Slashdot Mirror
Flame Malware Hijacks Windows Update
wiredmikey writes "As more research unfolds about the recently discovered Flame malware, researchers have found three modules – named Snack, Gadget and Munch – that are used to launch what is essentially a man-in-the-middle attack against other computers on a network. As a result, Kaspersky researchers say when a machine attempts to connect to Microsoft's Windows Update, it redirects the connection through an infected machine and it sends a fake malicious Windows Update to the client. That is courtesy of a rogue Microsoft certificate that chains to the Microsoft Root Authority and improperly allows code signing. According to Symantec, the Snack module sniffs NetBIOS requests on the local network. NetBIOS name resolution allows computers to find each other on a local network via peer-to-peer, opening up an avenue for spoofing. The findings have prompted Microsoft to say that it plans to harden Windows Update against attacks in the future, though the company did not immediately reveal details as to how."
And an anonymous reader adds a note that Flame's infrastructure is massive: "over 80 different C&C domains, pointed to over 18 IP addresses located in Switzerland, Germany, the Netherlands, Hong Kong, Poland, the UK, and other countries."
and you thought Conficker was bad!
The security surrounding Windows Update is rather pathetic, certificate or no certificate. It's cost me many, many extra hours and headaches, while they're "hardening up" windows update, they should also make a vastly improved repair utility for it. I hate spending all that time removing a virus from a customer computer just to find out at the end that Windows Update is irreparably broken and SFC, their own fixit tool, 3rd party mass re-registration tools, and registry utilities all cannot fix it so I have to reinstall. Considering that an OS install is classified as "totaled" if Windows Update no longer works, maybe they should protect it better AND make a flawless, end-to-end reinstaller that resets it to absolute default settings and fully repairs it.
Funny thing to say about any version of Windows.
Question remains: how comes those people are so dumb? Being at de-facto cyberwar with a country, and still use closed source program originating from it?
Another one: Be rich and smart enough to have a nuclear research, but not smart enough to roll its own IT infrastructure base on code they can audit?
http://opencm3.net, http://www.nongnu.org/gm2/
A lot of people are predicting poor sales for Win8 because they dislike Metro; but there is probably going to be more visibility of the new "reset" capabilities of Windows 8, now that malware authors have raised their game to a new level.
http://support.microsoft.com/kb/971058
http://support.microsoft.com/kb/943144
Anyone know what this is about it's in the last paragraph "It's interesting to mention that these machines mostly run Windows XP and Windows 7 32 bit, but none of them run Windows 7 64 bit, which seems impervious against this and most other malware." Is that due to driver signing requirements?
Everyone that disagrees with me is a paid shill
OK, my notebook that still has Windows on it (out of pure laziness) has been nagging me about a security update for a couple of days, yesterday I went ahead and updated. Should I worry?
Free Martian Whores!
Way to spin it guys. Unsecured with plans in the future to do something about it. And its using their own certificate mechanism. I don't hold much hope in their ability to fix anything.
Geez. How to fix this problem in updaters was known and discussed years ago: https://www.eecs.berkeley.edu/~jsamuel/papers/survivable-key-compromise-ccs2010.pdf
I guess it takes an issue like this for them to get off of their butts and do something...
There's still one left?
captcha: miseries
And everyone is trying to spin this as american/israel made ect as some sort of political talking point.
And it's getting more and more obvious. This wasnt a goverment tool. This was the work of very smart crackers with a very large plan.
I don't think you're being fair. Microsoft has fixed more security holes than all the other software companies on the planet combined. And I have every faith that they will continue to fix thousands and thousands of security holes every year for a long, long time to come.
Of course, it's running Windows.
The preceding was meant tongue-in-cheek but even having said that there'll probably still be Linux/MS fanbois who want to take it seriously and start a flamewar.
Violence is like duct tape. If it doesn't solve the problem, you didn't use enough.
I'm not sure it works like that. It would be like me building a table with two legs and then getting kudos for adding two more legs a year later...
As long as you can get data from certain ip address/url you could download the update from 10 different addresses and then you could send it back to microsoft server (which verifies that it is authentic) and have your smart phone sent verification of safety of update and then your smart phone sends the OK to computer and then it updates. Or you could download the update to 100000 computers and then use beer-to-beer (joke) verifactionada and if enough verify the autheticity then perhaps accept it. You can say thank you MickeyMouseSoft if the idea posted above worked.
or best?
There are two types of people in the world: Those who crave closure
Damn. I knew I should have used a "/sarcasm" tag.
Wait until someone is able to revoke, overwrite, or otherwise mangle the keys used by UEFI. I will be laughing my ass off on the day no Windows machine will boot up because of some type of malware or virus that mangled the keys used by UEFI. Sadly, Fedora will probably get burned as well when this happens since they are opting to use MS to create the keys.
Woooosh.
disable NetBIOS ?
I don't think I'm using it for anything... even my printer is set up with an IP address.
Is that due to driver signing requirements?
Driver signing doesn't mean squat for security. Third-party drivers with security holes and back doors are a dime a dozen, and there are even some in Microsoft drivers, of course. I have a publicly-available CPU diagnostic utility that comes with a signed 64-bit driver that allows user mode to write to any desired MSR. That easily leads to executing arbitrary code execution, most easily by changing the syscall vector. Malware that acquires administrator privileges can just install some company's vulnerable driver.
Driver signing is really about DRM. Hollywood was strongly concerned about fake video card and sound card drivers being used to dump unencrypted content from protected sources. The proof of my statement is what happens when you boot the Vista/7/8 kernel in debug or test signing mode: everything works except Blu-Ray movies and other DRM content.
"Screw Sun, cross-platform will never work. Let's move on and steal the Java language." - Visual J++ Product Manager
_This_ _is_ why Microsoft Security is a joke. We've know for 10 years that the update food chain was a primary target for malware people and we've know for 2 years that CA don't provide any security. They have had 2-10 years to harden this, just a little, and guess what, no dice. Further, dns has already been hardened, but, they introduce a hole by which to drive a mac trunk through. Peer to peer share the dns info, Apple does; just be sure to share the fully authentication information and _check_ it on the client side. When the authentication fails, drop the data, as is required.
Microsoft, you have been owned.
I want to update my machine, but, I want to hand verify a signature on an .exe from Microsoft, then run it, then be confident that it patches all the holes exploited for this malware to work. Luckily, most people don't have to worry about this malware, as they have automatic updates turned on, and they've already updated. Either they are already infected, or, there is a slim chance they might remain uninfected.
If you are on a network that already features Flame, you should probably just wipe and reinstall now.
Otherwise, that security update was probably Microsoft's emergency blacklisting of the signing keys that were used to make the Flame components pass as MS-signed software...
Well, I am not an expert on the topic but there are a few things you might want to consider before you get all overexcited on that...
First, there are hardly any infections outside the Arab-world. (my guess is that it just takes a look at the keyboard driver in use) Going by your username you're not an Arab guy.
Second, the virus seems to be activated by some kind of a human operator, and well... you are probably not important enough (read: high level nuke scientist or something)
Third, this thing is in the wild since 2010, maybe even as early as 2007, and you didnt get infected in all the updates since then (I assume), or it is to late anyway.
Fourth, you use Windows and then ask if you might catch a virus? Seriously?
Fifth, to be absolutely safe: format your HD a couple of times, get OpenBSD on it with a strong root password (at least 128 characters), get the battery out and pack the thing in a lead box with walls at least 5 inch thick, fill the rest of the box with epoxy and bury the whole thing on a depth of at least 10 feet... on Pluto...
rm -rf --no-preserve-root /
According to the article, they say that infected machines will respond to NetBIOS name queries for Windows Update servers. That strikes me as odd. Don't you have to enable NetBIOS for DNS resolution in the Windows NT series? And aren't traditional BIND name servers a higher protocol bind order by default?
I thought I had read elsewhere that the problem was actually due to the insecurity of having "Automatically detect [proxy] settings" enabled for IE. When Windows Update fires off, it checks for the default proxy server on the subnet and an infected machine responds. If that's true, then we either need to move to a model where auto-discovery of proxy servers is disabled by default or that clients won't trust proxy servers without it having a trusted cert issued by a local authority.
Wouldn't help. Slashcode doesn't support it.
Faster! Faster! Faster would be better!
Yes.
Why is Windows Update using netbios? I thought the A record DNS results for update.microsoft.com and related were hard coded in the OS to prevent these sort of spoofing attacks.
Is this something with the WSUS based updating procedure?
Repeal the 17th Amendment TODAY! Also Please Read http://www.gnu.org/philosophy/right-to-read.html
Thank you. I wonder many heads your irony will fly over.
So if these things are government "cyberweapons", they are something like a cyber-landmines, with huge collateral damage. This will not go on for long.
You may want to build system images of important machines and just "re-image" after a virus infection. I do that with the few Windows machines we have here.
Clonezilla is fantastic for this. It's free and it make simple images that can be stored on any file share. It doesn't yet image to drives smaller than the original source machine, but I'm confident they will add that in the future. For now, I image to drives equal in size or larger.
Sure Acronis, Ghost and the like work as well, but it's hard to argue with free.
-ted
I saw an article about this already on Ars Technica. However, Ars included one detail that the Slashdot and Security Week stories don't:
Microsoft issued an emergency update Sunday that updated the Windows Certificate Revocation List specifically to expire the certificate used by this exploit.
GLaDOS for President 2016! "Well here we are again. It's always such a pleasure." -- GLaDOS, 2011
To fix a security hole, you have to release software with those holes first. Maybe all the rest can't compete, because they can't add up so many huge security holes.
Finally, the source of that damn WGA update has been discovered and will be delt with...
This has been a blight in the untarnished reputation the MS has held dear with their users!
CAPTCHA = validate
Wouldn't help. Slashcode doesn't support it.
