Re: MS04-011 Status ?
From: Bill Sanderson (Bill_Sanderson_at_msn.com.plugh.org)
Date: 04/23/04
- Next message: Pegasus \(MVP\): "Re: recycle bin, scheduled tasks, and sound problems"
- Previous message: anonymous_at_discussions.microsoft.com: "Re: recycle bin, scheduled tasks, and sound problems"
- In reply to: BeamGuy: "Re: MS04-011 Status ?"
- Messages sorted by: [ date ] [ thread ]
Date: Fri, 23 Apr 2004 17:41:41 -0400
I only see ZoneAlarm occasionally on a customer machine. I would lock it
down as much as possible--which may well not be the defaults.
The ASN.1 vulnerability may not be representative, but there were enough
others that I didn't want to dig through the whole list.
"BeamGuy" <nobody@SPAM.com> wrote in message
news:%2339KT3KKEHA.1144@TK2MSFTNGP12.phx.gbl...
> I'm running windows 2000 pro with the free ZoneAlarm firewall installed.
> Should the default zonealarm settings be ok?
>
>
> "Bill Sanderson" <Bill_Sanderson@msn.com.plugh.org> wrote in message
> news:OUDemhKKEHA.2660@TK2MSFTNGP09.phx.gbl...
>> This patch has a rather long list of separate vulnerabilities.
>>
>> When I check the vuln details of at least one--ASN.1, the workarounds
>> section reads:
>>
>> None.
>>
>> If I were running Windows XP SP2's firewall, I'd set it to the locked
>> setting--no exceptions.
>>
>> If you can do that to your software firewall, I think I'd feel reasonably
>> safe--that's the kind of setting which is appropriate on a shared
>> ethernet
>> in a public place, anyway.
>>
>>
>> "BeamGuy" <nobody@SPAM.com> wrote in message
>> news:%23FrdzZKKEHA.2688@TK2MSFTNGP10.phx.gbl...
>> > Should I assume that a good software firewall would protect me when I
>> > plug
>> > my
>> > laptop into the hotel high speed internet portal tommorrow?
>> >
>> >
>> > "Bill Sanderson" <Bill_Sanderson@msn.com.plugh.org> wrote in message
>> > news:%23gkXGWKKEHA.2680@TK2MSFTNGP11.phx.gbl...
>> >> FWIW, there is a publicly available attack script available for this
>> >> vulnerability now. The likelyhood is that such a script may enable a
>> >> simple
>> >> modification to an existing worm to use this vulnerability in the near
>> >> future.
>> >>
>> >> "Jim Matthews" <jmweb@comcast.net> wrote in message
>> >> news:%23l6bwpJKEHA.3216@tk2msftngp13.phx.gbl...
>> >> > Ok - I held off on installing these patches, and approving them for
>> >> > installation on my consultant's (remote) laptops because of the
>> >> > problems
>> >> > noted in this group and elsewhere.
>> >> >
>> >> > Is there any response or change from MS ?
>> >> >
>> >> > I know - I can't afford to have a successful attack - but I
>> >> > certainly
>> >> > cannot
>> >> > have one of these laptops "crash and burn" - so that seems the
>> >> > lesser
>> >> > risk.
>> >> >
>> >> > Any guidance/news on this is greatly appreciated
>> >> >
>> >> > JM
>> >> >
>> >> >
>> >>
>> >>
>> >
>> >
>>
>>
>
>
- Next message: Pegasus \(MVP\): "Re: recycle bin, scheduled tasks, and sound problems"
- Previous message: anonymous_at_discussions.microsoft.com: "Re: recycle bin, scheduled tasks, and sound problems"
- In reply to: BeamGuy: "Re: MS04-011 Status ?"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
