LinuxQuestions.org
Visit Jeremy's Blog.
Go Back   LinuxQuestions.org > Forums > Non-*NIX Forums > General
User Name
Password
General This forum is for non-technical general discussion which can include both Linux and non-Linux topics. Have fun!

Notices



Reply
 
Search this Thread
Old 05-30-2012, 01:16 PM   #1516
TobiSGD
Moderator
 
Registered: Dec 2009
Location: Hanover, Germany
Distribution: Main: Gentoo Others: What fits the task
Posts: 15,653
Blog Entries: 2

Rep: Reputation: 4095Reputation: 4095Reputation: 4095Reputation: 4095Reputation: 4095Reputation: 4095Reputation: 4095Reputation: 4095Reputation: 4095Reputation: 4095Reputation: 4095

Quote:
Originally Posted by Doc CPU View Post
I have one NTFS partition on each of my XP PCs, the smallest of them about 40GB. I'm using that partition as a workspace for video editing, that's the only reason why I chose NTFS at all
Does that mean that you are installing XP on a FAT partition, which is basically the same as disabling all security features based on file-permissions?
Quote:
Don't use a virus scanner at all.
Quote:
But I do not update Windows - because I trust the Open Source community, but not Microsoft. It's a sad fact that the most imminent danger to stability and trustworthyness of a Windows PC comes from Redmond.
Nope, the most imminent danger comes from uninformed users. You are just stating here that you never fix known security holes (although the OS developer delivers patches) and also don't run software which at least partially can prevent the symptoms caused by that behavior.
In short, you are disabling the security features (if my guess is right and you do install XP on a FAT partition), not fixing known holes and don't run software that can make your system more secure. In such a configuration it doesn't even help to run the system as unprivileged user.

Sorry I have to say that, but IMHO advices like these are the most imminent danger to Windows systems and behaviors like yours are at least one reason why there are so many Windows zombie machines out there.
 
Old 05-30-2012, 01:48 PM   #1517
Mike_P
LQ Newbie
 
Registered: Apr 2012
Posts: 15

Rep: Reputation: Disabled
In the near future it will be Android vs IOS. No more windows. Wishful thinking.

Last edited by Mike_P; 05-30-2012 at 02:00 PM.
 
Old 05-30-2012, 02:01 PM   #1518
Doc CPU
Senior Member
 
Registered: Jun 2011
Location: Stuttgart, Germany
Distribution: Mint, Debian, Gentoo, Win 2k/XP
Posts: 1,060

Rep: Reputation: 315Reputation: 315Reputation: 315Reputation: 315
Hi there,

Quote:
Originally Posted by TobiSGD View Post
Does that mean that you are installing XP on a FAT partition, which is basically the same as disabling all security features based on file-permissions?
yes, of course. As long as Windows won't let me grant permissions based on a whitelist of processes that are entitled to a certain operation, the system is crap. All access control is based on the user, which is nonsense because I, the user, would like to do certain things using one application, while protecting me against modifying a file with another application. The Windows security model doesn't allow that. Neither does the Unix model, for that matter.

Quote:
Originally Posted by TobiSGD View Post
You are just stating here that you never fix known security holes (although the OS developer delivers patches) and also don't run software which at least partially can prevent the symptoms caused by that behavior.
True, but in the first place I'm not running software that exposes these known security holes - or I'm using it in a way that won't expose them.

Quote:
Originally Posted by TobiSGD View Post
In such a configuration it doesn't even help to run the system as unprivileged user.
Which I don't do on Windows, either, as you may have feared.