</sarcasm>
When Windows Update was introduced, the first thought to go through my mind was, "I wonder how long until someone compromises this and uses it to push out malware." It took a lot longer than I thought.
Thinking more of it, conficker could have been just a decoy doing pretty much anything but spreading sporadically keeping researchers busy looking elsewhere to shelter the real mccoy Flame.
Pretty neat stunt really. Propably not too many would have thought of it.
All the people who say "if you run windows you will get a virus" make me laugh. I have run windows OS's for 15 years and have only been infected by one virus, and that was my fault. Judgement day is coming for you Unix/linux users. It has already started for Mac users. Its just a matter of time for you. So keep believing your all safe and secure....
Only if you're a Queensryche fan.
Get thee glass eyes, and, like a scurvy politician, seem to see things thou dost not.--King Lear
If you read the summary of the article, you can deduce that a computer on your own subnet needs to be already infected before your machine can be infected.
I always have a fiber of suspicion when I update software from the Internet. Noob question: What precautions do the big distros like Fedora take to prevent "man in the middle" attacks for package updates? I ran the update tool on my new clean Fedora 17 install and there were a bzillion updates.
If this malware is part of a cyberwarfare effort by the US against Iran + Co, then isn't Microsoft - a US company - borderline committing treason by offering to patch the security hole?
Seven puppies were harmed during the making of this post.
"The number of still infected computers has shrank since the discovery of the malware, and now reaches barely above 400"
I think they're doing a fine job of fixing whatever the issue was.
Is it a bird?
Is it a plane?
NO! It's Captain Obvious! He can leap to self-evident conclusions in a single bound!
Thanks for the belly laugh, I needed that. Having a shitty day today.
Funny how when these problems arise, the government is especially silent...
But when there is someone infringing on COPYRIGHT the guns come out and they will issue international manhunts to bring the perpetrators down (even if only suspected). When there is a virus doing REAL WORLD DAMAGE, that's no biggie.
All packages are signed by Fedora or whoever the distro is, unless you turn off the gpgcheck feature then it won't install the package if it hasn't been signed. The gotcha is that if you can steal Fedoras gpg key or somehow create a collision attack, they are also screwed as well so they have the same issue.
Thanks for taking the fun out of it.
I am literally 3000 tokens away from the chaotic crossbow --Stephen
The US government has admitted to authorizing stuxnet. Now it looks like Flame is probably also a government authorized weapon.
My question is where did the money for the C&C servers come from? Those C&C domains were paid for with stolen credit cards and stolen identities. The same thing was used to purchase the VPSs used as the C&C servers. Why isn't there an outcry because the US government stole the identities and credit card numbers of private individuals to make these botnets? Where did they get these stolen identities? Did they use criminal means and buy them on the black market from other botherders? Did they just open their own files and roll the dice choosing people at random?
And then nuke it from orbit.
Oh crap. I was surprise last night when I got a Windows 7 update notification that was off the normal super Tuesday windows update. ::crosses fingers::
Iran is an Arab country now? Did anybody let them know? The rest of the comment is unfounded speculation and recycled nonsense. To everyone who modded "informative": doh!
Interesting - suggests they don't need or rely on hacked OSs to function.
So we can expect the US to take down these cyber terrorist C&C machine and reveal the evil Chinese/Russian/Iranian/Syrian controllers behind them.
This should be used to advocate Linux over Windows. Unfortunately many Linux companies too stupid to see the opportunity.
Another thing is that the only reason MS is allowed to patch such backdoorish routs is that several alternatives are already in place...
but...but...but... he used fancy words nstuff
Most Americans can't understand the differences between Persia and East Boise.
I think it may be better to say it is an attack targeted at specific regions or countries. Kaspersky had most of the module signatures in their database over 2 years ago and decided not to flag them as active malware. Most malware programs are small in size and spend a good deal of time trying to masquerade or hide itself from virus scanners. In Flames case it was a huge program using SQLLite and other normal business related applications to do the work. It was made to look like a normal business application which basically was hiding in plain sight that virus scanners determined harmless. The guys who built Flame and Stuxnet make Anonymous and other script kiddies look ridiculously stupid. As more and more applications get flagged as malware the only thing people will be able to actually run is the OS.
Of course. Americans are all idiots but somehow stil manage to lead the world in economic, military, and computer technology. It's a mystery.
See subject-line, & this -> http://www.net-security.org/malware_news.php?id=2138
Flame's massive C&C infrastructure revealed - Posted on 05.06.2012:
PERTINENT QUOTE/EXCERPT:
---
"It's interesting to mention that these machines mostly run Windows XP and Windows 7 32 bit, but none of them run Windows 7 64 bit, which seems impervious against this and most other malware."
---
* Especially when "security-hardened" as I have done for Windows NT-based systems since the early 1990's:
http://www.bing.com/search?q=%22HOW+TO+SECURE+Windows+2000%2FXP%22&go=&qs=ns&form=QBLH
(I can't be harmed by this bogus puny machination the malware making weasels make... no way, no how, not possible!)
APK
P.S.=> It's part of why I use it... apk
OpenBSD .. on Pluto..
How's the interplanetary IP stack doing on OpenBSD? ;)
The United States was designed to be a nation which has the worst of everything:
Alcohol to drink
Tobacco to smoke
Lots of meat and grease
Impossible to digest silt flour (grain size of powdered sugar) in most of their bread
Plenty of toilet paper to cover it up
and, for the money, they will convince themselves that they like it.
The US leads the world in but two things: shit and debt.
any:every:99. find anyone and everyone who knows anything. 99 percent of all have been trained to know nothing about it.
Of course I know the difference between Persians and East Boisans. Persians have the annoying tendency to say "Bro" after every other word, drive Mercedes and threaten to cut your balls off if you even look at a Persian girl. East Boisans say "Y'all" after ever other word, drive Ford F150s and fantasize about their sisters.
Greetings from LA.
If you were me, you'd be good lookin'. - six string samurai
Flame is not "Arab-centric". The tool kit exists now, and it will spread around the world. Every micro-generation has to learn the same lesson... and promptly to forget it: dump Windows. It's beyond compromised. That's why businesses and spooks like it. It defines police state software... sigh.
...Oh, wait.
OTOH, go to a network with no Windows systems, download update containing certificate revocations, and burn to CD before reinstalling and updating.
No because that was the root cert revocation that MSFT released to cancel TFA. if you are truly worried about Windows update frankly there is NO reason to run it the old fashioned way, especially when you have more than one machine as it'll just be a waste of bandwidth.
Instead just use WSUS Offline which will get the updates directly from MSFT using WGET and drop them in the folder of your choice, all nice and neat and complete with a simple .exe launcher. It can also take care of .NET, MSE updates, and MS Office from 2K3 up if you have any of those that also need updating. Its great and takes the hassle out of updating, especially on a new build but works just as well for any Windows from XP-Win 7 X64. Combine this with Ninite for third party software and frankly anybody can have a Windows system fully patched and loaded with the basics with almost zero effort.
ACs don't waste your time replying, your posts are never seen by me.
First, there are hardly any infections outside the Arab-world. (my guess is that it just takes a look at the keyboard driver in use) Going by your username you're not an Arab guy.
I doubt it looks at keyboard drivers to decide who to infect. I know a lot of people here in the US that have Arab keyboard drivers on their computers that aren't Arab, or obviously even in the Middle East. I'm one of them. Pretty much any university student studying Arabic has an Arabic keyboard downloaded for their computer. Simply looking at that would cause the malware to spread way too far, and cause way too much collateral damage if it's intended to be a targeted attack.
The only thing necessary for evil to triumph is for it to be pitted against a slightly greater evil
Perhaps, but which OS does all this malware run on?
No mystery. Numbers.
Even if the bell curve is skewed in the wrong direction (I'm not saying it is but many people seem to think so) the shear number of people means that there are plenty in the population near the top end of the curve capable of great innovation and there are so many at "reasonable average" levels such there is brawn and brain power available to make innovations work for the economy and feed back into the population to complete the cycle (overpowering the effect of the agents at the lower end of the curve and/or giving them jobs that help fuel (or at least lubricate) the economy further).
Same reason China has grown so fast in recent decades: once a chunk of that massive population was actually put to useful work (from the point of view of the economy, local and global) big things started happening.
Throwing people at a hard problem is often counter productive, but throwing people at implementing the solution to a solved problem often is, so being ahead in the numbers games can be a significant advantage.
And it is almost entirely populated by people who left Europe for these horrible things. Perhaps you have problems at home; you might see them, if you can stop staring out the window and talking about your neighbors.
amen. I'm sure there are Russian hackers right now thinking "oh no, we can't copy Flame for our own purposes because it only attacks Arab countries".
I wonder if a Flame variant is already out there, quietly waiting to do its thing after the fuss has died down a little? If Windwos Update tries to download a special certificate hotfix from mikrosoft.ru, I'd be reinstalling the entire OS.
I spent some time working in Saudi and I'd like to know how to check to see if I have have this crap on my computer. It's Wonderful that I can't check with Microsoft.
Virus updates on you.
It's the only way to be sure
sag
The climate is better in Persia and there are a lot fewer Mormons.
Some mornings it's hardly worth chewing through the restraints to get out of bed.
Maybe now customers will start listening when I tell them DO NOT UPDATE WINDOWS... More things seem to get broken doing updates than are actually fixed... One more reason to keep service packs on flash drives and external drives
Debateable/Possibly: I wouldn't use hosts for INTERNAL networks unless I used it for "failover" purposes actually. I'd rely more on ActiveDirectory Services (which is, of course, DNS dependent). I'd keep it around as a 'failsafe' then only.
Hosts are good/better, for other things... mainly online "layered security"/"defense-in-depth", better speed/bandwidth + faster resolutions of IP addresses to host-domain names.
