Rosco T.
(1000+ posts)
Send PM |
Profile |
Ignore
|
Tue Jan-03-06 04:50 PM
Response to Original message |
| 91. The Patch is LEGIT and has been 'blessed' so to speak... |
|
http://news.zdnet.co.uk/internet/security/0,39020375,39... "Mikko Hypponen, director of antivirus research at F-Secure, said that he believes corporations can trust the unofficial patch, developed by security software developer Ilfak Guilfanov. "This is a very unusual situation — we've never done this before. We trust Ilfak, and we know his patch works. We've confirmed the binary does what the source code said it does. We've installed the patch on 500 F-Secure computers, and have recommended all of our customers do the same. The businesses who have installed the patch have said it's highly sucessful," said Hypponen. The Internet Storm Center admitted that many businesses would be very reluctant to deploy an unofficial patch on their systems, but insisted that such drastic action is needed. "We've received many emails from people saying that no-one in a corporate environment will find using an unofficial patch acceptable," said Tom Liston of the Internet Storm Center, in his blog. "Acceptable or not, folks, you have to trust someone in this situation."
|
| -WARNING: MAJOR NEW Windows VIRUS - NOT a hoax |
Terre |
Jan-02-06 02:06 PM |
#0 |
 -
Okay |
shenmue |
Jan-02-06 02:09 PM |
#1 |
 -
For us computer illterates please give examples of "imaging" |
cantstandbush |
Jan-02-06 10:51 PM |
#69 |
 -
UPDATE: Terre, these links do not work. |
Radio_Lady |
Jan-03-06 07:50 PM |
#107 |
| -
Likely his bandwidth was exceeded. Mirror sites have been set up |
Garbo 2004 |
Jan-03-06 08:08 PM |
#109 |
| -
COOL! Thanks Garbo |
Terre |
Jan-03-06 08:23 PM |
#111 |
| -
unregistering doesn't work |
shoelace414 |
Jan-02-06 02:10 PM |
#2 |
| -
Who is Ilfak Guilfanov and why should I trust them for a "fix." |
KoKo01 |
Jan-02-06 02:20 PM |
#3 |
| -
Well known American security professionals vouch for him *shrug* |
Kagemusha |
Jan-02-06 02:21 PM |
#6 |
| -
That is the minimum you should do |
Terre |
Jan-02-06 02:22 PM |
#7 |
| -
Ho Hum. Yet another argument in the parade of arguments for |
david_vincent |
Jan-02-06 02:20 PM |
#4 |
| -
Doesn't have to be Linux, any UNIX based OS will make life a |
alfredo |
Jan-02-06 02:41 PM |
#15 |
| -
Haha - sure if you have time to maintain the patches |
Cronus Protagonist |
Jan-02-06 06:17 PM |
#33 |
| -
Not really. Any that uses tools like you see in Debian is easy to |
alfredo |
Jan-02-06 08:08 PM |
#46 |
| -
Heheh. |
skids |
Jan-02-06 08:26 PM |
#49 |
| -
I use apt quite a bit on OSX. So easy to use. |
alfredo |
Jan-02-06 08:37 PM |
#52 |
| -
No, it's the IBM/Sony thing. |
skids |
Jan-02-06 08:52 PM |
#60 |
| -
Oh OK now I know that you are talking about. |
alfredo |
Jan-02-06 10:45 PM |
#67 |
| -
mmmmmm..... BSD.... |
negativenihil |
Jan-03-06 07:11 PM |