Quote:
Originally Posted by TobiSGD View Post
Sorry I have to say that, but IMHO advices like these are the most imminent danger to Windows systems and behaviors like yours are at least one reason why there are so many Windows zombie machines out there.
No, on the contrary. It's my skepticism that protects me and prevents my machines from getting affected or infected. At the slightest indication of anything suspicious, I put a PC in quarantine until I find (in most cases) that it's something harmless that triggered my brains alarm. Such a hint could be an unknown process showing up, a file that suddenly appears or has been changed without my wanting so, or unusual messages that turn up somewhere, or network activity I can't spontaneously account for.
I've been running many PCs at first with Windows 95/98 that way successfully for many years, then with Windows 2000 and XP. My experience tells me that this is the best practice - and it makes sure I don't get any of the generously distributed viruses, trojans or backdoors of any kind directly from Redmond, or get some precious feature disabled unexpectedly.

[X] Doc CPU
 
Old 05-30-2012, 02:38 PM   #1519
TobiSGD
Moderator
 
Registered: Dec 2009
Location: Hanover, Germany
Distribution: Main: Gentoo Others: What fits the task
Posts: 15,653
Blog Entries: 2

Rep: Reputation: 4095Reputation: 4095Reputation: 4095Reputation: 4095Reputation: 4095Reputation: 4095Reputation: 4095Reputation: 4095Reputation: 4095Reputation: 4095Reputation: 4095
Quote:
Originally Posted by Doc CPU View Post
True, but in the first place I'm not running software that exposes these known security holes - or I'm using it in a way that won't expose them.
Which basically means you have found a way to uninstall the Internet Explorer, have not installed any other browser and never use any software that downloads data from the net. In other words, you have Windows only for staring at an idling desktop.
You also don't use PDF readers, media players and other stuff that can be exploited. Question: How do you check for processes, network activity and such when you have a root kit installed?
 
Old 05-30-2012, 04:48 PM   #1520
Doc CPU
Senior Member
 
Registered: Jun 2011
Location: Stuttgart, Germany
Distribution: Mint, Debian, Gentoo, Win 2k/XP
Posts: 1,060

Rep: Reputation: 315Reputation: 315Reputation: 315Reputation: 315
Hi there,

Quote:
Originally Posted by TobiSGD View Post
Which basically means you have found a way to uninstall the Internet Explorer, have not installed any other browser and never use any software that downloads data from the net. In other words, you have Windows only for staring at an idling desktop.
no, only I read about most of the threats that have become known and wonder what strange circumstances it takes to really make them effective. Oh, and I prefer to use old versions of programs because most of their flaws are known, and I know they don't bother me. I have Internet Explorer 5.5, 6.0 and 8.0 installed on three different machines, one of them just a VM, but I'm not using it (other than the way it's integrated in the shell), and on my Windows PCs, I'm using MS Office 97, Opera 8.x, Thunderbird 1.5 and Videolan 1.05 (Videolan 1.1+ seems to require Windows 7 anyway, it complains about missing DLL entry points on 2k/XP).

Quote:
Originally Posted by TobiSGD View Post
You also don't use PDF readers, media players and other stuff that can be exploited.
I use Foxit Reader 3.x, and I'm aware that there might always be a yet unknown exploit with some software. However, most of the software on my Windows PCs being more than 3 years old, I assume these would already be known.

Quote:
Originally Posted by TobiSGD View Post
Question: How do you check for processes, network activity and such when you have a root kit installed?
Windows task manager and the network "active" LED. And I know I have no rootkit, because I don't give them any chance to get on my PC. Besides, It would affect the timing of the boot process, yet another giveaway. So on the whole, I can't understand how an advanced or expert user might get their PC infected. I wouldn't blame the average unskilled user, but for someone like us it's like a sniper missing a cargo van: You have to be damn careless.

[X] Doc CPU
 
Old 05-30-2012, 06:04 PM   #1521
TobiSGD
Moderator
 
Registered: Dec 2009
Location: Hanover, Germany
Distribution: Main: Gentoo Others: What fits the task
Posts: 15,653
Blog Entries: 2

Rep: Reputation: 4095Reputation: 4095Reputation: 4095Reputation: 4095Reputation: 4095Reputation: 4095Reputation: 4095Reputation: 4095Reputation: 4095Reputation: 4095Reputation: 4095
Quote:
Originally Posted by Doc CPU View Post
So on the whole, I can't understand how an advanced or expert user might get their PC infected. I wouldn't blame the average unskilled user, but for someone like us it's like a sniper missing a cargo van: You have to be damn careless.

