Niiice

...now what's that supposed to be?

TwIsTeDmInD said:

i just want to post my arse

I've seen scripts like it... PHP rules!

Indeed. That is my sig at my other board. They dont know to much coding and I got about 10 tags asking why I was posting there ISPs for everyone to see

TwIsTeDmInD said:

:Lol:


SCORE 10

I am a admin at that board, and I hadnt been there for awhile... and a brand new Mod (a rank right under Admin) who didn't know me threatened to ban me if I didnt take it off.

TwIsTeDmInD said:

that's me! shit!

Thank you all for posting on this thread, in doing so I have put malicious viruses on your computer



*whispers*

Oh thats the next version? Nevermind!

TwIsTeDmInD said:

you almost got banned off your own board? you are sucha geek.

guess all that studying and beach/tropical storm time is cutting into your board responsibilites.

Dont worry... A Mr. "Sandwitch" was taken care of.

But yeah... I kind of wish he knew me. My board has grown far too large for me not to spend 24 hours a day there. Thats it! LIFE CAN WAIT! I HAVE PRIORITIES!!!

TwIsTeDmInD said:

hey, that was meee!!!

TwIsTeDmInD said:

i got a firewall

..

youngsoulrebel said:

Tch, so what Most consumer firewall products deliver little more than basic packet filtering and providing feelgood factor. Easily broken, with dedication and patience!

Er, allegedly.

How do I find out my ISP just out of curiosity...Tell me Ian tell me

ian said:

i am sitting behind a hardware firewall, all my ports have been changed
it would take a dedicated hacker, but ofcourse it can be done.

..

MostBeautifulGrlNTheWorld said:

You don't know who your internet provider is? Don't they bill you each month?

Well it depends - how do you normally connect to the internet?

MostBeautifulGrlNTheWorld said:

your ISP *number*?


uh, but looking at that sign posted at the top of this thread

MostBeautifulGrlNTheWorld said:

mbgitw, just look on your screen in the lil box the smiley is holding.

youngsoulrebel said:

Dunno what you mean about "ports being changed" but yeah you are right - for the most part, people hacking ordinary people's PCs are just script kiddies using downloaded tools - they have no patience or interest in breaking into a system with a h/w firewall like yours so I'm sure you're fine. There's really no point in going after more difficult challenges when there are millions of unprotected, unpatched virgin Windows boxes online via broadband...

ian said:

I have cable internet from comcast and I run aol on it...I do not get the bill...so therefore I do not pay much attention but I know it is comcast...sorry I am not a computer geek

ian said:

each port is assigned a default port number
a software firewall hides your ports
but on a hardware firewall one can actually reconfigure the port number
to be anything you want it to be.
not making it impossible to hack, but it is more secure than leaving it as the default

..
[This message was edited Sat Sep 6 23:08:08 PDT 2003 by youngsoulrebel]

MostBeautifulGrlNTheWorld said:

Yup, your ISP is Comcast then.

ian said:

Ok see all I needed was a little explination thanks

youngsoulrebel said:

Sorry mate... I don't wish to sound patronizing but this is my profession really and I do know TCP/IP very well and I gotta say what you just said was utter nonsense

Okay. TCP/IP allows for running different transport protocols and different services on different ports. That's fine, that's not a security problem that's just the way TCP/IP works. Certain traffic you are always going to want to allow such as port 80 (web) and port 110 (POP3) and port 25 (SMTP).

You misunderstand what a firewall is doing, I think. Really, there is no difference between a software firewall and a hardware firewall aside from the implementation. Hardware firewalls can certainly provider better features than cheap consumer-oriented software firewalls, but a firewall is a firewall regardless of whether it is in hardware or not.

ian said:

ofcourse software firewalls and hardware firewalls work in much the same way, isolating your computer from the rest of the internet by inspecting each packet of data determining if it it should be allowed in or out.

a difference being is that with a hardware firewall one has, only one external ip adress.

and the ports number such as smtp and pop3 can be reconfigured, just as long as they are configured on the client machines as well.

for example, if a server must initiate a smtp session with a receiving server on which the smtp task is listening on port 26, set the smtp outbound port to 26 on the server document of the initiating server.

ports are how hackers break into networks/pc's reconfiguring them is just a small security measure.

in my mind, the best protection is a combination of both hardware and software firewalls, since both have different advantages and disadvantages.

..
[This message was edited Sat Sep 6 22:06:43 PDT 2003 by youngsoulrebel]

youngsoulrebel said:

Sorry mate but that's quite simplistic again. Not sure if you actually get it and are just doing a bad job of explaining it, or if you just don't know what you are talking about

I dunno where you got the idea that a hardware firewall can only have one external IP address in comparison to a software firewall. Er, no.

I dunno why you think it is so great to be able to run SMTP on port 26 etc, or why you think it can only be done with a hardware firewall. You can do it in software just as easily, not that it makes much of a difference - any script kiddie worth their salt is gonna run a TCP and UDP port-scanner anyway and other auditing tools. Anyway as we mentioned, most of these kids are only really looking for unprotected, unpatched virgin Windows boxes with Netbios turned on port 135 etc. Plenty of them on the net nowadays.

Realistically, for most ordinary people running internet traffic on non-standard ports is not an option, because you're going to be connecting to other servers on the internet using more common port numbers. Anyway running services on new port numbers could barely be called a security measure, it wouldn't delay any s'kiddie any more more than a few seconds. What's more important is choosing exactly what traffic you want to permit to and from your network - what protocols and port numbers and set up the rules correctly. Believe me, I've seen plenty of very expensive Cisco routers get hacked because of buggy firmware revisions and because of poor configuration.

As for your comment "ports are how hackers break into networks/pc's reconfiguring them is just a small security measure" - errr... I won't even bother commenting on that because it isn't really relevant. Running services on non-standard ports is really not much of a security measure at all because it just isn't that practical. Certainly worth a try as an additional measure if you can, but for most people it isn't a practical solution considering the minimal benefits.

I should probably point out that I am something of a "hacker" myself in the old school sense, and I've been at it since I was a 6 yr old sniffing around VMS machines over 2400bps dialup and digging PSTN switch manuals out of the garbage etc Not that I'm admitting to anything illegal mind you, but I do have a feel for how these s'kiddies operate - they've always been around leeching passwds and tools since time immemorial.

ok, you have both proved you are huge computer geeks.


this thread is getting kinda sexy.

TwIsTeDmInD said:

That is too cool!

Altho..it neglects to point out that the iMac I use is mentally challenged

iridescence said:

I'mma shut up now coz I don't wanna make the guy look bad in front of his lady... sorry Step I'm out!