#105 |
| -
Shhhh. Let them figure it out on their own. :-) |
skids |
Jan-02-06 05:15 PM |
#31 |
| -
Do gamers get a choice in this? |
kgfnally |
Jan-03-06 02:34 AM |
#75 |
| -
Oh hell... just tell 'em to switch to Mozilla |
Clark2008 |
Jan-02-06 06:20 PM |
#34 |
| -
I use Avant Browser -link here |
Twist_U_Up |
Jan-02-06 06:23 PM |
#35 |
| -
Avant's a nice browser but does it still uses the IE core engine? |
Garbo 2004 |
Jan-02-06 07:23 PM |
#42 |
| -
"Avant Browser is as secure as Internet Explorer." |
AntiCoup2K4 |
Jan-02-06 10:45 PM |
#68 |
| -
Great pic and to the point. LOL! n/t |
Garbo 2004 |
Jan-03-06 12:37 AM |
#72 |
| -
Completely agree. |
Wheezy |
Jan-02-06 07:09 PM |
#38 |
| -
Great. But it's not a simple browser exploit, it's an OS vulnerability and |
Garbo 2004 |
Jan-02-06 07:16 PM |
#41 |
| -
Very true |
Clark2008 |
Jan-02-06 08:27 PM |
#50 |
| -
I'll second that piece of wisdom and Thurnerbird for your mail. |
0007 |
Jan-02-06 08:42 PM |
#54 |
| -
But if you really want to protect yourself against this OS vulnerability |
Garbo 2004 |
Jan-02-06 08:52 PM |
#59 |
| -
Switching to Linux will not do anything for anyone. |
Bleachers7 |
Jan-03-06 01:55 PM |
#87 |
| -
May need to re-register for an eventual MS patch to work (edit) |
Kagemusha |
Jan-02-06 02:20 PM |
#5 |
| -
I intend to re-register the dll once the MS patch |
Terre |
Jan-02-06 02:34 PM |
#11 |
| -
What are some effects of having this virus/malware? |
Sagan |
Jan-02-06 02:25 PM |
#8 |
| -
Here is an FAQ from SANS |
Terre |
Jan-02-06 02:31 PM |
#9 |
| -
Exploits use a vulnerability to load malware on the PC. So the variety of |
Garbo 2004 |
Jan-02-06 07:13 PM |
#40 |
| -
OK, taking |
Turbineguy |
Jan-02-06 02:31 PM |
#10 |
| -
Actually erasing your history is probably a good thing |
Terre |
Jan-02-06 02:39 PM |
#14 |
| -
Much simpler fix: Install Firefox. |
Xithras |
Jan-02-06 02:37 PM |
#12 |
| -
I think it affects Firefox, too... |
Sagan |
Jan-02-06 02:39 PM |
#13 |
| -
A firefox bug inadvertently protects users. To a point. |
Kagemusha |
Jan-02-06 02:47 PM |
#19 |
| -
It's not just browsers |
Terre |
Jan-02-06 02:48 PM |
#20 |
| -
Terre, and others -- the hexblog.com links you provided yesterday |
Radio_Lady |
Jan-03-06 07:55 PM |
#108 |
| -
Just sent you my reply |
Terre |
Jan-03-06 08:20 PM |
#110 |
| -
Thanks, Terre. Appreciate your continuing efforts to help us. |
Radio_Lady |
Jan-03-06 08:33 PM |
#112 |
| -
Firefox is just as vunerable to this bug as IE is. |
shoelace414 |
Jan-02-06 03:54 PM |
#28 |
| -
There are various means of entry for the exploit. Since it's an OS |
Garbo 2004 |
Jan-02-06 05:08 PM |
#30 |
| -
Thanks Garbo! |
Terre |
Jan-02-06 06:14 PM |
#32 |
| -
Heh, well glad it's understandable to someone other than myself. I must be |
Garbo 2004 |
Jan-02-06 07:00 PM |
#37 |
| -
I couldn't agree more |
Terre |
Jan-02-06 07:29 PM |
#43 |
| -
- |
tiptoe |