[X] Doc CPU
Drive by downloads, getting data from users that you trust, but followed your advices, ... . By the way, root kits can't be seen in the task manager and it should be no problem to hide network activity within normal network activity if the network LED is your only indicator. Also, almost any root kit is so small that it loads and executes in a time scale so small that you wouldn't notice anything.
I still think that your advice is simply irresponsible and dangerous.
 
Old 06-09-2012, 01:32 PM   #1522
Linux_Kidd
Member
 
Registered: Jan 2006
Location: USA
Posts: 539

Rep: Reputation: 51
Quote:
Originally Posted by TobiSGD View Post
Drive by downloads, getting data from users that you trust, but followed your advices, ... . By the way, root kits can't be seen in the task manager and it should be no problem to hide network activity within normal network activity if the network LED is your only indicator. Also, almost any root kit is so small that it loads and executes in a time scale so small that you wouldn't notice anything.
I still think that your advice is simply irresponsible and dangerous.
i suspect Intel / VMware is working on killing root kits by monitoring the 1st "block" of instructions the CPU gets. any variance from the norm would indicate a boot (rooting) issue, etc.

nice thing about VM environment is that you can scan the image from a process outside of the VM. if its a physical booting from SAN or the like you can scan the SAN from an outside process with a read-only setup to the disk space.

roots are a pita when the system is physical and boots from local disk.
 
Old 08-12-2012, 04:51 PM   #1523
nobuntu
Member
 
Registered: Mar 2012
Distribution: Debian for server, CrunchBang for everything that's not a server
Posts: 143

Rep: Reputation: 24
Windows 8 has the worst interface to ever be conceived. Once it is released to the general public, Microsoft will either go under entirely or lose so much of their market share that they will cease to be remotely relevant in the modern computing landscape.

With luck, shocked and horrified former users of Windows 7 will start researching other options for their computer systems. Naturally, a good percentage of them will move to OSX, but with luck the rest will switch to Linux. Perhaps we will see some kind of significant jump in user-base, for once.

Last edited by nobuntu; 08-12-2012 at 04:51 PM. Reason: Grammar and sentence structure fixed.
 
Old 08-12-2012, 10:49 PM   #1524
sundialsvcs
Guru
 
Registered: Feb 2004
Location: SE Tennessee, USA
Distribution: Gentoo, LFS
Posts: 5,455

Rep: Reputation: 1172Reputation: 1172Reputation: 1172Reputation: 1172Reputation: 1172Reputation: 1172Reputation: 1172Reputation: 1172Reputation: 1172
Actually ... even though the Windows-8 user interface is indeed one of the "suck-iest" ones that their Marketing Department has come up with yet (and that's saying a lot), the underlying architecture of the system is actually robust. Including a very thorough (baroque, really...) "roles based" integrated security model.

Doc, you can, in fact, designate "roles" that contain the security restrictions that you want, then associate users and processes with those roles.

There are two basic problems. First, Microsoft actually disables most of that security on the "home edition" versions of the product. Second, they do not ship most of the necessary tools on anything but the most-expensive ones. They make the necessary information quite difficult to find on MSDN, although it is there ... and the whole damned system is, as I said, baroque.

"Once you figure out how-the-hell to do it," Windows will do it. But it will only do it "the Microsoft way." At least, that's the only reasonably-easy way to do it...

I run Windows in virtual machines at this point. And I make each one of them believe that they are in a centrally managed setup, obeying LDAP (nee OpenDirectory) rules, along with the Linux systems. Windows isn't happy with the idea but will do it. Linux (and OS/X) handle it with a smile.
 