(I've posted it here many times before, but I wouldn't rely on them solely (though they're EASY to 'migrate' to end user rigs via logon scripts for example)).
APK
P.S.=> SORT of IMPORTANT, on that note (Since you mentioned hosts):
I just picked up the C&C server list that's known so far for the "FLAME" malware here:
http://www.securelist.com/en/blog/208193540/The_Roof_Is_on_Fire_Tackling_Flames_C_C_Servers
I integrated it into my hosts file - also for my roommate who uses Windows Server 2003 32-bit...
(However/Again: I am "impervious" so far @ least, via Windows 7 64-bit as I noted here in the reply you responded to, plus the patch for this issue -> http://www.start64.com/index.php?option=com_content&view=article&id=5779:update-for-windows-7-for-x64-based-systems-kb2718704&catid=38:64bit-update&Itemid=98 )
I built a new custom hosts file using that 1st url - just for "layered-security"/"defense-in-depth" purposes (what you can't touch can't hurt you) as well as firewall rules tables for the IP addressed servers it communicates with also...
I can't "proof myself" any better than that @ this point, since my systems are always "security-hardened" anyhow... apk
why people think it's OK to break the law, so long as you're doing it with tax dollars. Forget the other threats to the country, tolerate that long enough and you're practically begging for despotism.
I find it easier and more sane, if Windows is necessary, to run linux or BSD on the iron, and install Windows to a virtual machine while network isolated, no updates, no patches, no AV, though install all necessary applications that are otherwise actually useful, Office stuff, whathaveyou, have a mounted shared folder from the VM on the actual real HD for documents, and then zip the machine before plugging in the net cable. After every use, nuke the VM, unzip a new instance, a freshly clean install in a min. or so... If there's any concern about what's in the shared doc folder, set up a cron on the *nix side to scan it once in while... or just gmail the documents folder to yourself and let Google disinfect it... but otherwise never update the WinVM, never scan it, never let your processor do anything that isn't actually work. Wash, rinse, repeat... I just never could get the hang of Tuesdays. Though your idea is neat too... presumably you get some nice bug fixes I won't... but my way takes less steps and is far more secure... theoretically, of course. Also, I bet anything my unpatched unupdated system is much much faster and more responsive, even virtualized, than your fully patched, updated, and periodically virus scanned system is running on your bare iron. Not ideal for gaming... but this would work in any office environment well, once tweeked so office-types don't keep stumbling out of the VM and into the real system, and with a cron nuking the machine every night (or every hour) when they logout.
The Admin and the Engineer
Isn't it funny how all the Linux guys can't seem to keep Windows running and clean, while everybody else doesn't seem to have a bit o' trouble? I got an old Sempron 1.8Ghz running XP that I got from a customer in a trade in around 08, that thing is running with the same install and NO BUGS, no crashes, hell other than slapping another Gb of RAM into it I haven't done a damned thing except run it damned near 24/7 as a nettop and file server and it just purrs like a kitten. The box I'm typing this on has had the same Win 7 install since RTM in Oct 09, again perfect and hassle free.
So if you wanna go all batshit? hey, knock yourself out, who am i to judge. but frankly Linux is a hell of a lot more of a PITA than Windows on its worst day. Don't take my word for it, read this fine article from one of the Red hat devs who says what linux is going through now is its "death cries" from mistakes made in the design at its conception. he says the quality will continue to go downhill simply because there is no way to QA an entire repo and have any progress and he's right.
So if you want to spend your weekends fiddling with your PC like a 73 Dodge? hey whatever floats your boat. the rest of us just use a decent AV and a tiny bit of common sense and magically we don't have any problems. Oh and before anybody responds with the usual BS please go to TM Repo and make sure you're just not repeating memes, or if you are at least give us the TM to save time, thanks.
ACs don't waste your time replying, your posts are never seen by me.
Hey Bro! Y'all getting in rain down there in Lower Alabama?
What I find hilarious is that Windows types are so used to Windows being broken they don't even notice, and without question, do all this extra work that wouldn't be necessary if the OS actually behaved properly. Its all you guys talk about "oh, I got this new defragger... this new scanner... its awesome"... its retarted is what it is. No one seems to notice that Microsoft never really fixes anything. They just make more work for you, make you work more on a system that should be working for you, and not the other way around. By now you're used to a windows install slowing to a crawl after 6 months, and probably expect that all other OS behave the same way... news flash, no other OS makes you jump through hoops just to get it to work the way it was advertised to do so. NONE. Windows has been broken probably since before you were born, so you just don't know any better.
If you are on a network that already features Flame, you should probably just wipe and reinstall now.
Otherwise, that security update was probably Microsoft's emergency blacklisting of the signing keys that were used to make the Flame components pass as MS-signed software...
The MS description of the update said it was to update the CRL list, so yes it was basically blacklisting the compromised certificate.
>the shear number
In the stress tensor, the shear is represented by two components, so there cannot be a shear number.
On the other hand, if you meant sheer, then it makes one wonder in which portion of the curve you write about you are... unless this curve is so "skewed in the wrong direction", to use your words, that it got sheared...
"Politicians and diapers must be changed often, and for the same reason."
Dumbass comment. Boise is one of the greatest cities anywhere, and you have obviously never seen it since you are trying to stereotype it like backwoods Southern. And for the record everyone there drives a Subaru Outback
We do, but just like you we have to clean crap off the machines of other people that install bonzi buddy or similar, or who are unlucky enough to get infected with a new virus before an antivirus update is available.
Interesting link there but since I deal with linux in a workplace the criticism doesn't deal with any situation I ever come across, so I can't really comment one way or another.
Microsoft backups have consistently been incomplete enough to spawn an industry of third party tools to fill the gap. NTBACKUP was nice until you wanted to recover the registry or those important status tracking documents that some users always have open. Reboot and clone with something outside the OS is still the only way to be sure despite nearly every OS that predated NT being able to do proper backups without much trouble.
Of course. Americans are all idiots but somehow still manage to lead the world at consuming china's economic, military, and computer technology. It's a mystery.
FTFY!
IF mobile network authetication is safer (or can be made safer) you could have device attached to your computer that would get a autheticity message back after it sends checksum or something throught the mobile network. 1. download update from internet 2. send checksum via attacheded device that uses mobile network and perhaps internet too 3. get verification to attached device via mobile network and to computer via internet 4. actually do the update... start building devices or do nice conversion unit for old mobile phones....
If you read the summary, the infected machine spoofs microsoft domain names. So if you are part of network that has an infected machine, using windows update directly or wgetting from microsoft would produce the same results. And WSUS uses the same key to verify the signature too.
Its just that linux users notice these things, and tend to complain about it. Windows only users tend to believe in the status quo (that how it has always been done, thats how other operating system do it too, etc), as they have not been exposed to Mac or Linux or BSD.
So which TM are you trying to invoke? is it imaginary problems kill Windows or people who "know" Linux love it or its great once you get "used" to it? If you are gonna spout the usual BS please choose the appropriate TM so we know which bullshit you are going for, thanks.
BTW I'm sorry your OS is totally pointless on the desktop, but it is. Even a tiny bit of common sense keeps Windows running bug and hassle free, hell you don't even have to PERSONALLY have any common sense, just know someone who does who can set the first run up for you, and all the decent software that is FOSS? yeah its all got a Windows port, sorry. Your OS just doesn't have any reason to exist on the desktop, its just a waste of time.
ACs don't waste your time replying, your posts are never seen by me.
I just picked up the C&C server list that's known so far for the "FLAME" malware here:
http://www.securelist.com/en/blog/208193540/The_Roof_Is_on_Fire_Tackling_Flames_C_C_Servers
I integrated it into my hosts file - also for my roommate who uses Windows Server 2003 32-bit...
You mean the servers, which had been operating for years, that went offline immediately after Kaspersky Lab disclosed the discovery of the malware’s existence last week ? http://www.kaspersky.com/about/news/virus/2012/Kaspersky_Lab_Experts_Provide_In_Depth_Analysis_of_Flames_Infrastructure
You mean the servers active for the past 4 years changing name more than 80 (known !) times (+ all the unknown ones) ?
So you were not protected (granted nobody was) while they were online and you're now protected when they are all offline ?
"This sarcasm was brought to you by the AAA".
"So you were not protected (granted nobody was) while they were online" - by Anonymous Coward on Wednesday June 06, @05:26AM (#40230157)
I was & AM, always protected - evidently you didn't read my 1st post & evidence of that much, simply by using Windows 7 64-bit (here it is again):
http://www.net-security.org/malware_news.php?id=2138
Flame's massive C&C infrastructure revealed - Posted on 05.06.2012:
PERTINENT QUOTE/EXCERPT:
---
"It's interesting to mention that these machines mostly run Windows XP and Windows 7 32 bit, but none of them run Windows 7 64 bit, which seems impervious against this and most other malware."
---
I also SECURITY-HARDEN by Operating Systems, so that is another measure of defense here also (per "industry 'best practices'" via CIS Tool & more - there's no real way INTO my machines because of it, you can see my guide & see why, I posted links to it from BING in my init. post)...
"You mean the servers active for the past 4 years changing name more than 80 (known !) times (+ all the unknown ones) ?" - by Anonymous Coward on Wednesday June 06, @05:26AM (#40230157)
Apparently you're also NOT aware that malware makers/botnet herders etc. RECYCLE host-domain names eventually (e.g. -> the RBN (Russian Business Network) was NOTORIOUS for it)...
(So, placing those into a custom hosts file is just "long-term protection" vs. that happening too...)
* There you go...
APK
P.S.=>
"This sarcasm was brought to you by the AAA" - by Anonymous Coward on Wednesday June 06, @05:26AM (#40230157)
Well, then I corrected you & your sarcasm? Well, then THAT makes you a troll (which I suspected from the outset here in your initial response also but I kept it civil)... NOW??