Jan-04-06 12:03 AM |
#116 |
| -
kick |
MichiganVote |
Jan-02-06 02:44 PM |
#16 |
| -
Good overview here |
kliljedahl |
Jan-02-06 02:44 PM |
#17 |
| -
thanks |
oasis |
Jan-02-06 02:47 PM |
#18 |
| -
kick and recommend! |
tiptoe |
Jan-02-06 02:50 PM |
#21 |
| -
I heard that my McAfee anti-viral will protect my machine |
bluestateguy |
Jan-02-06 02:53 PM |
#22 |
| -
I don't know if that would be enough |
Terre |
Jan-02-06 03:03 PM |
#24 |
| -
Here's what McAfee says |
Terre |
Jan-02-06 03:46 PM |
#27 |
| -
KICK ! (keep it kicked for other DU-ers) |
tiptoe |
Jan-02-06 03:02 PM |
#23 |
| -
Oh, No! My poor Mac! |
onehandle |
Jan-02-06 03:16 PM |
#25 |
| -
Lol |
ananda |
Jan-02-06 06:46 PM |
#36 |
| -
Unofficial patch site |
Nomad559 |
Jan-02-06 03:22 PM |
#26 |
| -
Kicking |
Terre |
Jan-02-06 04:59 PM |
#29 |
| -
Another kick. |
MidnightWind |
Jan-02-06 07:10 PM |
#39 |
| -
Surely my free AVG anti virus protection with daily updates |
B Calm |
Jan-02-06 07:32 PM |
#44 |
| -
Actually, I have AVG as well |
Terre |
Jan-02-06 07:59 PM |
#45 |
| -
Well, some AV's are faster than others in addressing new threats. |
Garbo 2004 |
Jan-02-06 08:11 PM |
#47 |
| -
It looks as though AVG |
Terre |
Jan-02-06 08:25 PM |
#48 |
| -
I use Netscape 7.1 |
dumpbush |
Jan-02-06 08:41 PM |
#53 |
| -
It's the Microsoft operating system that is vulnerable. It's not a browser |
Garbo 2004 |
Jan-02-06 08:49 PM |
#56 |
| -
Yes but AVG's Pro version is almost $40 & it's not the free AVG |
Garbo 2004 |
Jan-02-06 08:45 PM |
#55 |
| -
It's hard to say |
high density |
Jan-02-06 08:51 PM |
#58 |
| -
get an apple. nt. |
mb7588a |
Jan-02-06 08:35 PM |
#51 |
| -
Gotcha |
Terre |
Jan-02-06 08:50 PM |
#57 |
| -
Thanks for info, and a question: |
jeffreyi |
Jan-02-06 09:19 PM |
#61 |
| -
Hi jeffreyi |
Terre |
Jan-02-06 09:38 PM |
#62 |
| -
Thanks, Terre |
jeffreyi |
Jan-02-06 09:44 PM |
#63 |
| -
De nada |
Terre |
Jan-02-06 09:53 PM |
#64 |
| -
I'd leave them be, as Terre said. Don't go deleting stuff if you don't |
Garbo 2004 |
Jan-03-06 01:24 AM |
#73 |
| -
Ho-Hum. Another Windows virus. |
longship |
Jan-02-06 09:55 PM |
#65 |
| -
In the meantime |
Terre |
Jan-02-06 10:40 PM |
#66 |
| -
At that point... |
skids |
Jan-03-06 12:06 AM |
#70 |
| -
Great. Neither have I running Windows. But this thread is intended to help |
Garbo 2004 |
Jan-03-06 04:34 AM |
#77 |
| -
Hey Mozilla: PLEASE make an opsys!!!!!! |
LuCifer |
Jan-03-06 12:20 AM |
#71 |
| -
What's a "Virus"? |
REP |
Jan-03-06 02:07 AM |
#74 |
| -
It's not a "virus" actually. BTW, Opera prompts on the link you posted. |
Garbo 2004 |
Jan-03-06 04:15 AM |
#76 |
| -
Thank you for the warning. I'll watch out for that |
Taxloss |
Jan-03-06 05:01 AM |
#78 |
| -
In fairness, MS could do considerably (cough) better. Really. MS |
Garbo 2004 |
Jan-03-06 06:26 AM |
#80 |
| -
I didn't know that about Opera. |
Taxloss |
Jan-03-06 06:42 AM |
#81 |