Old 08-13-2012, 07:12 PM   #1525
josh@linux
LQ Newbie
 
Registered: Jul 2012
Posts: 2

Rep: Reputation: Disabled
It looks like the morons at redmond are changing the metro name found in this article
http://www.theverge.com/2012/8/2/321...ropean-partner
 
Old 08-14-2012, 01:42 PM   #1526
malekmustaq
Senior Member
 
Registered: Dec 2008
Location: /root
Distribution: Slackware & BSD
Posts: 1,220

Rep: Reputation: 231Reputation: 231Reputation: 231
Gnu/Linux is certainly the best OS but the average computer students are taught by their schools how to use and only how to use Microsoft software; this M$ attained by lobbying and bribing politicians and policy makers in the government --an art that FSF has no means of doing. I think every user needs to help countering it.
 
Old 08-14-2012, 02:20 PM   #1527
newbiesforever
Senior Member
 
Registered: Apr 2006
Location: Glendale, AZ
Distribution: Distro-homeless. Lost.
Posts: 1,886

Rep: Reputation: 62
Quote:
Originally Posted by R3nCi View Post
Windows 8 has the worst interface to ever be conceived. Once it is released to the general public, Microsoft will either go under entirely or lose so much of their market share that they will cease to be remotely relevant in the modern computing landscape.

With luck, shocked and horrified former users of Windows 7 will start researching other options for their computer systems. Naturally, a good percentage of them will move to OSX, but with luck the rest will switch to Linux. Perhaps we will see some kind of significant jump in user-base, for once.
I certainly hope Windows 8 is that bad, but as far as I know, Microsoft has far too much money and power to go under--not from one [m ore] bad Windows version. I'm an idealist, but not an absurd one. Microsoft hasn't been innovative in many years (if it ever was), but it makes money anyway.

Last edited by newbiesforever; 08-14-2012 at 02:28 PM.
 
Old 08-14-2012, 02:40 PM   #1528
newbiesforever
Senior Member
 
Registered: Apr 2006
Location: Glendale, AZ
Distribution: Distro-homeless. Lost.
Posts: 1,886

Rep: Reputation: 62
how about an "ubuntu vs. all distros" thread?

Since most LQ users whom I've heard give an opinion on Ubuntu don't seem to like it or the Ubuntu culture, how about an "Ubuntu vs. All Other Distros" thread along the lines of this "Windows vs. Linux" thread? Perhaps there already is one and I haven't seen it yet?
 
Old 08-14-2012, 03:29 PM   #1529
sycamorex
LQ Veteran
 
Registered: Nov 2005
Location: London
Distribution: Slackware64-current
Posts: 5,605
Blog Entries: 1

Rep: Reputation: 1047Reputation: 1047Reputation: 1047Reputation: 1047Reputation: 1047Reputation: 1047Reputation: 1047Reputation: 1047
Quote:
Originally Posted by newbiesforever View Post
Since most LQ users whom I've heard give an opinion on Ubuntu don't seem to like it or the Ubuntu culture, how about an "Ubuntu vs. All Other Distros" thread along the lines of this "Windows vs. Linux" thread? Perhaps there already is one and I haven't seen it yet?
How about NOT creating an "Ubuntu vs. All Other Distros" thread?
 
Old 08-14-2012, 03:34 PM   #1530
josh@linux
LQ Newbie
 
Registered: Jul 2012
Posts: 2

Rep: Reputation: Disabled
hey newbiesforever, you can create any thread you want. In fact, it might spice up things here. WIndow$ vs linux gets old and boring.
 
  


Reply

Tags
64bit, cloud, linux, microsoft, windows


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
LXer: Tutorial: Four Easy Fun Useful Things You Can Do With Linux LXer Syndicated Linux News 0 10-01-2008 12:41 AM
LXer: KDE 4: The Shiny New Linux (and Windows) Desktop LXer Syndicated Linux News 0 09-17-2007 07:10 PM
media server or other fun things. doralsoral Linux - Software 1 11-05-2005 08:55 AM
most fun & excited things about Linux woranl Linux - General 2 07-27-2004 09:28 PM


All times are GMT -5. The time now is 01:31 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration