[Am-info] BBC's GO Digital program

Geoffrey esoteric@3times25.net
Mon, 06 May 2002 10:25:18 -0400 

John Poltorak wrote:
> On Mon, May 06, 2002 at 09:51:42AM -0400, Geoffrey wrote:
> 
>>John Poltorak wrote:
>>
>>
>>>If I start up OS/2 and connect to the Internet and just start browsing 
>>>using Netscape, I have very little, if any, chance of being hacked.
>>>
>>Note, your statement was absolute, not 'very little.'
>>
> 
> Where was this 'absolute' statement?

How about the statement below?  'AFAIAC my system is immune..'

>  
> 
>>>AFAIAC my system is immune and I don't need to do anything specific like 
>>>run the latest Anti-virus software to make it so. Neither do I need to 
>>>spend any time apply daily Microsoft patches the plug the security holes.
>>>
>>Nothing personal, but then you are being quite foolish.  I have two M$ 
>>OS's that periodically run on my network.  They are far removed and 
>>protected from the internet by my firewall and ids setup.  Even if they 
>>were not on this network, I would still have my firewall and ids in 
>>place.  Don't think for a minute that crackers are only focused on M$ 
>>OS's.  I guarantee you there are some out there looking for OS/2 
>>exploits, 
>>
> 
> Have you ever come across any OS/2 exploits?

http://www.kb.cert.org/vuls/id/890128

The Lotus Domino Web Server contains a flaw that could be exploited to 
cause a denial-of-service situation on the Windows and OS/2 Platforms.

>>>Of course, I could be being very complacent, so please tell me what 
>>>measures I need to be taking to keep the hackers at bay.
>>>
>>A firewall and an ids, particuliarily if you are on the internet for 
>>extended time or have an 'always' on connection (dsl, cable..)
>>
> 
> 
> I have had systems connected permanently to the Internet for two years now 
> and am not aware of any problems I've suffered.

Yeah, and you can walk across the street blind folded 100s of times 
without getting hit by a car...  Hmmm, not aware.... hmmmm....

> Setting up a firewall is something I'm looking at, but that's only to 
> avoid certain ports being detected so nuisances don't get attracted. I 
> don't feel in danger from them.

Ah, so you do feel some exposure..

> 
> BTW what do you mean by IDS?

Intrusion detection system.

> 
> That's a politician in this part of the world.

-- 
Until later: Geoffrey		esoteric@3times25.net

I didn't have to buy my radio from a specific company to listen
to FM, why doesn't that apply to the Internet (anymore...)?