rec.autos.simulators

by **Dave Henri** » Sat, 22 Dec 2001 12:09:22

Just saw on one of the 24 hour news channels that both versions of XP are
wide open to hackers. The entire operating system, not just the email or
other components....Supposedly the biggest security risk in MS's shakey
security history. Read more about it...before a hacker takes over your
sy.....

dave henrie

by **Phillip Malphrus, Jr** » Sat, 22 Dec 2001 12:43:27

LOL, if XP is vulnerable, then so is 2000 ... What is your point? That a 16
bit Win98 is more secure than a 32 bit OS, LOL. Hardly ...

by **David Geesama** » Sat, 22 Dec 2001 13:01:16

And Win95, 95, ME. Were you advocating Win2000? That's the only one
not on the list.
Also, any firewall will block this vulnerability almost completely.

Dave

by **Uncle Feste** » Sat, 22 Dec 2001 13:02:36

> Just saw on one of the 24 hour news channels that both versions of XP are
> wide open to hackers. The entire operating system, not just the email or
> other components....Supposedly the biggest security risk in MS's shakey
> security history. Read more about it...before a hacker takes over your
> sy.....

> dave henrie

Newsgroups: rec.autos.simulators
Subject: HEY XP owners...I TOLD YOU SO!!!! <evil laugh!!>
Lines: 21
X-Priority: 3
X-MSMail-Priority: Normal
X-Newsreader: Microsoft Outlook Express 6.00.2600.0000
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000

You're looking real secure there too, Dave. :-P

--

Fester

by **Dave Henri** » Sat, 22 Dec 2001 13:41:31

Never said I was secure Uncle...I've even gone thru the experience of
having a hacker take over my machine while I was on the keyboard...hehe.
Just everyone keeps saying XP is this big upgrade...seems more of the same
to me..
(I'll be quiet now and go back to my run down ratty system...)
(I think I'll be chopped up pretty good by morning.)
dave henrie

> > Just saw on one of the 24 hour news channels that both versions of XP
are
> > wide open to hackers. The entire operating system, not just the email
or
> > other components....Supposedly the biggest security risk in MS's shakey
> > security history. Read more about it...before a hacker takes over your
> > sy.....

> > dave henrie

> Newsgroups: rec.autos.simulators
> Subject: HEY XP owners...I TOLD YOU SO!!!! <evil laugh!!>
> Lines: 21
> X-Priority: 3
> X-MSMail-Priority: Normal
> X-Newsreader: Microsoft Outlook Express 6.00.2600.0000
> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000

> You're looking real secure there too, Dave. :-P

> --

> Fester

by **Will DeRiver** » Sat, 22 Dec 2001 14:13:22

Everyone? hehe...only people i've heard that keep saying how secure XP is
has been Microsoft. =)
--
- Will DeRivera
- GPL Rank 105.63, i'll be working on it again soon!
- http://www.numic.net
- http://www.luxt.com

by **Whodagu** » Sat, 22 Dec 2001 14:36:51

The risk is limited to Windows XP and can occur in WinMe if the code is
installed. I don't recall the exact name of the software, but it's standard
in XP and is related to allowing computer control of home appliances - that
whole computerized home thing.

Trouble is XP installs this component by default with no way verify users,
and it allows complete takeover of the PC. Just a stupid thing to do. Leave
it to MS!

> LOL, if XP is vulnerable, then so is 2000 ... What is your point? That a
16
> bit Win98 is more secure than a 32 bit OS, LOL. Hardly ...

> > Just saw on one of the 24 hour news channels that both versions of XP
> are
> > wide open to hackers. The entire operating system, not just the email
or
> > other components....Supposedly the biggest security risk in MS's shakey
> > security history. Read more about it...before a hacker takes over your
> > sy.....

> > dave henrie

by **Dave Henri** » Sat, 22 Dec 2001 15:15:03

well here's a link to the story on msnbc, they should have a fix posted at
ms. I didn't check but there might be alink in the story.

http://www.msnbc.com/news/675850.asp#BODY

dave henrie

> > Never said I was secure Uncle...I've even gone thru the experience of
> > having a hacker take over my machine while I was on the keyboard...hehe.
> > Just everyone keeps saying XP is this big upgrade...seems more of the
> same
> > to me..
> > (I'll be quiet now and go back to my run down ratty system...)
> > (I think I'll be chopped up pretty good by morning.)
> > dave henrie

> Everyone? hehe...only people i've heard that keep saying how secure XP is
> has been Microsoft. =)
> --
> - Will DeRivera
> - GPL Rank 105.63, i'll be working on it again soon!
> - http://www.numic.net
> - http://www.luxt.com

by **A Ingra** » Sat, 22 Dec 2001 16:45:14

Frankly, I am shocked to learn there is *** at Rick's night club.

by **Joachim Trens** » Sat, 22 Dec 2001 18:26:39

Nope, W2K is not affected. It doesn't have that service.

Achim

> LOL, if XP is vulnerable, then so is 2000 ... What is your point? That a
16
> bit Win98 is more secure than a 32 bit OS, LOL. Hardly ...

