So.. now you're saying you can block botnets if you use hosts + windows firewall + patches + security hardening + don't run executables + scan USB drives + your "security guide & program" (whatever that means)?
YOU PROVIDED THE PEFECT EXAMPLE with your doubtless STOLEN Python code example - UAC + WFP + Windows Firewall cuts those off, detecting them, BEFORE THEY CAN DO DAMAGE, stupid!
I KNEW YOU'D TRY THAT CRAP... looking for "edge cases"!
(... & how did that get in IN THE FIRST PLACE? You didn't mention that a USER HAS TO GET IT FIRST, stupid... things in my security guide using "layered-security"/"defense-in-depth" cuts off those avenues!)
So.. now you're saying you can block botnets if you use hosts + windows firewall + patches + security hardening + don't run executables + don't plug in USB drives? Hosts FTW! U R rock solid security!
Windows Firewall can block by IP (TCP/UDP), port, vs. *any* threat really w/ hosts combined with it!
Yeah! That's how they blocked the Ramnit botnet! OH wait, once that malware is installed it "will disable a series of Windows security features (Windows Defender, Windows Firewall, User Account Control), Windows Update, and remove the ability to install other antivirus software." Windows firewall FTW!
You've spent HOURS 'scouring the net', days actually, looking for *ANYTHING* you can stooge, to make that "not true"
Nope, took a 3-minute Google search to find that. Kinda like the Python code that bypasses your hosts file!
I guess you aren't protected from 4 lines of Python, though, huh?
import dns.resolver
resolver = dns.resolver.Resolver(configure=False) resolver.nameservers = ['8.8.8.8'] ans = resolver.query('example.com', 'A')
They stop it cold . They'd 1st be able to cut it off running @ all, & secondly, tunneled or not, I'd imagine it travels over IP (TCP or UDP) anyway, or by port, & could easily be stalled... so could communique w/ its rogue DNS + C&C's...
You seem confused. So are you saying the hosts file would block the DNS request from that Python snippet?
Heck - Even Windows' native firewall would (does when it doesn't recognize an application & warns you about them - & only a FOOL would let something run they didn't know)... get it? Good.
Oh, now you're saying the windows firewall would block it. So hosts would not.
I'm actually MORE like "The LORD of Hosts" https://answers.yahoo.com/ques... [yahoo.com] with rank after rank of protective power I can summon @ a word: Hosts!
I guess you aren't protected from 4 lines of Python, though, huh?
import dns.resolver
resolver = dns.resolver.Resolver(configure=False) resolver.nameservers = ['8.8.8.8'] ans = resolver.query('example.com', 'A')
Thanks for the Windows IT Pro link - it's hilarious! That will make for some great shitter reading later.
I don't actually see a debate with Russinovich, though. He wrote an article, and you left comments. I don't think he's aware you exist.
Your apps aren't being used. It's difficult to even find a current download for your garbage while a professional like Dr. Russinovich has a website of his own: http://www.sysinternals.com/
Oh, you think you schooled the guy who started sysinternals.com? Bahahahhahaa
In my college Earth Science classes, our professor taught us that there is no doubt the Earth is slowly warming. The only argument is over whether it's natural or due to mankind's effects on the environment.
I should have told him that mi, Slashdot's resident political scientist/economist/earth scientist has it all figured out, and that's not true.
I've apparently smoked your OpenDNS folks too via application based firewalls [...] Not a 1st for me... I've done in the likes of folks from MS (VP of their Windows Client Performance Division, Dr. Mark Russinovich, & others of that ilk...
Yeah, I'm sure you schooled a PhD in an argument, and understand security better than OpenDNS.
Go for it: BarbaraHudson made that mistake & couldn't do it! You can't either...
Uh, do what?
Whoever you referred to is an IMBECILE of the highest order if they don't know that (& I won't look @ a PDF you point to, no way, can't trust what you put out after all your crap I caught you in here consolidated -> http://it.slashdot.org/comment... )
The PDF I linked is a whitepaper hosted by OpenDNS. You tried to cite OpenDNS earlier as a supporter of hosts files, but they work at the network level.
Slashdot Mirror
There aren't any links to security guides in that post - just links to more slashdot comments. Are you embarrassed of your shitty "security guide?"
Sorry, the link must be buried under verbal diarrhea. Where is it?
What security guide?
So.. now you're saying you can block botnets if you use hosts + windows firewall + patches + security hardening + don't run executables + scan USB drives + your "security guide & program" (whatever that means)?
Hosts FTW! U R rock solid security!
Uh, no, the malware disables all that. When a PC has been infected, the malware will disable a series of Windows security features (Windows Defender, Windows Firewall, User Account Control), Windows Update, and remove the ability to install other antivirus software.
So.. now you're saying you can block botnets if you use hosts + windows firewall + patches + security hardening + don't run executables + don't plug in USB drives? Hosts FTW! U R rock solid security!
Yeah! That's how they blocked the Ramnit botnet! OH wait, once that malware is installed it "will disable a series of Windows security features (Windows Defender, Windows Firewall, User Account Control), Windows Update, and remove the ability to install other antivirus software." Windows firewall FTW!
Nope, took a 3-minute Google search to find that. Kinda like the Python code that bypasses your hosts file!
Cool! I hadn't heard of an Android botnet. Is that why the windows firewall doesn't block botnet c&c traffic?
If the windows app firewall is so effective, how are there huge botnets of windows malware?
You seem confused. So are you saying the hosts file would block the DNS request from that Python snippet?
Oh, now you're saying the windows firewall would block it. So hosts would not.
mi just hates the Earth because black people live there.
I guess you aren't protected from 4 lines of Python, though, huh?
Are you really in your 50s?
Ha, yeah right. If you did, you would have already bragged about it.
People don't have to jump through your ridiculous hoops to prove the Earth is generally warming.
What's your business?
Wow, sounds like you're pretty sore at how successful Russinovich is.
Thanks for the Windows IT Pro link - it's hilarious! That will make for some great shitter reading later.
I don't actually see a debate with Russinovich, though. He wrote an article, and you left comments. I don't think he's aware you exist.
Oh, you think you schooled the guy who started sysinternals.com? Bahahahhahaa
In my college Earth Science classes, our professor taught us that there is no doubt the Earth is slowly warming. The only argument is over whether it's natural or due to mankind's effects on the environment.
I should have told him that mi, Slashdot's resident political scientist/economist/earth scientist has it all figured out, and that's not true.
So, you want me to track down a Microsoft executive to debate you anonymously in a Slashdot forum? No.
I don't see any discussion at that link, just more verbal diarrhea. Where is Russinovich?
Deny what?
Haha, real DNS servers don't check /etc/hosts.
Also, looked like that VP told you "Slashdot anonymous posts are most definitely not the proper channels."
Yeah, I'm sure you schooled a PhD in an argument, and understand security better than OpenDNS.
facepalm
Uh, do what?
The PDF I linked is a whitepaper hosted by OpenDNS. You tried to cite OpenDNS earlier as a supporter of hosts files, but they work at the network level.