Full Disclosure mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Dumb question: Is Windows box behind a router safe ?

From: Rohit Patnaik <quanticle () gmail com>
Date: Tue, 22 Sep 2009 15:16:10 -0500
Yeah, but the original poster made it clear that the box was running 
Windows XP Service Pack 2, so both your comments are largely irrelevant. :)

--Rohit Patnaik

yersinia wrote:

On Tue, Sep 22, 2009 at 9:11 PM, Abhijeet Jain 
<abhijeet.ecstatic () gmail com <mailto:abhijeet.ecstatic () gmail com>> wrote:

    Myth No. 2- Using Firefox does not make you safe! In fact, IE 7/8
    is the safest browser when used with Windows Vista because it runs
    on lower privileges.

Not on Linux(Fedora) with Selinux Enabled, better if you run with the 
guest_u selinux usr.


    On Tue, Sep 22, 2009 at 1:57 PM, Kos <kpo.mail.list () gmail com
    <mailto:kpo.mail.list () gmail com>> wrote:

        Ancompuger behind a router/firewall does not make it safe.
        Vulnerabilities and exploits are not limited to a network
        level, which
        is generally what a firewall is used for. Vulnerabilities sent
        via any
        protocol used (http, imap, pop, other protocols that may be in
        use)
        are not suddenly secure.

        An example, there are PDFs that will trigger adobe to run,
        whcih can
        be exploited easily.
        Someone can send your father an email with a malicious
        attatchment,
        and a firewall isn't going to preven him from clicking and
        running it.
        Anti-virus is a good start, but will only go so far.
        There are phishing sites too.
        The ways to get owned are countless, regardless of a firewall
        or not.

        You should keep the system maintained and up to date (run system
        updates and applications undated regularly).

        So no, a firewall will not prevent a computer from being
        compromised.

        Other opinions?

        Kos

        On Sep 22, 2009, at 11:29 AM, Steven Anders
        <anderstev () gmail com <mailto:anderstev () gmail com>> wrote:

        > I received great responses and am very grateful to the help from
        > community of this list. Thank you.
        >
        >
        > I have a dumb question: Is a Windows box behind a router safe ?
        >
        > It is my father's PC and the Windows OS was not updated
        regularly.
        > The Windows box was connected through wire (RJ45) to the
        router. The
        > router is then connected to the DSL modem.
        > The Windows Box has SP2 installed and the default Windows
        firewall
        > enabled - and I think was last updated from Windows Update on in
        > 2008. It has AVG anti virus.
        > The PC was never moved anywhere and is always behind the
        router. The
        > router has default settings, which I believe has no ports open.
        >
        > He never installed any applications or downloads anything
        off the
        > net - mainly it is used for emails and general web browsing
        (using
        > Firefox, not IE). I informed him to use Firefox, since IE has so
        > many security issues.
        >
        >
        > My questions are:
        >
        > 1.  There are many exploits and vulnerabilities of Windows,
        but I
        > was wondering if outdated Windows box behind router generally
        > safe ?  Since, the Windows box was not updated with the latest
        > updates.
        >
        > I have always thought that having a computer behind the router
        > (since router has firewall) is generally safe, but I would
        love to
        > hear insights or thoughts.
        >
        >
        > 2. If a Windows box is behind a router, could a botnet be
        installed
        > to it ? Assuming, the end user does not install/download any
        > applications from the Internet and always use Firefox.
        >
        >
        > Thank you all in advance.
        > steve
        >
        > _______________________________________________
        > Full-Disclosure - We believe in it.
        > Charter: http://lists.grok.org.uk/full-disclosure-charter.html
        > Hosted and sponsored by Secunia - http://secunia.com/

        _______________________________________________
        Full-Disclosure - We believe in it.
        Charter: http://lists.grok.org.uk/full-disclosure-charter.html
        Hosted and sponsored by Secunia - http://secunia.com/




    -- 
    1q4!7EEf71!u

    _______________________________________________
    Full-Disclosure - We believe in it.
    Charter: http://lists.grok.org.uk/full-disclosure-charter.html
    Hosted and sponsored by Secunia - http://secunia.com/


------------------------------------------------------------------------

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Previous By Date Next
Previous By Thread Next

Current thread: