Firewall Recommendations

[Dave G]

Okay... so I had some annoying pop up ads through the messenger service (see
my previous post)...

Digging a little deeper (following a post by YK) I find I am in need of a
personal Firewall.... yes I know... What am I doing in the spyware NG if I
don't already have one of these!!!

Any recommendations out there... My machine spec is Win XP, IE6, Outlook
Express, McAfee v6.02, Modem Dial Up (although soon to move to broadband)
and I use Kazaa Lite occasionally.

What's best for my needs...

Regards

Dave G

[nemo outis]

In article <bemrc3$kc6$1@newsg3.svr.pol.co.uk>, "Dave G" <Dave G@NoSpam.Co.UK> wrote:
>Okay... so I had some annoying pop up ads through the messenger service (see
>my previous post)...
>
>Digging a little deeper (following a post by YK) I find I am in need of a
>personal Firewall.... yes I know... What am I doing in the spyware NG if I
>don't already have one of these!!!
>
>Any recommendations out there... My machine spec is Win XP, IE6, Outlook
>Express, McAfee v6.02, Modem Dial Up (although soon to move to broadband)
>and I use Kazaa Lite occasionally.
>
>What's best for my needs...
>
>Regards
>
>Dave G
>


I heartily recommend Kerio - if for nothing else, then for the
superb configuration files provided by the young and
lovely Sponge:

http://www.geocities.com/yosponge/

Regards,

[nemo outis]

In article <9u1ugvs4d2dbvb7hnrd383eohp1cdn38rr@4ax.com>, null@zilch.com wrote:

>
>Begin by doing things right, which means hardening XP networking:
>
>http://www.hsc.fr/ressources/breves/...win.en.html.en
>

If you want a very good overview of XP and 2000 services
(including network services) I heartily recommend:

http://www.blackviper.com/

Regards,

[Lance Delacroix]

On Sat, 12 Jul 2003 00:42:34 GMT, "YK" <YKnot@home.invalid>
prounounced a fatwah thus:

>Dave G wrote:
>> Okay... so I had some annoying pop up ads through the messenger
>> service (see my previous post)...
>>
>> Digging a little deeper (following a post by YK) I find I am in need
>> of a personal Firewall.... yes I know... What am I doing in the
>> spyware NG if I don't already have one of these!!!
>>
>> Any recommendations out there... My machine spec is Win XP, IE6,
>> Outlook Express, McAfee v6.02, Modem Dial Up (although soon to move
>> to broadband) and I use Kazaa Lite occasionally.
>>
>> What's best for my needs...
>>
>> Regards
>>
>> Dave G
>
>Kerio is what I use and am very happy with it.
>
>A bit of general background.
>http://www.firewallguide.com/
>
>People that recommend dumping IE and OE do not have the smarts to clamp down
>on security.
>They can only offer negative comments that are fueled by their incompetence.

Dump IE and OE.

>
>See Eric's vast information about security and privacy. I use IE-SPYAD.
>http://www.staff.uiuc.edu/~ehowes/main-nf.htm <== main site
>http://www.staff.uiuc.edu/~ehowes/btw/ie/ie-opts.htm <== IE security
>
>
>
>
>

[Lance Delacroix]

On Sat, 12 Jul 2003 11:04:28 GMT, null@zilch.com prounounced a fatwah
thus:

>On Sat, 12 Jul 2003 00:42:34 GMT, "YK" <YKnot@home.invalid> wrote:
>
>>People that recommend dumping IE and OE do not have the smarts to clamp down
>>on security.
>
>LOL! People who still use and endlessly fix and patch and screw around
>because of IE and OE don't have a clue

YK is our resident troll. He should be fed regularly, but sparingly.
Too much food makes him bloat.

>
>Art
>http://www.epix.net/~artnpeg

[M.L.]

>Begin by doing things right, which means hardening XP networking:
>
>http://www.hsc.fr/ressources/breves/...win.en.html.en
>
>Then it makes not a twit of difference which Firewall you use since
>you don't need one. I like Sygate PF for its excellent traffic log.
>This can be of some use in tracking down unwanted apps trying to gain
>internet access. But you also need a good running process viewer or
>two. You should also use Spybot and AdAware.
>
>Next, dump IE and OE and use only apps that have been designed with
>security in mind. Use the latest Mozilla or Mozilla based browsers. NS
>7.10 is excellent. Use something like Privoxy for ad blocking, etc.

