Re: [hlds_linux] securing OS
"Eric (Deacon)" wrote: > > No, I can't think of a URL to an all-inclusive guide to securing a Win32 > box (Win95? 98? Win2k? Pro or Server? More info is needed) off the top > of my head. You said Win2k, that's what I was referring to. I reckon that you would agree that there is no way to secure a Win9x box. > I'm sure the wonderful world of google could probably help you out as > much as I could :) Another one for those who are interested: http://www.labmice.net/articles/securingwin2000.htm > If you don't know an OS intimately, it's going to be pretty difficult to > be confident in your ability to secure it :) Yep. That's why I would never try to run a "trusted" Windos system, set up by me, connected to the Inet. :) Florian. ___ To unsubscribe, edit your list preferences, or view the list archives, please visit: http://list.valvesoftware.com/mailman/listinfo/hlds_linux
Re: [hlds_linux] securing OS
Florian Zschocke wrote: > > "Eric (Deacon)" wrote: > > > > You can, of course, secure Win2k if you put some effort into it as well > > Probably, but since I don't do Windos I wouldn't know how. Got a > link, per chance? Well, i found one myself, but am getting offtopic again. :) This seems to be what the NSA suggests: http://nsa1.www.conxion.com/win2k/index.html. You'll have to decide on your own if you think that is a good or a bad sign. ;) I haven't read it so I don't know what kind and level of security it is about. Florian. ___ To unsubscribe, edit your list preferences, or view the list archives, please visit: http://list.valvesoftware.com/mailman/listinfo/hlds_linux
RE: [hlds_linux] securing OS
> > You can, of course, secure Win2k if you put some effort into it as well > > :) > > Probably, but since I don't do Windos I wouldn't know how. Got a > link, per chance? No, I can't think of a URL to an all-inclusive guide to securing a Win32 box (Win95? 98? Win2k? Pro or Server? More info is needed) off the top of my head. I'm sure the wonderful world of google could probably help you out as much as I could :) Just like for a linux box, securing a Windows box basically consists of killing off any services you don't need, keeping a close eye on the ones you DO need, and keeping up to date on the on patches/versions, security updates, etc. If you don't know an OS intimately, it's going to be pretty difficult to be confident in your ability to secure it :) -- Eric (the Deacon remix) ___ To unsubscribe, edit your list preferences, or view the list archives, please visit: http://list.valvesoftware.com/mailman/listinfo/hlds_linux
Re: [hlds_linux] securing OS
"Eric (Deacon)" wrote: > > You can, of course, secure Win2k if you put some effort into it as well > :) Probably, but since I don't do Windos I wouldn't know how. Got a link, per chance? Florian. ___ To unsubscribe, edit your list preferences, or view the list archives, please visit: http://list.valvesoftware.com/mailman/listinfo/hlds_linux
RE: [hlds_linux] securing OS (was: Log-File Naming)
> > Most likely it's because you are a smart user. > > The biggest problem is that most users are not and the preconfig that > > comes with M$ software is even worse then a Redhat installation :D > > Just for reference and since it might be of interest to admins on > this list running RedHat (omg, I'm getting ontopic again), you > *can* secure a RedHat installation if you put some effort into it You can, of course, secure Win2k if you put some effort into it as well :) -- Eric (the Deacon remix) ___ To unsubscribe, edit your list preferences, or view the list archives, please visit: http://list.valvesoftware.com/mailman/listinfo/hlds_linux
RE: [hlds_linux] Re: Log-File Naming [OT]
> The biggest problem is that most users are not and the preconfig that > comes with M$ software is even worse then a Redhat installation :D > It's costing companies and everyday users a lot of agony and money every > year, that M$ is so negligent in general with security :( > > You shouldn't have to hit preferences and shut everything down manually > after eg installing simple a mailclienet, just so you won't get viruses > etc. That is beyond many Win users capabilities (usually out of simple > ignorance). Well, the most secure system is a system that's under lock and key and is not connected to any network of any sort, nor is it capable of receiving commands or displaying and/or communicating any data. Of course, that would be a pretty damned useless computer :) Basically, the goal of a very user-friendly, robust, flexible, easily customizable, and powerful app of the size