"The only two services that really NEED external ports are ssh and X if you want to have the convenience of X forwarding, though you can tunnel it through ssh as you should."
You don't have to have SSH on (unless you want to remotely login), and X can be set up to not listen to any ports (or only on 127.0.0.1).
"So then, why do I need SMB ports open if I am not sharing files?"
You may not be sharing any files, but Windows is. Windows creates a few shares by default: $ADMIN, $C (and every other hard drive too), $IPC. There may be others too. You can manually disable sharing of the root of the drives, but when ever the netbios service is restarted (it crashing, reboot, etc), it automatically reshares all those shares.
If you have APT installed you can just set up a cron job just on their system to run 'apt-get -y dist-upgrade'. I know APT runs on Debian and most Red Hat distros (including the Fedoras). I bet most every other package manager can do that too, like up2date, emerge, the thing that SuSE runs, etc.
I say Avid should release a patch and fix the problem with their software (if its because they hacked together the redraw system).
Though breaking a couple of programs to drastically limit the spread of worms across the internet is something I could live with, though I would be suspicious if all the programs were competitors of MS
You act like there isn't a thing called 'the internet' where you can find loads of information about anything.
Of course non-techie people don't seem to be able to use the internet, like they can't seem to be able to use Google to find information, for example they write stuff like 'what are the security concerns with using ProductX' instead of something like 'security ProductX' (yeah I know thats a horrible example, but I can't remember what the person wrote, I just remember laughing)
When I first installed Linux (around when I was 13, I still got the Mandrake 7.1 box sitting on my desk), I often ran in root, though that box couldn't connect to the Internet, and I installed it to learn and experiment with it.
I ended up going back to Windows till last September (when I got an ethernet connection and RedHat 9 came out)
What hes saying is that most Windows users DON'T patch. And its the truth. Everyone I know that uses only uses Windows (and not say, has a business in running a hosting service on a RedHat Linux server) does NOT install any updates. He didn't say anything about Mac users.
BTW: What linux user have you heard saying "lunix d00dz"???
I use APT for RPM (Fedora Core 2), so around 99% (actually far more than that) of my programs are from RPM and are update w/ dist-upgrade. And about every single program I have thats from source that wouldn't be updated by APT is a program thats generally VERY far from anything to do w/ security. Right now I don't think I have any from source except for Apollon & giFT, which once I finish these downloads I'm going to 'make uninstall' both of them and install the version that just came into the APT respiratory.
APT also updates my kernel for me, though I don't switch to using a new one all too often since I have to reinstall the NVidia drivers (AH! theres one! though thats not really from source)
Actually, the 'swastika' was a Buddhist symbol (which looks like a reverse swastika). I think this is what your talking about (or was there ANOTHER ww2 related thing???)
Hmm... on IE that moves the window part way off the screen so you can't get to the close button, pops up several pop-ups that fly around the screen... on Mozilla it moves the main window every few seconds (really easy to close) and on Konqueror it does nothing at all... Gotta love Konqueror's ability to disable Resizing Windows, Moving Windows, Focusing on Windows, and Modifying status bar text. Also I love the pop-up blocker (allow, deny, ask, smart)... Hmm... apparently IE also tried to download a file...
What exactly is your point? Mozilla sucks if your an advertiser that makes his living off of people seeing pop ups?
If you mean just to access the filesystem, there is a driver for windows to allow you to read and partially write to Ext2 filesystem, and to read Ext3. There probably are others out there, but I don't know of any that are highly mature.
Just because you may not of heard of one doesn't mean they don't exist.
(I've rewritten this post 5 different ways now, this seems like the most polite way...)
I've had so many registry curruptions its not even funny any more.
On a saturday I fixed one of my friends 98 boxes (read, formated, reinstalled everything). By sunday night the box was already loaded with so much spyware it was almost useless (and I had stayed till about 9 on saturday playing around with the GIMP with her).
I have 2 computer, one is a Dell Inspiron 5150 laptop which I installed Fedora Core 1 on (and is now somewhere around Fedora Core 2 since I've been using the unstable branch for updates). My other computer is a custom built. It has Windows XP on it. So far I've had that one for almost 4 years, every now and then being upgraded. So far I've had to reinstall Windows on it about 4 times since I got my 100 GB hard drive for it (which was around 6 months ago). On my laptop which is also 6 months old I've only reinstalled Fedora once because I wanted to test out Debian but decided I liked Fedora more so I switched back to it.
Recently my copy of XP has started its death phase (after experiencing it so many times I can sense when its close to dieing). I now just get random BSOD for no reason, often it happens when im not doing anything. My Laptop is running flawlessly (right now I'm on it, while ripping the 7th Evangelion DVD in the background).
I would never use my XP computer if it wasn't for games (its rather hard to play FPS and RTS using my laptop's pad mouse, I should get a USB mouse sometimes so it will be easier).
I've been using Linux since last september, and I'm loving everything about it.
Slashdot Mirror
"The only two services that really NEED external ports are ssh and X if you want to have the convenience of X forwarding, though you can tunnel it through ssh as you should."
You don't have to have SSH on (unless you want to remotely login), and X can be set up to not listen to any ports (or only on 127.0.0.1).
"So then, why do I need SMB ports open if I am not sharing files?"
You may not be sharing any files, but Windows is. Windows creates a few shares by default: $ADMIN, $C (and every other hard drive too), $IPC. There may be others too. You can manually disable sharing of the root of the drives, but when ever the netbios service is restarted (it crashing, reboot, etc), it automatically reshares all those shares.