Telling strangers to just dump the apps they've been using is almost
always bad advice. Fact is, no one will know how secure Mozilla is
until it's been tested like IE and Outlook. I use IE and used to use
Outlook, and had no security problems with either after configuring
them properly.

>For email and newsgroups, you can use Netscape. I prefer using Pegasus
>and Free Agent.

That sounds like spamming.

[mto]

You are wrong. See below.

<null@zilch.com> wrote in message
news:5191hv0tt6j4jk2iojfluldqqt4p6iaccf@4ax.com...
> On Sat, 12 Jul 2003 19:21:17 -0400, "mto" <nobody@nowhere.com> wrote:
>
> >
> ><null@zilch.com> wrote in message
> >news:ajqvgv0hg4veu05927q244jsoqr3l9arge@4ax.com.. .
> >> On Sat, 12 Jul 2003 00:42:34 GMT, "YK" <YKnot@home.invalid> wrote:
> >>
> >> >People that recommend dumping IE and OE do not have the smarts to
clamp
> >down
> >> >on security.
> >>
> >> LOL! People who still use and endlessly fix and patch and screw around
> >> because of IE and OE don't have a clue
> >>
> >> Art
> >> http://www.epix.net/~artnpeg
> >
> >Well I don't endlessly fix, patch, and screw around and I DO have a clue,
>
> That statement is inconsistent with what you say later

Nope - the MACHINE might be being scanned at 3 am, but it took me less than
60 seconds to set it up to take care of itself.

> >having for many years run a very large and very busy website that
delivered
> >a minimum of 50 copies of whatever the latest viruses may be and several
> >hundred spams a day to my inbox. I DO use XP, IE and OE because that is
> >what 90% of my visitors use and it is convenient to be able to explain
where
> >problems they are having might lie - and I have NEVER even once gotten a
> >virus, a trojan, a worm and have successfully avoided nearly all spyware.
> >And when I drop by every now and then over at Steve Gibson's to get my
> >security checked, guess what? My computer simply doesn't exist
>
> So you've bought into the stealth myth. Stealthing most definitely
> does not mean your PC doesn't exist. The lack of a normal ping
> response simply indicates to a hacker that you're using a firewall.
> But whether or not that makes it any more difficult for him is
> questionable Adding software firewalls adds complexity and more
> potential vulnerabilities.
>
> >Get rid of McAffee/Norton/etc. and install PcCillin - www. antivirus.com,
> >which is based on both definitions of known viruses and heuristic (the
> >others are definitions only) - as in if it looks like a duck and walks
like
> >a duck and quacks like a duck it is a duck.
>
> Guess what? The hated McAfee has been proven at Uni Hamburg to have
> the best heuristic scan engine of them all! Trend's products aren't
> bad but they're not top notch. The KAV and McAfee scan engines are the
> best.

McAfee has the single most horrible tech support available - has done for
years. PcCillin's is top notch - you can even call them on the phone and
talk to a live person

Further, I can recall countless times over the years that I've had notices
from multiple McAfee &/or Norton users about some new virus they have been
infected with and likely passed along to me. Never once got one of those
from a PcCillin user. And never once gotten one of those nasties. Remember
I DID state that I get 50+ a DAY, EVERY DAY - and have for years now.

> >That way you have some prayer
> >of stopping a viral invasion if you happen to get something brand new in
> >your email for which no one has yet come up with a definition. Set it to
> >automatically update itself every 3 hours and to do a complete scan every
> >night in the middle of the night.
>
> That proves it! You do screw around! I hardly ever bother with virus
> scanning any more. It's proven to be a waste of time since I never get
> infected. I never use realtime scanners since I've tested many of them
> and I don't put any faith in them to "protect" me.

Repeat - I do not screw around. It is a simple matter of clicking a button
to set up the program to perform the scan while I am sound asleep.

How do you "test" a realtime scan? Send yourself a virus or two? Wouldn't
be without mine - but then a new virus within usually arrives in my inbox
the first 12 hours it is released.

If YOU never get infected that must be because you are LUCKY - since
obviously you really don't give a f*** and are not careful. I can only
surmise that you haven't many friends and acquaintances online, thus are not
in any address books and therefore the latest scourge never reaches you.

> >Get ZoneAlarm - spring for the PRO version.
>
> More screwing around. No need for a firewall either if you know what
> you're doing.

HMMM - haven't visited many websites lately have you?

> >Get the free version of AdAware and Spybot Search and Destroy. Set them
> >both to run every time you reboot.
>
> Nah. Only run them after installing new software.

You TRULY have absolutely NO comprehension of the spyware problem, do you?
Or have you not noted that a 15 minute to MSNBC - or a short trip to
Google - or even a glance at Yahoo will install at least one spyware program
on your machine without so much as a whisper to inform you? SpyBot S&D
will, however, catch the thing and abort the download/installation for you.
AdAware very nicely removes all those little gif-bots. And remember - I run
a large website and spend lots of time reading server logs. You might
dismiss privacy concerns, but I know EXACTLY what can be collected about a
visitor without you ever knowing and without me even trying to collect it.

> >Set your security everywhere to high.
> >
> >Make sure that you have NO trusted sites - including Microsoft, since
more
> >than once things have come rolling around claiming to be from Microsoft
that
> >weren't.
> >
> >Turn off Active X. (You can leave signed Active X at prompt if you want.)
> >Turn off Java. Severely limit the sites that you allow Javascripts to
run
> >on. Turn off iFrame. You'll miss a little bit - at MSNBC you'll have to
> >click to get the page rather than get that nice pop-out menu. Oh well.
>
> Nah. With Moz based browsers you can leave both scripting and Java
> Script enabled with very little concern ... and quit the goddam
> screwing around
>
>
> Art
> http://www.epix.net/~artnpeg

Javascript works the same in Netscape as it does in IE - or any other
browser. A Javascript that initiates a download in IE will in general
initiate the same exact download in Netscape. A Javascript that grabs your
personal data from a form and forwards it elsewhere in the clear works
exactly the same in Netscape - or any other browser - as it does in IE.
Learn a little web design and scripting. And if you had ever read a server
log you would know that IE is listed as a Mozilla browser too.

You are an idiot.

[null@zilch.com]

On Sat, 12 Jul 2003 21:04:11 -0400, "mto" <nobody@nowhere.com> wrote:

>You are wrong. See below.
>
><null@zilch.com> wrote in message
>news:5191hv0tt6j4jk2iojfluldqqt4p6iaccf@4ax.com.. .
>> On Sat, 12 Jul 2003 19:21:17 -0400, "mto" <nobody@nowhere.com> wrote:
>>
>> >
>> ><null@zilch.com> wrote in message
>> >news:ajqvgv0hg4veu05927q244jsoqr3l9arge@4ax.com.. .
>> >> On Sat, 12 Jul 2003 00:42:34 GMT, "YK" <YKnot@home.invalid> wrote:
>> >>
>> >> >People that recommend dumping IE and OE do not have the smarts to
>clamp
>> >down
>> >> >on security.
>> >>
>> >> LOL! People who still use and endlessly fix and patch and screw around
>> >> because of IE and OE don't have a clue
>> >>
>> >> Art
>> >> http://www.epix.net/~artnpeg
>> >
>> >Well I don't endlessly fix, patch, and screw around and I DO have a clue,
>>
>> That statement is inconsistent with what you say later
>
>Nope - the MACHINE might be being scanned at 3 am, but it took me less than
>60 seconds to set it up to take care of itself.

But you're not using the best product. And do you know how to set it
up properly for a thorough on-demand scan of your drive(s)? Do you
really believe that on demand scanning with with just one mediocre
product is adequate?

>> >having for many years run a very large and very busy website that
>delivered
>> >a minimum of 50 copies of whatever the latest viruses may be and several
>> >hundred spams a day to my inbox. I DO use XP, IE and OE because that is
>> >what 90% of my visitors use and it is convenient to be able to explain
>where
>> >problems they are having might lie - and I have NEVER even once gotten a
>> >virus, a trojan, a worm and have successfully avoided nearly all spyware.
>> >And when I drop by every now and then over at Steve Gibson's to get my
>> >security checked, guess what? My computer simply doesn't exist
>>
>> So you've bought into the stealth myth. Stealthing most definitely
>> does not mean your PC doesn't exist. The lack of a normal ping
>> response simply indicates to a hacker that you're using a firewall.
>> But whether or not that makes it any more difficult for him is
>> questionable Adding software firewalls adds complexity and more
>> potential vulnerabilities.
>>
>> >Get rid of McAffee/Norton/etc. and install PcCillin - www. antivirus.com,
>> >which is based on both definitions of known viruses and heuristic (the
>> >others are definitions only) - as in if it looks like a duck and walks
>like
>> >a duck and quacks like a duck it is a duck.
>>
>> Guess what? The hated McAfee has been proven at Uni Hamburg to have
>> the best heuristic scan engine of them all! Trend's products aren't
>> bad but they're not top notch. The KAV and McAfee scan engines are the
>> best.
>
>McAfee has the single most horrible tech support available - has done for
>years. PcCillin's is top notch - you can even call them on the phone and
>talk to a live person

People who know what they're doing don't need tech support.