Well - You have to "eat your own words" now... how do they taste, flavored with the bitter taste of SELF-defeat & your foot in your mouth?? So much for YOUR 'sarcasm', eh??? LOL!
... apk your sarcasm? Well, then THAT makes you a troll (which I suspected from the outset here in your initial response also but I kept it civil)... NOW??
Well -
That is a valid argument, you didn't use my other point though, that it seems to be 'directed or activated' by a human operator.
rm -rf --no-preserve-root /
"So you were not protected (granted nobody was) while they were online" - by Anonymous Coward on Wednesday June 06, @05:26AM (#40230157)
I was & AM, always protected, simply by using Windows 7 64-bit (here it is again):
So you are protecting yourself against something that is no threat to you ? that's very clever !
"These sarcasms were brought to you by the AAA".
Lots of people say if linux or mac there was no problems ... All nuts! Linux and Mac has lots of rootkits problems, and almost nobody knows what to do and see in these systems. The imporntante is how and how fast the bugs are resolved.
Keep safe
"So you are protecting yourself against something that is no threat to you ? that's very clever !" - by Anonymous Coward on Wednesday June 06, @06:55AM (#40230479)
1st: Win7 64-bit isn't AFFECTED @ all by "flame"... see my last few posts in regards to that & it's what I use...!
Secondly: I patched vs. it, see my 1st post here -> http://it.slashdot.org/comments.pl?sid=2896653&cid=40224837
Third/Lastly: You really do NOT understand how botnets & the like work, do you?
They often RECYCLE host-domain names again - why?? They PAID FOR THEM... & by example as proof, the RBN (Russian Business Network, a notorious pack of online criminals) did that very thing + were KNOWN for it...
* Hence, why placing the botnet/malware's C&C servers into a HOSTS file is merely security vs. that last part happening... which, it probably will, since they paid for those host-domain names.
APK
P.S.=> I never hurts to use multiple layers of security, & as you can see above? I do... &, it works... so, you're obviously just another TROLL I have dispatched & defeated, using facts, as-per-my-usual... U FAIL! apk
This Fed black op - if it ever reaches the light of day - will be revealed to be as well thought out as the 'Fast and Furious' debacle of giving guns to Mexican cartels.
The US leads the world in but two things: shit and debt.
Well, we may be more full of shit than anybody else, but Europe is farther in debt than we are. Its debt is dragging the entire world's economy down.
Free Martian Whores!
It really seems to piss you off that some people actually find Linux works very well for them on the desktop. It's a bit weird the amount of time you spend obsessively attacking something you *claim* to regard as an irrelevance. Looks like you have mental problems - were you frightened by a scary picture of Linus Torvalds when you were small?
As for this: "Your OS just doesn't have any reason to exist on the desktop, its just a waste of time.", here's a good concrete reason, which is enough for me by itself (although I have plenty of other reasons) - the superb repository system, which has no equal in the OS X or Windows world. Enough said.
You would think getting a windows certificate to be almost impossible, yet they managed to get one in order to push the fake updates, how does that happen???
Isn't it funny how all the Linux guys can't seem to keep Windows running and clean, while everybody else doesn't seem to have a bit o' trouble?
I've been hit by exactly two viruses: the Michelangelo boot sector virus I carried home from work on a floppy (that would have been 15-20 years ago) and Sony's XCP trojan rootkit. Most of the last ten years I've used Linux dual-boot, right now I have one Linux box and one Win7 box that will be dual-boot soon.
The Linux box has only 750K of RAM and runs like a top and has for a few years. The notebook (1 gig RAM) used to be fast, but it's six months old and slowing (God damned ever-growing registry).
Linux is a hell of a lot more of a PITA than Windows on its worst day. Don't take my word for it, read this fine article from one of the Red hat devs who says what linux is going through now is its "death cries" from mistakes made in the design at its conception.
I never did like Red Hat, you might want to take that article with a large grain of salt. If there were "mistakes made in the design at its conception" then it would have falen apart long before now, it's twenty years old. And you're wrong about Linux being a PITA; the Linux box gives me no trouble at all, Windows continually pisses me off. Linux updates every few weeks or so, and does so with a single click and no reboots. Windows (or one of the apps running on it) wants to update every two weeks or even more often, and almost always requires a reboot.
If Linux has a quality problem, then why is it Windows that needs patched at least monthy? Why is Windows so much slower on the same computer?
So if you want to spend your weekends fiddling with your PC like a 73 Dodge?
Then Windows is the OS for you!
the rest of us just use a decent AV and a tiny bit of common sense and magically we don't have any problems.
Thoseof us on Linux and Macs need no AV and "magically" have no problems (I could be wrong about Macs, I have no recent experience with them).
Free Martian Whores!
and all the decent software that is FOSS?yeah its all got a Windows port
Awesome, last hurdle to my windows adoption finally cleared. Could you point me to the windows port of ZFS? Or, BTRFS would do too, but I would prefer ZFS.
Remote GUI login FOSS with multiple users logging on simultaneously would be nice too.
A single repository where I can update all my Software including the OS, and find new ones too, using a FOSS adminstration tool would be great.
thanks
Bingo Dictionary - Pragmatist, n. A myopic idealist.
I have always and will continue to bitch about Windows. With each new release of windows the paid-for press and bloggers gush about how "they got it right this time" and each time it turns to crap.
Now we're on the cusp of the Windows 8 release and the usual gushing is going on.
How can people be so dumb? Will they ever learn?
Purely for the lulz alone, I would have loved to been in the position to distribute a faked, nonfunctional, version of that CRL update, signed with the very certificate that it was supposed to be revoking...
Well, the main box is running Linux so I won't worry TOO much. If the Win box craps out, I can always slap Linux on it.
Free Martian Whores!
"No operating system is 'unassailable'. " - by Anonymous Coward on Wednesday June 06, @09:32AM (#40231439)
See subject & I absolutely am (for now @ least vs. this particular threat, via 4 methods (patch by MS, custom hosts file blocking of "flame"'s C&C servers that are known, & security hardening my system + the OS I use)):
PROOF? Ok!
http://www.net-security.org/malware_news.php?id=2138
Flame's massive C&C infrastructure revealed - Posted on 05.06.2012:
PERTINENT QUOTE/EXCERPT:
---
"It's interesting to mention that these machines mostly run Windows XP and Windows 7 32 bit, but none of them run Windows 7 64 bit, which seems impervious against this and most other malware."
---
* Especially when "security-hardened" as I have done for Windows NT-based systems since the early 1990's:
http://www.bing.com/search?q=%22HOW+TO+SECURE+Windows+2000%2FXP%22&go=&qs=ns&form=QBLH
RESULTS OF SUCH SYSTEM SECURITY HARDENING BY TESTIMONIAL OVER 1 YEAR BY A USER OF MY GUIDES FOR SECURITY:
To "immunize" a Windows system, I effectively use the principles in "layered security" possibles!
http://www.bing.com/search?q=%22HOW+TO+SECURE+Windows+2000%2FXP%22&go=&form=QBRE
I.E./E.G.-> I have done so since 1997-1998 with the most viewed, highly rated guide online for Windows security there really is which came from the fact I also created the 1st guide for securing Windows, highly rated @ NEOWIN (as far back as 1998-2001) here:
http://www.neowin.net/news/apk-a-to-z-internet-speedup--security-text
& from as far back as 1997 -> http://web.archive.org/web/20020205091023/www.ntcompatible.com/article1.shtml which Neowin above picked up on & rated very highly.
That has evolved more currently, into the MOST viewed & highly rated one there is for years now since 2008 online in the 1st URL link above...
Which has well over 500,000++ views online (actually MORE, but 1 site with 75,000 views of it went offline/out-of-business) & it's been made either:
---
1.) An Essential Guide
2.) 5-5 star rated
3.) A "sticky-pinned" thread
4.) Most viewed in the category it's in (usually security)
5.) Got me PAID by winning a contest @ PCPitStop (quite unexpectedly - I was only posting it for the good of all, & yes, "the Lord works in mysterious ways", it even got me PAID -> http://techtalk.pcpitstop.com/2007/09/04/pc-pitstop-winners/ (see January 2008))
---
Across 15-20 or so sites I posted it on back in 2008... & here is the IMPORTANT part, in some sample testimonials to the "layered security" methodology efficacy:
---
SOME QUOTED TESTIMONIALS TO THE EFFECTIVENESS OF SAID LAYERED SECURITY GUIDE I AUTHORED:
http://www.xtremepccentral.com/forums/showthread.php?s=672ebdf47af75a0c5b0d9e7278be305f&t=28430&page=2
"I recently, months ago when you finally got this guide done, had authorization to try this on simple work station for kids. My client, who paid me an ungodly amount of money to do this, has been PROBLEM FREE FOR MONTHS! I haven't even had a follow up call which is unusual." - THRONKA, user of my guide @ XTremePcCentral
AND
Yup, you just described a typical military system: Linux, VMware and a Windows VM. Although they do run anti-virus too.
Excuse me, but please get off my Pennisetum Clandestinum, eh!
I have seen a LOT of machines come into work lately that have major problems with illegitimate Windows updates. Typically, deleting the directory that houses the Windows Update cache files seems to fix the problems temporarily, but they always seem to go back to failing again before updates are completed.
Wonder if this could be related?
Your OS just doesn't have any reason to exist on the desktop
I have better things to spend my money on than OSes and apps. Like more hardware, guitar strings, beer... it's foolish to spend money on bottled water when it's free out of the water fountain.
I'm a nerd, but I'm not Bill Gates. I have better places to waste my money than Redmond, especially since the free OS is head and shoulders above the paid-for one.
Free Martian Whores!