> > Just saw on one of the 24 hour news channels that both versions of XP
> are
> > wide open to hackers. The entire operating system, not just the email
or
> > other components....Supposedly the biggest security risk in MS's shakey
> > security history. Read more about it...before a hacker takes over your
> > sy.....

> > dave henrie

by **Joachim Trens** » Sat, 22 Dec 2001 18:28:55

Luckily W2K is not affected, it doesn't have that service. Win98/ME are
affected only if you've explicitely installed or enabled that service. WinXP
is the only OS that has the service installed and enabled by default.

Achim

> > Just saw on one of the 24 hour news channels that both versions of XP
> > are
> > wide open to hackers. The entire operating system, not just the email
> > or other components....Supposedly the biggest security risk in MS's
> > shakey security history. Read more about it...before a hacker takes
> > over your sy.....

> And Win95, 95, ME. Were you advocating Win2000? That's the only one
> not on the list.
> Also, any firewall will block this vulnerability almost completely.

> Dave

by **Joachim Trens** » Sat, 22 Dec 2001 18:35:43

OE5/6 is pretty secure if it's using the Restricted Sites Zone settings and
the user doesn't allow anything to execute in either it's preview pane or
mail window.

Achim

> > Just saw on one of the 24 hour news channels that both versions of XP
are
> > wide open to hackers. The entire operating system, not just the email
or
> > other components....Supposedly the biggest security risk in MS's shakey
> > security history. Read more about it...before a hacker takes over your
> > sy.....

> > dave henrie

> Newsgroups: rec.autos.simulators
> Subject: HEY XP owners...I TOLD YOU SO!!!! <evil laugh!!>
> Lines: 21
> X-Priority: 3
> X-MSMail-Priority: Normal
> X-Newsreader: Microsoft Outlook Express 6.00.2600.0000
> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000

> You're looking real secure there too, Dave. :-P

> --

> Fester

by **Joachim Trens** » Sat, 22 Dec 2001 18:38:02

WinXP? Is anyone still using that with all the probs you see in the NG's?
;-)

Achim

by **jason moy** » Sat, 22 Dec 2001 20:12:55

> Just saw on one of the 24 hour news channels that both versions of XP are
> wide open to hackers. The entire operating system, not just the email or
> other components....Supposedly the biggest security risk in MS's shakey
> security history. Read more about it...before a hacker takes over your
> sy.....

I like the quotes I've seen on cnn and news.com from Microsoft
security employees. Sounds like there are some people there who
aren't too happy with company security policy.

It's amazing that any piece of software, nevertheless an OPERATING
SYSTEM, would ship with a service enabled like that. I mean come on,
every service on every OS eventually is compromised, the least MS
could do is face this and stop putting network services into their
software that either can't be disabled or shouldn't be enabled by
default but are anyway.

I'm also not sure what people were expecting when they upgraded to
what is essentially Windows NT 4.2, but there's no point in preaching
here. Hopefully eventually Microsoft will release an OS that holds
some sort of *** advantages over Win 98, since that's all their
software is useful for.

by **jason moy** » Sat, 22 Dec 2001 20:30:02

a.) Windows 98 is 32-bit (actually, Windows 95 and Windows for
Workgroups 3.11 were 32-bit also).

b.) Windows 98 is infinitely more secure than Windows XP. Then again,
this is to be expected since Windows 98 has the benefit of 3 years of
patches, where XP was apparently sent to a bunch of morons for beta
testing (actually, based on the people I know who did beta testing,
there's probably some truth to that statement).

c.) Windows 98 is and probably forever will be a better choice for
*** if only because the shell in XP wastes RAM/CPU cycles in order
to look nice. This has been a complaint of mine since MS decided to
kill the efficiency of their shell by replacing the 95 Explorer with
IE (the performance difference between a copy of Win98lite using the
Win95 shell and a standard copy of Win98 with IE 4/5/6 is amazing).
The sole *** advantages of XP are a slightly more stable (but
bulkier) kernel and SMP capability which is useless for most ***
applications. I mention this because *** is the only reason why
anyone should be running Windows on their PC's at this point, what
with the number of operating systems available now that make more
efficient use of your system resources. I sincerely hope that XP
continues to sell poorly because I'd hate to see games developed that
only run in XP.

d.) The security exploit found in Windows XP dwarfs all security
exploits found in any software in the history of computing. Because
of a bug in the Universal Plug and Play feature (I'm guessing a buffer
overflow, based on comments by Microsoft's Security Team) and the fact
that UPnP is enabled by default in XP (can you say bad design
decision) it is possible to gain access to any unpatched Windows XP
machine that is connected to the internet (or any network that you
have access to, for that matter). Period. This is a default install
of what MS has hyped as the most robust, secure OS ever designed
(wonder if they're familiar with FreeBSD, since they've stolen so much
of the source code for their TCP/IP utilities from it).

> LOL, if XP is vulnerable, then so is 2000 ... What is your point? That a 16
> bit Win98 is more secure than a 32 bit OS, LOL. Hardly ...

> > Just saw on one of the 24 hour news channels that both versions of XP
> are
> > wide open to hackers. The entire operating system, not just the email or
> > other components....Supposedly the biggest security risk in MS's shakey
> > security history. Read more about it...before a hacker takes over your
> > sy.....

> > dave henrie