| -
Thank you...Thank you...None of them have done anything with the |
MrsGrumpy |
Jan-03-06 06:51 AM |
#82 |
| -
You're welcome. |
Taxloss |
Jan-03-06 07:20 AM |
#83 |
| -
Damage control question |
Jim Lane |
Jan-03-06 05:05 AM |
#79 |
| -
I seriously doubt those apps are cut out for that sort of work given the |
Garbo 2004 |
Jan-03-06 07:24 AM |
#84 |
| -
Deleted message |
Name removed |
Jan-03-06 09:35 AM |
#85 |
| -
Upon review, we have decided to unlock this thread. |
Skinner |
Jan-03-06 01:45 PM |
#86 |
| -
Thanks Skinner! |
Terre |
Jan-03-06 04:41 PM |
#90 |
| -
Yikes! No Official Fix Release from Microsoft expected until January 10 ! |
tiptoe |
Jan-03-06 02:48 PM |
#88 |
| -
Here is what Microsoft has to say. |
Bleachers7 |
Jan-03-06 04:31 PM |
#89 |
| -
MS underplays it of course. No one can "force" anyone to go to a |
Garbo 2004 |
Jan-03-06 05:49 PM |
#95 |
| -
This kind of attitude by MS pisses me off |
Terre |
Jan-03-06 06:16 PM |
#96 |
| -
Let me be real clear here, since Sept 17, 2004, there have been... |
mtnester |
Jan-03-06 08:42 PM |
#114 |
| -
"Microsoft’s intelligence sources indicate" |
0rganism |
Jan-04-06 03:45 PM |
#122 |
| -
The Patch is LEGIT and has been 'blessed' so to speak... |
Rosco T. |
Jan-03-06 04:50 PM |
#91 |
| -
Thanks Rosco for the link |
Terre |
Jan-03-06 05:15 PM |
#92 |
| -
Its not a Virus. Its a vulnerability |
Freedom_Aflaim |
Jan-03-06 05:25 PM |
#93 |
| -
You're 100% right of course |
Terre |
Jan-03-06 05:42 PM |
#94 |
| -
Good points all /nt |
Freedom_Aflaim |
Jan-04-06 12:22 AM |
#118 |
| -
WARNING WARNING WARNING! |
ddeclue |
Jan-03-06 06:22 PM |
#97 |
| -
Have you clicked any of the links |
Terre |
Jan-03-06 06:34 PM |
#98 |
| -
Don't get it wrong... |
ddeclue |
Jan-03-06 06:37 PM |
#99 |
| -
I can understand that |
Terre |
Jan-03-06 06:58 PM |
#102 |
| -
F-Secure yes... |
ddeclue |
Jan-03-06 11:43 PM |
#115 |
| -
From eweek security blog: |
Garbo 2004 |
Jan-03-06 07:09 PM |
#104 |
| -
Maybe you've heard of SANS, F-Secure or even Steve Gibson? |
Garbo 2004 |
Jan-03-06 06:47 PM |
#101 |
| -
GMTA |
Terre |
Jan-03-06 07:07 PM |
#103 |
| -
Well the funny thing is, the unofficial patch is likely one of the most |
Garbo 2004 |
Jan-03-06 07:48 PM |
#106 |
| -
No worries, Doug. The website hexblog.com is not operating. |
Radio_Lady |
Jan-03-06 08:37 PM |
#113 |
| -
GRC and Castlecops are offering mirrors |
Feron |
Jan-04-06 12:18 AM |
#117 |
| -
ttt n/t |
Blue_Tires |
Jan-03-06 06:38 PM |
#100 |
| -
Here are PDF, PowerPoint & OpenOffice slide presentations of the issues: |
tiptoe |
Jan-04-06 12:39 AM |
#119 |
| -
Computerworld has picked up this story in New Zealand 01/04/06 |
Radio_Lady |
Jan-04-06 12:48 AM |
#120 |
| -
kick |
tiptoe |
Jan-04-06 03:06 PM |
#121 |
| -
Help re MS's patch |
cosmicdot |
Jan-05-06 07:40 PM |
#123 |
Printer-friendly format
Email this thread to a friend
Bookmark this thread