Actually it says a lot about how good Windows security has become that the only attack vector now is a fake certificate, something way beyond the reach of most hackers and non-government agents. Plus the Russians, or anyone else, won't be able to use Flame's cert anyway as it isn't public, the only people who have it are MS and the creators of the virus.
const int one = 65536; (Silvermoon, Texture.cs)
SJW, n: "Someone I don't like, and by the way I'm a fuckwit" - AC
Nobody gives a shit about ZFS but server admins. Just to make this clear, pathetic as it may be that I have to spell this out for FOSSies but apparently they are too clueless to understand this, that or they know they can't win on the subject at hand so they move the goalposts so here goes: We are NOT talking about your LAMP, your cell phone OR your toaster. the majority does NOT care about these things and are NOT the subject at hand which is DESKTOPS. Go run your benches on your LAMP and post them to "Nobodygivesafuck.com" thanks.
As for repos if you are TRULY not smart enough to go to the site of the person that makes the software and download it? Then you should stay on Linux because you are too retarded to run anything else. But if downloading Adobe Flash is soooo damned difficult for you there is Ninite which is "check box, push button" and I might remind you your much touted repo system? yeah they were serving malware in the form of an infected Quake 3 for over a year and a half, sorry. And that's just one we KNOW about, not telling how many we don't because if you honestly think a handful of guys can check a revolving door of 20,000+ packages and understand even what 25% of them are doing I have some magic beans you might be interested in.
It doesn't change the fact that Linux? completely pointless on the desktop. this is why no B&Ms carry it, why both Walmart and Asus dropped it, its just pointless. The only REAL legitimate gripe, which was Windows requiring one to run as admin, was fixed half a decade ago. Even one of the Red hat engineers admits the Linux desktop model is broken but of course since that goes against your RELIGIOUS DOGMA you will probably say he's a M$ Ninja, sekretly working to attack RMS with fungicide on them nasty feets.
This is why i enjoy laughing at FOSSies, like Moonies or any other religious loonies the amount of hoop jumps they have to go through to justify their dogma in the face of logic is just as funny and entertaining. Just admit your logic follows the circle of loon already, otherwise please go back to compiling something as the vast majority of the world really DOES NOT CARE, it really really don't. Oh and guess what? Android shows what we have been saying all along, that as soon as Linux was a valuable target it would get fucked by the malware writers and surprise! android malware is all over the place. great security you have there chief, really makes it worth the bullshit and hassle. of course if you prefer that "security by obscurity" thing maybe you should go with haiku instead, that would make you REALLY leet, LOL!
ACs don't waste your time replying, your posts are never seen by me.
then it makes one wonder in which portion of the curve you write about you are...
I'm not on that particular curve as I'm not a Statesian. As school I always tested ahead of the curve (sometimes by a statistically significant amount though often by so little it was as likely to be statistical error as anything else) on just about everything, aside from spelling and mental arithmetic.
unless this curve is so "skewed in the wrong direction", to use your words, that it got sheared...
That does sound somewhat like my home town...
not quite - the current vulnerability is via the hacked certificates. The recent update blacklisted 3 certs used in windows update.
But I thought you said
and all the decent software that is FOSS?yeah its all got a Windows port
but now you are having to digress from the subject?
Ahh, you were trolling. It must be tragic having to ignore yourself, but your signature would force you to. My sympathies.
Bingo Dictionary - Pragmatist, n. A myopic idealist.
NO BALLS! Otherwise, you'd have posted using your registered 'luser' account here
I guess that's the reason why YOU post as anonymous coward all the time ?
[My setups are & Win7 64-bit currently is unassailable] for now @ least vs. this particular threat
preparing yourself an escape door anonymous coward ?
your system is NOT unassailable. NO system in the whole universe is or has ever been. Only a fool or a retard would think the opposite.
THRONKA, user of my guide @ XTremePcCentral
1. Everyone knows you were Thronka, this strawman has been debunked many times already
2. Is that a picture of you on XTremePcCentral ? mmmmh, I know what game I'm going to play with that picture. oh that and you look retarded.
"I guess that's the reason why YOU post as anonymous coward all the time ?" - by Anonymous Coward on Wednesday June 06, @02:57PM (#40235901)
See subject-line, speak for yourself. I have no need of "karma points", because I've actually done some good things in the field of computer sciences professionally & otherwise since 1994 to good acclaim in books, magazines, newspapers, technical trade show contests, commercially sold wares & more... have you?
No... lol!
---
"preparing yourself an escape door anonymous coward ?" - by Anonymous Coward on Wednesday June 06, @02:57PM (#40235901)
I don't NEED an "escape" vs. an obvious "ne'er-do-well" stalker by anonymous posts like you - you're so (to be blunt about it) STUPID, it's always easy to get the better of you!
(Heck: 3/4 the time, your blunders & reprehensible behavior does it for me!)
---
"your system is NOT unassailable." - by Anonymous Coward on Wednesday June 06, @02:57PM (#40235901)
Well, put it THIS way: I haven't had an infestation of ANY KIND since early 1996, when I first started doing the guides for security my post you replied to showed... & the results for myself, AND others? Excellent... as shown earlier!
(Have you done better? NO, lol...)
Securing a "stand-alone" (using the term loosely, meaning a single system connected to the internet & not on a LAN/WAN)? Believe-it-or-not, it's VERY simple to do, vs. doing so for a LAN/WAN setup.
---
"NO system in the whole universe is or has ever been." - by Anonymous Coward on Wednesday June 06, @02:57PM (#40235901)
Sorry - mine is: There's NO WAY for a malware maker to get inside my system, as I 'cut off' all the doors to do so, and cut off any other means (such as javascript, Java, FLASH & other plugins + the user of firewall rules tables & custom hosts files does the rest, with patching).
---
"Only a fool or a retard would think the opposite." - by Anonymous Coward on Wednesday June 06, @02:57PM (#40235901)
Sorry, not a fool or retard here (only those 'toss names' in 'effete childish retaliation' as you do), but it's a fact, that once I setup systems this way & educate the end user(s) of them? Nothing gets thru, UNLESS the user allows it (mistake).
---
"1. Everyone knows you were Thronka, this strawman has been debunked many times already." - by Anonymous Coward on Wednesday June 06, @02:57PM (#40235901)
Oh, really? Where?? You "talk a lot" but you NEVER produce any evidence for your crap... amazing.
(Seriously - LMAO, You're SO FULL OF BULLSHIT, it's hilarious... lol!)
---
"2. Is that a picture of you on XTremePcCentral ?" - by Anonymous Coward on Wednesday June 06, @02:57PM (#40235901)
If it's in my profile? Yes... I can't HELP if I am GOOD LOOKING is all... hell, I understand you asking that... why? Well, simple:
YOU WISH YOU WERE ME!
---
" mmmmh, I know what game I'm going to play with that picture" - by Anonymous Coward on Wednesday June 06, @02:57PM (#40235901)
Look, don't masturbate all over it is all I ask... I know you're one of those "sickos" online & all that, what-with your nigh constant ac stalking of myself by your ac posts, but that's where I DRAW THE LINE... lol!
APK
P.S.=> YOU are SO SIMPLE to get the better of, it's not even amusing for me anymore... lol! apk
Although they do run anti-virus too.
My understanding is its necessary to prevent the spread to other systems, not necessarily to protect the vm which is easily restorable to a clean state, but documents that are portable and may move from system to system, some of which are real and not virtual, can reak havoc. I guess what makes me nuts is the unexamined notion that anti-virus is an important fundamental part of an operating system, as though by definition, espescially when the vendor that created the entire AV economy by having a defective philosophy towards software development and defective operating system to begin with personally gets into the game with its own (initially non-free) anti-virus offering. Any Windows machine, if secured properly, will spend more processor cycles scanning for virus than doing any other single individual task. This is ridiculous. I, for one, didn't make a significant hardware investment just so I could sit around scanning for virus.
Yup, you just described a typical military system: Linux, VMware and a Windows VM
THANK YOU... This makes me feel all warm and fuzzy inside. I've been evangelizing about this method, which I suppose I came up with on my own in parallel to (at least internally, if not publically) published university (and, now I learn, unpublished military) computer security theory, since 2003. /pats self on back
The Admin and the Engineer
I've been hit by exactly two viruses
This statement, and statements like it, epitomizes the arrogance of even competant Windows admins. They always seem to assume that if they follow the security proscriptions that their systems and their ass is covered.
My suggestion is to assume the opposite: that you are always infected and have no way of detecting it! And then come up with a solution that solves this regardless of your prowess at detecting or eliminating these fucking things. Virtualizing the infectable OS inside one that is not infectable is a step in the right direction.
It's not Windows admins, btw, that are the problem, fundamentally. It is (or was mistakes made in the past yet still relevant due to the insistence upon compatibility with decades old software) a grave mistake of software design and the philosphy of software design that originated with Microsoft and lax security policies within their OS, allowing coders to develop extremely poor security habits regarding their software.
Consider that Microsoft inadvertently created the entire industry of anti-virus, and then once they recognized it as a profitable commercial space, rather than fixing the security deficiencies of the operating system itself, began themselves to compete within this commcercial space. Imagine a car manufacturer doing something like this... selling millions upon millions of cars that are defective, then instead of fixing the design or recalling the vehicles for repair, instead began to compete against the third parties that offered solutions for mitigating the defects. This would immediately make the car manufacturer a target for class action lawsuits brought by customers, and yet Microsoft has yet to see such litigation against them for selling and reselling licensing to an operating system that is, at best defective when it comes to security.
The Admin and the Engineer
"Microsoft has fixed more security holes than all the other software companies on the planet combined. "
No other company had even remotely needed to fix millions of holes. Microsoft is unique.
It's no mystery. The Chinese will sell that shit to anyone but you guys always offer the highest price.
http://en.wikipedia.org/wiki/List_of_countries_by_public_debt
http://en.wikipedia.org/wiki/List_of_countries_by_external_debt
I keep sorting the tables by their columns and watching fascinated how flags are rearranged and can't get a bloody clue... which one is the winner?