>Further, I can recall countless times over the years that I've had notices
>from multiple McAfee &/or Norton users about some new virus they have been
>infected with and likely passed along to me. Never once got one of those
>from a PcCillin user. And never once gotten one of those nasties. Remember
>I DID state that I get 50+ a DAY, EVERY DAY - and have for years now.

That's because those products are most widely used and people stupidly
put their trust in them to "protect" them. They're sure to get
infected.

>> >That way you have some prayer
>> >of stopping a viral invasion if you happen to get something brand new in
>> >your email for which no one has yet come up with a definition. Set it to
>> >automatically update itself every 3 hours and to do a complete scan every
>> >night in the middle of the night.
>>
>> That proves it! You do screw around! I hardly ever bother with virus
>> scanning any more. It's proven to be a waste of time since I never get
>> infected. I never use realtime scanners since I've tested many of them
>> and I don't put any faith in them to "protect" me.
>
>Repeat - I do not screw around. It is a simple matter of clicking a button
>to set up the program to perform the scan while I am sound asleep.

LOL!

>How do you "test" a realtime scan? Send yourself a virus or two? Wouldn't
>be without mine - but then a new virus within usually arrives in my inbox
>the first 12 hours it is released.

I've been testing av products for years. There's quite a bit to it.

>If YOU never get infected that must be because you are LUCKY - since
>obviously you really don't give a f*** and are not careful.

Quite to the contrary.

>I can only
>surmise that you haven't many friends and acquaintances online, thus are not
>in any address books and therefore the latest scourge never reaches you.

Attackments on my email server get deleted without even bothering to
download or scan them. They're obvious. But even if I allow them to
download, there's no way using Pegasus to execute them or get
infected.

>> >Get ZoneAlarm - spring for the PRO version.
>>
>> More screwing around. No need for a firewall either if you know what
>> you're doing.
>
>HMMM - haven't visited many websites lately have you?

I love to investigate all the alleged dangerous web sites just to see
what IE users are getting hit with

>> >Get the free version of AdAware and Spybot Search and Destroy. Set them
>> >both to run every time you reboot.
>>
>> Nah. Only run them after installing new software.
>
>You TRULY have absolutely NO comprehension of the spyware problem, do you?

Of course I do.

>Or have you not noted that a 15 minute to MSNBC - or a short trip to
>Google - or even a glance at Yahoo will install at least one spyware program
>on your machine without so much as a whisper to inform you?

They don't infect me. No web site has any effect using Moz browsers.

>SpyBot S&D
>will, however, catch the thing and abort the download/installation for you.
>AdAware very nicely removes all those little gif-bots.

No need for that.

>And remember - I run
>a large website and spend lots of time reading server logs. You might
>dismiss privacy concerns, but I know EXACTLY what can be collected about a
>visitor without you ever knowing and without me even trying to collect it.

I don't dismiss them. I address them properly. You obviously don't.

>> >Set your security everywhere to high.
>> >
>> >Make sure that you have NO trusted sites - inclding Microsoft, since
>more
>> >than once things have come rolling around claiming to be from Microsoft
>that
>> >weren't.
>> >
>> >Turn off Active X. (You can leave signed Active X at prompt if you want.)
>> >Turn off Java. Severely limit the sites that you allow Javascripts to
>run
>> >on. Turn off iFrame. You'll miss a little bit - at MSNBC you'll have to
>> >click to get the page rather than get that nice pop-out menu. Oh well.
>>
>> Nah. With Moz based browsers you can leave both scripting and Java
>> Script enabled with very little concern ... and quit the goddam
>> screwing around
>>
>>
>> Art
>> http://www.epix.net/~artnpeg
>
>Javascript works the same in Netscape as it does in IE -

Garbage. You don't have a clue.

>or any other
>browser. A Javascript that initiates a download in IE will in general
>initiate the same exact download in Netscape. A Javascript that grabs your
>personal data from a form and forwards it elsewhere in the clear works
>exactly the same in Netscape - or any other browser - as it does in IE.
>Learn a little web design and scripting. And if you had ever read a server
>log you would know that IE is listed as a Mozilla browser too.
>
>You are an idiot.

