Posted 04 August 2004 - 02:21 PM
Surveys can bring up some interesting points of view. What are your thoughts about the firewall protection you have in place?
For starters, I'm just using Internet Connection Firewall in win xp pro. The 0-1056 port scan at Gibson Research's "Shield's Up" verifies that I'm operating in full stealth mode, furthor stating:
Your system has achieved a perfect "TruStealth" rating. Not a single packet — solicited or otherwise — was received from your system as a result of our security probing tests. Your system ignored and refused to reply to repeated Pings (ICMP Echo Requests). From the standpoint of the passing probes of any hacker, this machine does not exist on the Internet. Some questionable personal security systems expose their users by attempting to "counter-probe the prober", thus revealing themselves. But your system wisely remained silent in every way. Very nice.
I've closed the D-Com port, and I'm on a dial-up that gives me an static IP (an adress that changes each time I connect) I infrequently use IE, mostly using Firefox now, and don't use Outlook Express, having also "shot the messenger" per a small utility GRC offers.
The first scan offered has this to say:
Attempting connection to your computer. . .
Shields UP! is now attempting to contact the Hidden Internet Server within your PC. It is likely that no one has told you that your own personal computer may now be functioning as an Internet Server with neither your knowledge nor your permission. And that it may be serving up all or many of your personal files for reading, writing, modification and even deletion by anyone, anywhere, on the Internet!
Your Internet port 139 does not appear to exist!
One or more ports on this system are operating in FULL STEALTH MODE! Standard Internet behavior requires port connection attempts to be answered with a success or refusal response. Therefore, only an attempt to connect to a nonexistent computer results in no response of either kind. But YOUR computer has DELIBERATELY CHOSEN NOT TO RESPOND (that's very cool!) which represents advanced computer and port stealthing capabilities. A machine configured in this fashion is well hardened to Internet NetBIOS attack and intrusion.
Unable to connect with NetBIOS to your computer.
All attempts to get any information from your computer have FAILED. (This is very uncommon for a Windows networking-based PC.) Relative to vulnerabilities from Windows networking, this computer appears to be VERY SECURE since it is NOT exposing ANY of its internal NetBIOS networking protocol over the Internet.
I understand that if I had a trojan at work, it could change my configurations at boot-up, for instance and send data outward bound...but is that likely to occur if the situation remains as it is. [just some firewall related concerns I have]
patiently patrolling, plenty of persisant pests n' problems ...