***Game Over***Insert Coin***
You are right, of course which is why I never bank nor pay bills via internet, nor have anything on the Windows box (personal info, etc) that could be useful to criminals. Also, I keep backups (that's a lesson from the University of Hard Knox; it doesn't take a cracker or virus to destroy your data, only a head crash).
For the longest time I couldn't figure out why there were so many rabid Windows fans at /., but then, I imagine a lot of folks here make some pretty good money cleaning crap out of Windows machines.
What you describe in the last paragraph is one of the many reasons I went to Linux. I need to get Linux on that notebook, if only to make networking between the two boxes easier.
Free Martian Whores!
"I guess that's the reason why YOU post as anonymous coward all the time ?" - by Anonymous Coward on Wednesday June 06, @02:57PM (#40235901)
See subject-line, speak for yourself. I have no need of "karma points"
And we don't need them either, that's why we post AC, we don't own an account. Period.
I don't NEED an "escape"
Why create one then ?
"your system is NOT unassailable." - by Anonymous Coward on Wednesday June 06, @02:57PM (#40235901)
Well, put it THIS way: I haven't had an infestation of ANY KIND since early 1996, when I first started doing the guides for security my post you replied to showed... & the results for myself, AND others? Excellent... as shown earlier!
(Have you done better? NO, lol...)
Well actually I never was infected since 1989 ... so I'm your elder by 7 years it seems. I never had flu either, doesn't mean I won't catch it some day.
"NO system in the whole universe is or has ever been." - by Anonymous Coward on Wednesday June 06, @02:57PM (#40235901)
Sorry - mine is: There's NO WAY for a malware maker to get inside my system, as I 'cut off' all the doors to do so, and cut off any other means (such as javascript, Java, FLASH & other plugins + the user of firewall rules tables & custom hosts files does the rest, with patching).
That comment is just hilarious and shows you have no idea what you're talking about. To paraphrase a renowned expert: "the only computer safe from intrusion is a computer offline, locked alone into a bunker, with the access key destroyed, powered off and even then I wouldn't bet it's actually safe".
Only a fool or a retard would think the opposite. Period.
"2. Is that a picture of you on XTremePcCentral ?" - by Anonymous Coward on Wednesday June 06, @02:57PM (#40235901)
If it's in my profile? Yes... I can't HELP if I am GOOD LOOKING is all
Good looking ? hum, to a monkey, maybe ...
" mmmmh, I know what game I'm going to play with that picture" - by Anonymous Coward on Wednesday June 06, @02:57PM (#40235901)
Look, don't masturbate all over it is all I ask...
Don't project (no pun intended) your fantasies on other dude, we are normal human beings here, not a psycho like you !
Quit stalking me by ac posts - don't you realize it's against the law?
APK
P.S.=> Sorry folks - I have this idiotic psycho-stalker pursuing me across this forums in nearly every post I make for a LONG time now, & he/she CLEARLY has ISSUES, no questions asked... apk
We are perfectly on topic, the topic is computer getting infected by malware, you claiming you are immune to everything and us counter-claiming that you're delusional, no computer is immune, such a computer *does not exist*. Period.
As for your claim of stalking: we didn't know ACs could stalk an AC, AC.
"And we don't need them either, that's why we post AC, we don't own an account. Period." - by Anonymous Coward on Thursday June 07, @11:18AM (#40244881)
Don't you really mean you STALK people by ac posts? You're only showing everyone here that's what you do & funniest part is, you haven't accomplished SQUAT in computing (funny you avoid the question I asked of you last post in the regard, & it's obvious you're nothing more than another illogical ad hominem attack attempting off-topic profanity spewing little troll, nothing more).
---
"Why create one then ?" - by Anonymous Coward on Thursday June 07, @11:18AM (#40244881)
I merely state facts, nothing more (with testimonials backing them, which you said were false? I asked you to PROVE that, & like usual? You RAN... lol!)
---
"That comment is just hilarious and shows you have no idea what you're talking about." - by Anonymous Coward on Thursday June 07, @11:18AM (#40244881)
Hmmm, see above (where I asked if you have done anything of worth noted in respected publications in books/magazines/newspapers, trade shows like MS Tech Ed, commercially sold software & more which I HAVE, You clearly, have not). You "talk alot" but have nothing to show for all your 'talk'... which explains much about you (big talking "ne'er-do-well" troll who stalks others online that you clearly are, lol).
---
"To paraphrase a renowned expert: "the only computer safe from intrusion is a computer offline, locked alone into a bunker, with the access key destroyed, powered off and even then I wouldn't bet it's actually safe"." - by Anonymous Coward on Thursday June 07, @11:18AM (#40244881)
Do you realize HOW MANY of these "experts" I've schooled? Most of them aren't even coders & thus, they only USE tools others like myself (programmers) CREATE FOR THEM TO USE, nothing more... & PhD's like Dr. Mark Russinovich have even had to change their tune, as well as Microsoft & other personnel from there also, when it came to technical debates with myself... more recently? I've proven 5 major antivirus makers WRONG on a false positive on a ware I wrote, which they retracted... so, again:
Have YOU done the same, better, or EARLIER there (or on the other fronts I noted above, & in my prior post? No, clearly, you have NOT)? Of course not - you're nothing more than a wannabe & troll... lol!
---
"Only a fool or a retard would think the opposite. Period." - by Anonymous Coward on Thursday June 07, @11:18AM (#40244881)
See above - this "fool" has SCHOOLED your FOOLS you cited or onse like them... many times.
---
"Good looking ? hum, to a monkey, maybe ..." - by Anonymous Coward on Thursday June 07, @11:18AM (#40244881)
Again - you WISH you were me... lol, no doubt about it, because you haven't even DONE ANYTHING of worth noted by others in the arena of the computer sciences, & I clearly have (probably before YOU were even born I'd wager).
---
"Don't project (no pun intended) your fantasies on other dude, we are normal human beings here, not a psycho like you !" - by Anonymous Coward on Thursday June 07, @11:18AM (#40244881)
Hey - You're the one saying you "wanted to play with my photo" like some sick petulant CHILD would... I mean, seriously:
IS THAT "THE BEST YOU'VE GOT"?
(Apparently so... because you certainly cannot show us you've even done anything anyone ever noted as "good" in the computer sciences, & yet, you see fit to "stalk me" like some PSYCHO thru these forums via ac posts? LMAO, please... you're pitiful!)
APK
P.S.=> Sorry folks - I have this psycho stalking me post-to-post on these forums, & he clearly has "issues" of somekind (mental)
"And we don't need them either, that's why we post AC, we don't own an account. Period." - by Anonymous Coward on Thursday June 07, @11:18AM (#40244881)
Don't you really mean you STALK people by ac posts? You're only showing everyone here that's what you do & funniest part is, you haven't accomplished SQUAT in computing (funny you avoid the question I asked of you last post in the regard, & it's obvious you're nothing more than another illogical ad hominem attack attempting off-topic profanity spewing little troll, nothing more).
---
"Why create one then ?" - by Anonymous Coward on Thursday June 07, @11:18AM (#40244881)
I merely state facts, nothing more (with testimonials backing them, which you said were false? I asked you to PROVE that, & like usual? You RAN... lol!)
---
"That comment is just hilarious and shows you have no idea what you're talking about." - by Anonymous Coward on Thursday June 07, @11:18AM (#40244881)
Hmmm, see above (where I asked if you have done anything of worth noted in respected publications in books/magazines/newspapers, trade shows like MS Tech Ed, commercially sold software & more which I HAVE, You clearly, have not). You "talk alot" but have nothing to show for all your 'talk'... which explains much about you (big talking "ne'er-do-well" troll who stalks others online that you clearly are, lol).
---
"To paraphrase a renowned expert: "the only computer safe from intrusion is a computer offline, locked alone into a bunker, with the access key destroyed, powered off and even then I wouldn't bet it's actually safe"." - by Anonymous Coward on Thursday June 07, @11:18AM (#40244881)
Do you realize HOW MANY of these "experts" I've schooled? Most of them aren't even coders & thus, they only USE tools others like myself (programmers) CREATE FOR THEM TO USE, nothing more... & PhD's like Dr. Mark Russinovich have even had to change their tune, as well as Microsoft & other personnel from there also, when it came to technical debates with myself... more recently? I've proven 5 major antivirus makers WRONG on a false positive on a ware I wrote, which they retracted... so, again:
Have YOU done the same, better, or EARLIER there (or on the other fronts I noted above, & in my prior post? No, clearly, you have NOT)? Of course not - you're nothing more than a wannabe & troll... lol!
---
"Only a fool or a retard would think the opposite. Period." - by Anonymous Coward on Thursday June 07, @11:18AM (#40244881)
See above - this "fool" has SCHOOLED your FOOLS you cited or onse like them... many times.
---
"Good looking ? hum, to a monkey, maybe ..." - by Anonymous Coward on Thursday June 07, @11:18AM (#40244881)
Again - you WISH you were me... lol, no doubt about it, because you haven't even DONE ANYTHING of worth noted by others in the arena of the computer sciences, & I clearly have (probably before YOU were even born I'd wager).
---
"Don't project (no pun intended) your fantasies on other dude, we are normal human beings here, not a psycho like you !" - by Anonymous Coward on Thursday June 07, @11:18AM (#40244881)
Hey - You're the one saying you "wanted to play with my photo" like some sick petulant CHILD would... I mean, seriously:
IS THAT "THE BEST YOU'VE GOT"?
(Apparently so... because you certainly cannot show us you've even done anything anyone ever noted as "good" in the computer sciences, & yet, you see fit to "stalk me" like some PSYCHO thru these forums via ac posts? LMAO, please... you're pitiful!)
