On Sep 22, 2009, at 2:29 PM, Steven Anders <anders...@gmail.com> wrote: > > 1. There are many exploits and vulnerabilities of Windows, but I > was wondering if outdated Windows box behind router generally > safe ? Since, the Windows box was not updated with the latest > updates. > > I have always thought that having a computer behind the router > (since router has firewall) is generally safe, but I would love to > hear insights or thoughts.
Nope. A firewall should protect you against inbound connection attempts only. These days a lot of malware is installed via other means like exploiting vulnerabilies in browsers and other client applications (flash, acrobat and various active x controls). Or just prompt the user to install it. > > > 2. If a Windows box is behind a router, could a botnet be installed > to it ? Assuming, the end user does not install/download any > applications from the Internet and always use Firefox. Software installs aren't always obvious. Trusting a java applet for example. _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/