things that shouldn't be on average joe's pc. Problem is, it tends to frustrate those who uses them legitimately too. At least somebody started using the phrase "potentially unwanted software"
I'm without antivirus like you are without firewall. And doing fine without. Once per a few months I use AV for a routine check. I don't think I have yet found anything beyond false alarms, like the mentioned PUS. |
|
| Back to top |
|
|
Bellman
Joined: 14 Feb 2004
Posts: 1724
|
| Posted: Tue May 02, 2006 1:32 am Post subject: |
|
|
MHJ - A very safe pair of hands returns to the bridge.
There's is a growing tendency for spyware software, particularly at the free trial stage, to ''discover'' -''potentialy harmful
programmes'' Not surprisingly post purchase these same spyware scammers who presumably now have entered into
a contractual relationship are rather more cautious.
Further point - any individual having a strong interest in things military, albeit a leisure pursuit, should
or may reasonably expext in todays climate to be 'watched'
That sophisticated techniques pertain should be in no doubt ! Clinging to any concept of 'clothing'
is misplaced as the very architecture of communication is and should be expected to be monitored. |
|
| Back to top |
|
|
|
|
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
|
Powered by phpBB © 2001, 2005 phpBB Group
|