APK
P.S.=> Sorry folks - I have this psycho stalking me post-to-post on these forums, & he clearly has "issues" of somekind (mental), doub
you haven't accomplished SQUAT in computing
neither did you, you're just a bragging wannabe security guru. the above shows that much. there is no such thing as a secure computer.
I merely state facts
nope, you're stating opinions. no computer is secure, fact. you think your computer is immune to any and every threat, opinion.
"To paraphrase a renowned expert: "the only computer safe from intrusion is a computer offline, locked alone into a bunker, with the access key destroyed, powered off and even then I wouldn't bet it's actually safe"." - by Anonymous Coward on Thursday June 07, @11:18AM (#40244881)
Do you realize HOW MANY of these "experts" I've schooled?
I realize that you live in some sort of fantasyland where security and school have a weird meaning, incompatible with factual reality: no computer is secure. Only a fool or a retard would think otherwise. Period.
Hey - You're the one saying you "wanted to play with my photo" like some sick petulant CHILD would...
I said play and you immediately thought "masturbate". That tells a lot about how sick of a psycho you are within your retarded mind.
Sorry folks
I don't think anyone else (except maybe for the guy signing "your precious", but that one is clearly mad at you) continued reading your garbage past the first BS post where you claimed that your computer was immune to all threats. no computer is secure.
"This single word indicates you are a tool and a retard" - by Anonymous Coward on Wednesday June 06, @09:32AM (#40231439)
FROM your 1st trolling ac post -> http://it.slashdot.org/comments.pl?sid=2896653&cid=40231439
The subject of YOUR post I just replied to is WHAT, you hypocrite? Well, let's see now, requoting it:
"Illogical ad hominem attacks from apk" - by Anonymous Coward on Wednesday June 06, @09:32AM (#40231439)
FROM the post I just replied to of yours, showing your blatant hypocrisy...
You're a hypocrite, and "pot calling the kettle black" in addition to doing it here first (see 1st quote above from your 1st trolling post here).
* Like I've said here before numerous times already: You're nothing more than a troll, that starts crap with others under ac posts, and contradicts himself constantly.
APK
P.S.=> You're also RIDICULOUSLY EASY to outwit... see the above! apk
"neither did you, you're just a bragging wannabe security guru." - by Anonymous Coward on Thursday June 07, @02:38PM (#40247695)
See my p.s. below, & the day you can show you've done MORE, better, & EARLIER too?
That is the day the "trolling likes of YOU", Mr. "ne'er-do-well" can even BEGIN to think you can speak to myself that way...
So - let's see if you can or have, shall we?? Of course, I KNOW you haven't... lol @ you.
---
"the above shows that much. there is no such thing as a secure computer." - by Anonymous Coward on Thursday June 07, @02:38PM (#40247695)
Funny, I produced testimonials http://it.slashdot.org/comments.pl?sid=2896653&cid=40232299 to the contrary as PROOF that my showing others how to "security-harden" a Windows NT-based OS (which I've been doing to decent acclaim online no less since 1997) actually DOES produce results like that... whereas all you have is unsubstantiated bullshit, lol!
(Hot air from you, nothing more...)
---
"nope, you're stating opinions." - by Anonymous Coward on Thursday June 07, @02:38PM (#40247695)
See the above - testimonials:
http://it.slashdot.org/comments.pl?sid=2896653&cid=40232299
Are NOT merely opinions, they're fact.
---
"no computer is secure, fact. " - by Anonymous Coward on Thursday June 07, @02:38PM (#40247695)
Trying to "convince yourself"? Sounds it... again, as I stated earlier:
Securing a "stand-alone" system (using the term loosely, meaning a single machine connected to the net on no internal LAN) is relatively EASY compared to security for a networked setup, especially for WANS...
---
"you think your computer is immune to any and every threat, opinion." - by Anonymous Coward on Thursday June 07, @02:38PM (#40247695)
Again - I don't just *think* it, I KNOW IT... as did others whose testimonials http://it.slashdot.org/comments.pl?sid=2896653&cid=40232299 showed that much who followed my guide to the letter for himself, his family & friends, + clients... it works.
---
"I realize that you live in some sort of fantasyland where security and school have a weird meaning, incompatible with factual reality:" - by Anonymous Coward on Thursday June 07, @02:38PM (#40247695)
Well, I am SURE you realize that anyone reading realizes you're nothing more than a stalking troll on forums who trolls by ac posts... &, as far as "fantasy"? Funny:
I'm the one with testimonials http://it.slashdot.org/comments.pl?sid=2896653&cid=40232299 , & good reviews of my security guides since 1997... how about YOU??
As per your usual, just "hot air" from you, mere b.s.!
---
"no computer is secure. Only a fool or a retard would think otherwise. Period." - by Anonymous Coward on Thursday June 07, @02:38PM (#40247695)
Still trying to "convince yourself"? Sounds it...
---
"I said play and you immediately thought "masturbate". That tells a lot about how sick of a psycho you are within your retarded mind." - by Anonymous Coward on Thursday June 07, @02:38PM (#40247695)
You're childish, and making "threats" of "playing with photos" of myself, is the act of a petulant frustrated child... nothing more.
---
"I don't think anyone else (except maybe for the guy signing "your precious", but that one is clearly mad at you) continued reading your garbage
I don't think anyone else (except maybe for the guy signing "your precious", but that one is clearly mad at you) continued reading your garbage
Oh absolutely, I wouldn't miss a single opportunity to admire my Dearest Peter making a fool of himself.
I just don't have time to waste answering his utter insanity right now, but I'll come back to play with him ... sometime.
Hi Peter, love you !
Your Precious
The US has already began returning manufacturing facilities and jobs from foreign countries. And the rate of return is increasing yearly. Rare earth elements and car component manufacturing are just a few examples of those US industries abandoning foreign manufacturing sources and going domestic. Even off shore software development is being reduced. And by the way if the US raised the tariffs on China's imports or even stopped importing China's products it would crash China's economy. China makes nothing that the US could not obtain from other foreign countries or produce domestically. Meanwhile China is importing food imports by a factor of 5 over the past 6 years from the US. They have went from a surplus to deficit economy. China is at the limit of adjusting thier currency to balance inflation and export prices. When people talk about China's growth they always use best case models that rely on China always making optimal decisions in regards to their economic policies. And those who say China owns the US don't know what they are talking about. China is investing in the US because they consider the US a safe and stable rate of return. They are not "loaning" the US money.
"Oh absolutely, I wouldn't miss a single opportunity to admire my Dearest Peter making a fool of himself." - by Anonymous Coward on Thursday June 07, @04:30PM (#40249083)
Funny that I'm not the one who can't meet the mark on a challenge... you are, lol - see the last few posts here.
---
"I just don't have time to waste answering his utter insanity right now, but I'll come back to play with him ... sometime." - by Anonymous Coward on Thursday June 07, @04:30PM (#40249083)
You've wasted enough time here already in this exchange ( & others) stalking/harassing me by your ac trolling posts.
---
"Hi Peter, love you !" - by Anonymous Coward on Thursday June 07, @04:30PM (#40249083)
No thanks...
---
"Your Precious" - by Anonymous Coward on Thursday June 07, @04:30PM (#40249083)
Ahem: Don't you mean "Your STALKER", instead?
APK
P.S.=> You KNOW you've done well on /. when you have a "fanclub" of trolls that stalk you, post to post (to the point where your previously defeated opponents in debates resort to illogical off-topic name tossing ad hominem attacks + stalking you post-to-post, as this one does to me)... apk
I'm fixing a hole where the malware gets in
To keep my mind from wandering...
from the greatest book of all time, the "tech manual for life" imo
I don't remember having read that line in the The Hitchhiker's Guide to the Galaxy ...
See subject-line & you're off-topic again like usual...
Now, you cited an alleged "security expert supposedly, but didn't provide your source OR even a quote!
However... I do in my guides & otherwise such as in replies here, & by the droves (in addition to users who've used guides of mine for securing Windows that actually DID AWAY with malware for them).
So, that said?
Well - Here's a quote from a respected enough security person in the realm of computing, in regards to TROLLS like yourself that stalk others by ac posts:
---
-----Original Message-----
From: Steven Burn
Sent: Wednesday, March 14, 2012 9:25 PM
To: 'Alexander Kowalski'
Subject: RE: Mr. Burn: On Mr. Hobbitt, clearing my app, & hosts files
lawsuits + being harassed over using them... apk
Alexander,
I don't actually get time for many sites such as slashdot anymore, but certainly see my fair share of trolls on the MyWot (Web of Trust (I'm a moderator there, and MyWot includes hpHosts in their "ratings")) and Malwarebytes forums, and you're correct - it's always either users of malicious software/sites, or the owners of such, that are doing it.
Regards
Steven Burn
I.T. Mate
www.it-mate.co.uk
---
* From our recent correspondence in emails this year...
So in his opinion & MY OWN as well by experiences here with you trolls STALKING me post-to-post? I agree, completely - you're obviously just malware making/botnet herding online scum, trying to harass me here on /. now... period.
APK
P.S.=> Funniest part here was that I KNEW you talk-the-talk, but you most certainly were unable to "walk-the-walk"!
Thus, & I knew you'd run from that because:
---
A.) You don't HAVE any worthwhile accomplishments in the computer sciences whatsoever...
that, &
B.) Backing up your b.s. stating THRONKA was me here also when I used his excellent testimonials results from following security guides I wrote, TO THE LETTER, for himself, his family & friends, AND PAYING CLIENTS also!
---
All here -> http://it.slashdot.org/comments.pl?sid=2896653&cid=40248125
b...i...b...l...e, hmmm lemme check that on google ...
oh look, a book about an imaginary friend, I understand that you, more than anyone, love it (although I don't know yet if "your precious" is from your imagination or not)
oh that and someone found out that, and I quote, "you suck at python" (sic) : http://it.slashdot.org/comments.pl?sid=2892215&cid=40241383
Again (since you avoided these points, lol, like usual, NOOB):
You cited an alleged "security expert supposedly, but didn't provide your source OR even a quote!