and scope of Oultook2002 is a very lofty one. With usability and functionality comes risks, of course. As a *loose* analogy, consider the USA and the freedom/security issue. The two are mutually exclusive. You can't have 100% freedom and at the same time have 100% security. There's a balance that has to be struck. And yeah, they could do better. But honestly, they could do a whole helluvalot worse. Thankfully, with software we can get a lot closer to achieving the utopian idea of 100% freedom with 100% security than we can in the real world, but it's still neither easy nor common. If you had to worry about keeping a MASSIVE suite of software and operating systems completely secure on 90% of the computers in the world today... Just the mind-melting myriad of possible configurations alone would be enough to make me throw in the towel. But to keep at it 24/7, trying to make everything easy to use, powerful, AND completely secure... That's amazing. And impossible. Especially when you have every reject l33t h4x0r with a chip on his shoulder gunning for you, a gang of relentless hounds just trying to find ONE possible weakness in your armor... I guess I'm just not as quick to ridicule Microsoft because I know I certainly couldn't do any better myself, and I don't know of just a whole lot of people would *could*. Demanding absolute security on a scale of this magnitude... It's crazy. Penguinaphiles can barely contain their orgasmic thrustings as they stammer on about how Microsoft hasn't officially resolved the issues with SSL that they--and Mozzila (and who knows who else)--are were made aware of. It was common knowledge there for a few *weeks* before it was taken care of on the linux side of the fence, the side with all the advantages. I mean really, give 'em a break :) Where's the love, man?? Can't we all just get along?? :D -- Eric (the Deacon remix) PS Wow, that took a lot longer to write than it normally would. gg 5:30am :) ___ To unsubscribe, edit your list preferences, or view the list archives, please visit: http://list.valvesoftware.com/mailman/listinfo/hlds_linux
[hlds_linux] securing OS (was: Log-File Naming)
Stefan Huszics wrote: > > Most likely it's because you are a smart user. > The biggest problem is that most users are not and the preconfig that > comes with M$ software is even worse then a Redhat installation :D Just for reference and since it might be of interest to admins on this list running RedHat (omg, I'm getting ontopic again), you *can* secure a RedHat installation if you put some effort into it: http://www.tldp.org/LDP/solrhe/Securing-Optimizing-Linux-RH-Edition-v1.3/index.html Florian. ___ To unsubscribe, edit your list preferences, or view the list archives, please visit: http://list.valvesoftware.com/mailman/listinfo/hlds_linux
RE: [hlds_linux] RE: client bug fix requests for Valve
> BTW, both the server and the client actually is 100% aware of where the > other players are, since if you put your crosshair where a guy is > supposed to be you get his name shown on your screen. It's just the > playermodel iself that is missplaced. Which of course is a huge wrench thrown into the gears of the gameplay machine. I'm not sure you were saying otherwise, but I thought I would reiterate just in case anyone was curious as to my take on the matter ;) -- Eric (the Deacon remix) ___ To unsubscribe, edit your list preferences, or view the list archives, please visit: http://list.valvesoftware.com/mailman/listinfo/hlds_linux
Re: [hlds_linux] Re: Log-File Naming [OT]
Eric (Deacon) wrote: >As far as Outlook and swiss cheese, I've never fallen prey to any...ANY >.vbs or other types/instances of virii, worms, malicious code, etc. >Perhaps I'm just a smart user that way, or perhaps I'm the luckiest guy >in the world (I'll argue against that, heh), but... > > Most likely it's because you are a smart user. The biggest problem is that most users are not and the preconfig that comes with M$ software is even worse then a Redhat installation :D It's costing companies and everyday users a lot of agony and money every year, that M$ is so negligent in general with security :( You shouldn't have to hit preferences and shut everything down manually after eg installing simple a mailclienet, just so you won't get viruses etc. That is beyond many Win users capabilities (usually out of simple ignorance). -- /Stefan Software never has bugs. It just develops random features. =) ___ To unsubscribe, edit your list preferences, or view the list archives, please visit: http://list.valvesoftware.com/mailman/listinfo/hlds_linux