Nope. I know what I'm doing. dimbulb

Art
http://www.epix.net/~artnpeg

[mto]

Well, Mr. Expert - I guess that you should write a book so that you can
teach every internet security expert in the world - 99.9% of whom disagree
strongly with you - how things should PROPERLY be done. And of course, all
the rest of us too while you are at it.

Mozilla - you mean the one owned and developed by Netscape? This Netscape -
http://www.oag.state.ny.us/press/200...jun13b_03.html

And there is of course more - MUCH more -
http://www.google.com/search?q=spywa...8&start=0&sa=N

AHH - but you used the word "Mozilla" - so let's be really specific here -
http://www.google.com/search?hl=en&l...=Google+Search

Clearly you haven't the first clue what you are talking about.



<null@zilch.com> wrote in message
news:6gd1hvs5htpc0km9573edpg093pfqombra@4ax.com...
> On Sat, 12 Jul 2003 21:04:11 -0400, "mto" <nobody@nowhere.com> wrote:
>
> >You are wrong. See below.
> >
> ><null@zilch.com> wrote in message
> >news:5191hv0tt6j4jk2iojfluldqqt4p6iaccf@4ax.com.. .
> >> On Sat, 12 Jul 2003 19:21:17 -0400, "mto" <nobody@nowhere.com> wrote:
> >>
> >> >
> >> ><null@zilch.com> wrote in message
> >> >news:ajqvgv0hg4veu05927q244jsoqr3l9arge@4ax.com.. .
> >> >> On Sat, 12 Jul 2003 00:42:34 GMT, "YK" <YKnot@home.invalid> wrote:
> >> >>
> >> >> >People that recommend dumping IE and OE do not have the smarts to
> >clamp
> >> >down
> >> >> >on security.
> >> >>
> >> >> LOL! People who still use and endlessly fix and patch and screw
around
> >> >> because of IE and OE don't have a clue
> >> >>
> >> >> Art
> >> >> http://www.epix.net/~artnpeg
> >> >
> >> >Well I don't endlessly fix, patch, and screw around and I DO have a
clue,
> >>
> >> That statement is inconsistent with what you say later
> >
> >Nope - the MACHINE might be being scanned at 3 am, but it took me less
than
> >60 seconds to set it up to take care of itself.
>
> But you're not using the best product. And do you know how to set it
> up properly for a thorough on-demand scan of your drive(s)? Do you
> really believe that on demand scanning with with just one mediocre
> product is adequate?
>
> >> >having for many years run a very large and very busy website that
> >delivered
> >> >a minimum of 50 copies of whatever the latest viruses may be and
several
> >> >hundred spams a day to my inbox. I DO use XP, IE and OE because that
is
> >> >what 90% of my visitors use and it is convenient to be able to explain
> >where
> >> >problems they are having might lie - and I have NEVER even once gotten
a
> >> >virus, a trojan, a worm and have successfully avoided nearly all
spyware.
> >> >And when I drop by every now and then over at Steve Gibson's to get my
> >> >security checked, guess what? My computer simply doesn't exist
> >>
> >> So you've bought into the stealth myth. Stealthing most definitely
> >> does not mean your PC doesn't exist. The lack of a normal ping
> >> response simply indicates to a hacker that you're using a firewall.
> >> But whether or not that makes it any more difficult for him is
> >> questionable Adding software firewalls adds complexity and more
> >> potential vulnerabilities.
> >>
> >> >Get rid of McAffee/Norton/etc. and install PcCillin - www.
antivirus.com,
> >> >which is based on both definitions of known viruses and heuristic (the
> >> >others are definitions only) - as in if it looks like a duck and walks
> >like
> >> >a duck and quacks like a duck it is a duck.
> >>
> >> Guess what? The hated McAfee has been proven at Uni Hamburg to have
> >> the best heuristic scan engine of them all! Trend's products aren't
> >> bad but they're not top notch. The KAV and McAfee scan engines are the
> >> best.
> >
> >McAfee has the single most horrible tech support available - has done for
> >years. PcCillin's is top notch - you can even call them on the phone and
> >talk to a live person
>
> People who know what they're doing don't need tech support.
>
> >Further, I can recall countless times over the years that I've had
notices
> >from multiple McAfee &/or Norton users about some new virus they have
been
> >infected with and likely passed along to me. Never once got one of those
> >from a PcCillin user. And never once gotten one of those nasties.
Remember
> >I DID state that I get 50+ a DAY, EVERY DAY - and have for years now.
>
> That's because those products are most widely used and people stupidly
> put their trust in them to "protect" them. They're sure to get
> infected.
>