If you don't use X, don't run in runlevel 5, use runlevel 3. Simple, eh?
I called them up about a problem when I first got XP, they said they would call back, and never did.
HA! Then they lose all the money they can get for making a program that keeps the Anti-Virus safe!
It wasn't on a Linux computer. At ONE POINT in time it was on a Linux computer. The file list is proof of that.
He was joking... I wasn't sure till the very end (even then I wasn't totally)
Thats why you password protect LILO... well there goes your excuse for an arguement.
'local exploits' just means they have shell access (or similar level), not that they are SITTING at the computer.
If you have APT installed you can just set up a cron job just on their system to run 'apt-get -y dist-upgrade'. I know APT runs on Debian and most Red Hat distros (including the Fedoras). I bet most every other package manager can do that too, like up2date, emerge, the thing that SuSE runs, etc.
I got a Mandrake CD from 2000 sitting right on my desk (the copyright is from 2000, thats how I know).
I say Avid should release a patch and fix the problem with their software (if its because they hacked together the redraw system).
Though breaking a couple of programs to drastically limit the spread of worms across the internet is something I could live with, though I would be suspicious if all the programs were competitors of MS
You act like there isn't a thing called 'the internet' where you can find loads of information about anything.
Of course non-techie people don't seem to be able to use the internet, like they can't seem to be able to use Google to find information, for example they write stuff like 'what are the security concerns with using ProductX' instead of something like 'security ProductX' (yeah I know thats a horrible example, but I can't remember what the person wrote, I just remember laughing)
It _could_ run the installer w/ a lower priority, so it shouldn't screw up anything else (in theory)
When I first installed Linux (around when I was 13, I still got the Mandrake 7.1 box sitting on my desk), I often ran in root, though that box couldn't connect to the Internet, and I installed it to learn and experiment with it.
I ended up going back to Windows till last September (when I got an ethernet connection and RedHat 9 came out)
What hes saying is that most Windows users DON'T patch. And its the truth. Everyone I know that uses only uses Windows (and not say, has a business in running a hosting service on a RedHat Linux server) does NOT install any updates. He didn't say anything about Mac users.
BTW: What linux user have you heard saying "lunix d00dz"???
I use APT for RPM (Fedora Core 2), so around 99% (actually far more than that) of my programs are from RPM and are update w/ dist-upgrade. And about every single program I have thats from source that wouldn't be updated by APT is a program thats generally VERY far from anything to do w/ security. Right now I don't think I have any from source except for Apollon & giFT, which once I finish these downloads I'm going to 'make uninstall' both of them and install the version that just came into the APT respiratory.
APT also updates my kernel for me, though I don't switch to using a new one all too often since I have to reinstall the NVidia drivers (AH! theres one! though thats not really from source)
Actually, the 'swastika' was a Buddhist symbol (which looks like a reverse swastika). I think this is what your talking about (or was there ANOTHER ww2 related thing???)
i pronounce it like that... or at least i try, its not really that easy
"P2P solution"
"So, what is needed is a browser plugin that communicates with a central server."
A P2P solution has no central server (except possibly to say where another user is, redirecting a client)
"I would assume that Camino and Firefox use the same engine for this, as they're both based on Mozilla, but I could be wrong there."
He didn't say Safari was based on Mozilla, only Camino and Firefox
Hmm... on IE that moves the window part way off the screen so you can't get to the close button, pops up several pop-ups that fly around the screen... on Mozilla it moves the main window every few seconds (really easy to close) and on Konqueror it does nothing at all... Gotta love Konqueror's ability to disable Resizing Windows, Moving Windows, Focusing on Windows, and Modifying status bar text. Also I love the pop-up blocker (allow, deny, ask, smart)... Hmm... apparently IE also tried to download a file...
What exactly is your point? Mozilla sucks if your an advertiser that makes his living off of people seeing pop ups?
If you mean just to access the filesystem, there is a driver for windows to allow you to read and partially write to Ext2 filesystem, and to read Ext3. There probably are others out there, but I don't know of any that are highly mature.
Just because you may not of heard of one doesn't mean they don't exist.
(I've rewritten this post 5 different ways now, this seems like the most polite way...)
"So it will probably end up being more heavyweight than XP home&pro.."
combined... then cubed
I've had so many registry curruptions its not even funny any more.
On a saturday I fixed one of my friends 98 boxes (read, formated, reinstalled everything). By sunday night the box was already loaded with so much spyware it was almost useless (and I had stayed till about 9 on saturday playing around with the GIMP with her).
I have 2 computer, one is a Dell Inspiron 5150 laptop which I installed Fedora Core 1 on (and is now somewhere around Fedora Core 2 since I've been using the unstable branch for updates). My other computer is a custom built. It has Windows XP on it. So far I've had that one for almost 4 years, every now and then being upgraded. So far I've had to reinstall Windows on it about 4 times since I got my 100 GB hard drive for it (which was around 6 months ago). On my laptop which is also 6 months old I've only reinstalled Fedora once because I wanted to test out Debian but decided I liked Fedora more so I switched back to it.
Recently my copy of XP has started its death phase (after experiencing it so many times I can sense when its close to dieing). I now just get random BSOD for no reason, often it happens when im not doing anything. My Laptop is running flawlessly (right now I'm on it, while ripping the 7th Evangelion DVD in the background).
I would never use my XP computer if it wasn't for games (its rather hard to play FPS and RTS using my laptop's pad mouse, I should get a USB mouse sometimes so it will be easier).
I've been using Linux since last september, and I'm loving everything about it.