However... I do in my guides & otherwise such as in replies here, & by the droves (in addition to users who've used guides of mine for securing Windows that actually DID AWAY with malware for them).
So, that said?
Well - Here's a quote from a respected enough security person in the realm of computing, in regards to TROLLS like yourself that stalk others by ac posts:
---
-----Original Message-----
From: Steven Burn
Sent: Wednesday, March 14, 2012 9:25 PM
To: 'Alexander Kowalski'
Subject: RE: Mr. Burn: On Mr. Hobbitt, clearing my app, & hosts files
lawsuits + being harassed over using them... apk
Alexander,
I don't actually get time for many sites such as slashdot anymore, but certainly see my fair share of trolls on the MyWot (Web of Trust (I'm a moderator there, and MyWot includes hpHosts in their "ratings")) and Malwarebytes forums, and you're correct - it's always either users of malicious software/sites, or the owners of such, that are doing it.
Regards
Steven Burn
I.T. Mate
www.it-mate.co.uk
---
* From our recent correspondence in emails this year...
So in his opinion & MY OWN as well by experiences here with you trolls STALKING me post-to-post? I agree, completely - you're obviously just malware making/botnet herding online scum, trying to harass me here on /. now... period.
Funniest part here was that I KNEW you talk-the-talk, but you most certainly were unable to "walk-the-walk"!
Thus, & I knew you'd run from that because:
---
A.) You don't HAVE any worthwhile accomplishments in the computer sciences whatsoever... lol!
that, &
B.) Backing up your b.s. stating THRONKA was me here also when I used his excellent testimonials results from following security guides I wrote, TO THE LETTER, for himself, his family & friends, AND PAYING CLIENTS also!
---
All here & YOU "RAN" FROM IT, like usual, lol -> http://it.slashdot.org/comments.pl?sid=2896653&cid=40248125 you're correct - it's always either users of malicious software/sites, or the owners of such, that are doing it.
APK
P.S.=> Unlike YOU: After all - ANY FOOL can use prebuilt functions.
(That's NOT programming, it's using what OTHERS WROTE for you to merely USE... unlike my writing my own is... )
* I only learned Python last year, and only used it for around 2-3 months... WHY? Limited...
(It's just cannot do what C/C++ &/or Delphi can (period), but it's useful for SOME things, like most programming languages are, in niches!)
Then again, that's make sense for a LIMITED NOOB like yourself... lol! See above - you can't even SHOW YOU'VE DONE ANYTHING OF NOTE IN THE COMPUTER SCIENCES ARENA... lol! Zero, nada, squat on YOUR part... lol! apk
"Rinse, Lather, & REPEAT", troll -> http://it.slashdot.org/comments.pl?sid=2896653&cid=40256247
(You also show that YOU can't *think* for yourself using GOOGLE... lol!)
* You've merely showed us you haven't accomplished a THING in computing in the link above & others here, lol - &, THAT?
That makes you just another "big-talking" (but done nothing) armchair QB "noob" stalker troll, nothing more...
(After all - what would accomplishing ZERO ON YOUR PART indicate?)
APK
P.S.=> Like Mr. Steven Burn of hpHosts/malwarebytes said: YOU, & those LIKE you, merely ac trolls on forums that stalk others who HAVE DONE WELL IN COMPUTING? You're malware maker trollish stalking scums, nothing more... mere "ne'er-do-wells", lol! apk
And? It does, which is why there is no damned point in Linux on the desktop. Firefox, gimp, Libre office, all the software other than server shit that nobody gives a fuck about but server nerds is already on windows.
Tell you what sparky, you name me ONE good reason, just one mind you, why ZFS would be useful on a consumer desktop. just one. you won't be able to answer that because there isn't one, its whole function is SERVER fault tolerance and to allowing the pooling of drives, both things that might be nice for your LAMP stack but completely fucking pointless on the desktop.
But if you want to pretend that everyone needs a LAMP stack, that is your business, but considering the FOSSies have had 20 damned years+ now and are still craptastic as far as the numbers go and in fact have started declining, which is even more telling as W3 schools is a nerd heavy site and even THEY aren't seen any growth, well you can't blame the OEMs and everyone else from simply not giving a crap.
ACs don't waste your time replying, your posts are never seen by me.
Irrelevant, Mr Troll.
and all the decent software that is FOSS?yeah its all got a Windows port
If you are saying ZFS is not "decent", I have no more hopes of sanity from you.
Else, you are contradicting yourself.
Bingo Dictionary - Pragmatist, n. A myopic idealist.
You really need some serious anger management therapy and some reality injected into your life.
Struck a nerve with that one, eh? Look @ your reaction: Says it all... lol!
(I must have... & you obviously haven't & CAN'T do the same, just as you couldn't show you've done a DAMN THING worth noting in the computer sciences arena, lol... Yes, only using what others wrote FOR YOU TO USE, vs. myself creating my OWN api's/functions/methods, showing who "sucks at Python" lol - funniest part is, I only used it a couple months but stopped since IT IS LIMITED compared to C/C++ & Delphi (limited just like you apparently, lol))
* Which, of course, COMPLETELY EXPLAINS why you'd have to "run" from the questions & challenge I put to you here too -> http://it.slashdot.org/comments.pl?sid=2896653&cid=40248125
APK
P.S.=> You're completely off-topic troll - but it WAS nice turning your b.s. around on you, & thus, eliciting your "ReAcTiOn" now, lol - you're VERY EASY to "get a rise" out of, just by "pushing your buttons" (with the truth, of course)... apk
you were the one that went off-topic by not answering this perfectly on-topic note: http://it.slashdot.org/comments.pl?sid=2896653&cid=40245367
and you're the one whose obvious failure at programming has been shown here: http://it.slashdot.org/comments.pl?sid=2892215&cid=40241383
yes, you've been pwned hard and shown contradicting yourself ridiculously here, between your claim of not using internal python functions (most probably because you didn't even bother reading the doc) and you using print(). My guess is that in version 3 of your lame script you won't use print() anymore but will have implemented your own inferior version (hey you could call it "echo()")
I suppose that in C++ you don't use SLT either but implement your own map, vector, string and whatnot ?
you're certainly one of the worst code writer I've ever seen.
Beg to differ - Funny code I WRITE MYSELF (unlike you) works, eh? Some "failure", lol...
Additionally - It works well enough to do things YOU have never done, & never will (see below, + "Rinse, Lather, & Repeat")... or, you'd have shown such deeds to your name/credit by now, & YOU can't... lol!
* Face it - You're just not good enough to do that small partial list (certainly NOT BEFORE I did either OR MORE OF THEM), & it shows.
APK
P.S.=> IT's been a pleasure making you "ReAcT", but this one ALWAYS "does the job" even moreso:
So, when you've managed to do MORE, BETTER, & EARLIER of what I have below from a TINY ONLY PARTIAL LIST of some of my "favorites"? Then, you can talk:
"My Name is Ozymandias: King of Kings - Look upon my works, ye mighty, & DESPAIR..."
----
Windows NT Magazine (now Windows IT Pro) April 1997 "BACK OFFICE PERFORMANCE" issue, page 61
(&, for work done for EEC Systems/SuperSpeed.com on PAID CONTRACT (writing portions of their SuperCache program increasing its performance by up to 40% via my work) albeit, for their SuperDisk & HOW TO APPLY IT, took them to a finalist position @ MS Tech Ed, two years in a row 2000-2002, in its HARDEST CATEGORY: SQLServer Performance Enhancement).
WINDOWS MAGAZINE, 1997, "Top Freeware & Shareware of the Year" issue page 210, #1/first entry in fact (my work is there)
PC-WELT FEB 1998 - page 84, again, my work is featured there
WINDOWS MAGAZINE, WINTER 1998 - page 92, insert section, MUST HAVE WARES, my work is again, there
PC-WELT FEB 1999 - page 83, again, my work is featured there
CHIP Magazine 7/99 - page 100, my work is there
GERMAN PC BOOK, Data Becker publisher "PC Aufrusten und Repairen" 2000, where my work is contained in it
HOT SHAREWARE Numero 46 issue, pg. 54 (PC ware mag from Spain), 2001 my work is there, first one featured, yet again!
Also, a British PC Mag in 2002 for many utilities I wrote, saw it @ BORDERS BOOKS but didn't buy it... by that point, I had moved onto other areas in this field besides coding only...
Being paid for an article that made me money over @ PCPitstop in 2008 for writing up a guide that has people showing NO VIRUSES/SPYWARES & other screwups, via following its point, such as THRONKA sees here -> http://www.xtremepccentral.com/forums/showthread.php?s=ee926d913b81bf6d63c3c7372fd2a24c&t=28430&page=3
It's also been myself helping out the folks at the UltraDefrag64 project (a 64-bit defragger for Windows), in showing them code for how to do Process Priority Control @ the GUI usermode/ring 3/rpl 3 level in their program (good one too), & being credited for it by their lead dev & his team... see here -> http://ultradefrag.sourceforge.net/handbook/Credits.html or here http://sourceforge.net/tracker/?func=detail&aid=2993462&group_id=199532&atid=969873
AND lastly: http://g-off.net/software/a-python-repeatable-threadingtimer-class where I got other programmer's work WORKING RIGHT (in PyThon no less, which I just started learning only 2 week ago no less) by showing them how to use a "Dummy Proxy Function" as I call it, to make a RepeatTimer class (Thread sub-class really) to take PARAMETERIZED FUNCTIONS, ala:
def apkthreadlaunch():
getnortonsafeweb(sAPKFileName = "APK_1_NortonSafeWeb360Extracted.txt".rstrip())
a =