> >> >That way you have some prayer
> >> >of stopping a viral invasion if you happen to get something brand new
in
> >> >your email for which no one has yet come up with a definition. Set it
to
> >> >automatically update itself every 3 hours and to do a complete scan
every
> >> >night in the middle of the night.
> >>
> >> That proves it! You do screw around! I hardly ever bother with virus
> >> scanning any more. It's proven to be a waste of time since I never get
> >> infected. I never use realtime scanners since I've tested many of them
> >> and I don't put any faith in them to "protect" me.
> >
> >Repeat - I do not screw around. It is a simple matter of clicking a
button
> >to set up the program to perform the scan while I am sound asleep.
>
> LOL!
>
> >How do you "test" a realtime scan? Send yourself a virus or two?
Wouldn't
> >be without mine - but then a new virus within usually arrives in my inbox
> >the first 12 hours it is released.
>
> I've been testing av products for years. There's quite a bit to it.
>
> >If YOU never get infected that must be because you are LUCKY - since
> >obviously you really don't give a f*** and are not careful.
>
> Quite to the contrary.
>
> >I can only
> >surmise that you haven't many friends and acquaintances online, thus are
not
> >in any address books and therefore the latest scourge never reaches you.
>
> Attackments on my email server get deleted without even bothering to
> download or scan them. They're obvious. But even if I allow them to
> download, there's no way using Pegasus to execute them or get
> infected.
>
> >> >Get ZoneAlarm - spring for the PRO version.
> >>
> >> More screwing around. No need for a firewall either if you know what
> >> you're doing.
> >
> >HMMM - haven't visited many websites lately have you?
>
> I love to investigate all the alleged dangerous web sites just to see
> what IE users are getting hit with
>
> >> >Get the free version of AdAware and Spybot Search and Destroy. Set
them
> >> >both to run every time you reboot.
> >>
> >> Nah. Only run them after installing new software.
> >
> >You TRULY have absolutely NO comprehension of the spyware problem, do
you?
>
> Of course I do.
>
> >Or have you not noted that a 15 minute to MSNBC - or a short trip to
> >Google - or even a glance at Yahoo will install at least one spyware
program
> >on your machine without so much as a whisper to inform you?
>
> They don't infect me. No web site has any effect using Moz browsers.
>
> >SpyBot S&D
> >will, however, catch the thing and abort the download/installation for
you.
> >AdAware very nicely removes all those little gif-bots.
>
> No need for that.
>
> >And remember - I run
> >a large website and spend lots of time reading server logs. You might
> >dismiss privacy concerns, but I know EXACTLY what can be collected about
a
> >visitor without you ever knowing and without me even trying to collect
it.
>
> I don't dismiss them. I address them properly. You obviously don't.
>
> >> >Set your security everywhere to high.
> >> >
> >> >Make sure that you have NO trusted sites - inclding Microsoft, since
> >more
> >> >than once things have come rolling around claiming to be from
Microsoft
> >that
> >> >weren't.
> >> >
> >> >Turn off Active X. (You can leave signed Active X at prompt if you
want.)
> >> >Turn off Java. Severely limit the sites that you allow Javascripts to
> >run
> >> >on. Turn off iFrame. You'll miss a little bit - at MSNBC you'll have
to
> >> >click to get the page rather than get that nice pop-out menu. Oh
well.
> >>
> >> Nah. With Moz based browsers you can leave both scripting and Java
> >> Script enabled with very little concern ... and quit the goddam
> >> screwing around
> >>
> >>
> >> Art
> >> http://www.epix.net/~artnpeg
> >
> >Javascript works the same in Netscape as it does in IE -
>
> Garbage. You don't have a clue.
>
> >or any other
> >browser. A Javascript that initiates a download in IE will in general
> >initiate the same exact download in Netscape. A Javascript that grabs
your
> >personal data from a form and forwards it elsewhere in the clear works
> >exactly the same in Netscape - or any other browser - as it does in IE.
> >Learn a little web design and scripting. And if you had ever read a
server
> >log you would know that IE is listed as a Mozilla browser too.
> >
> >You are an idiot.
>
> Nope. I know what I'm doing. dimbulb
>
> Art
> http://www.epix.net/~artnpeg

[Lance Delacroix]

On Sat, 12 Jul 2003 15:13:04 -0500, M.L.
<mel2000remoovethis@hotmail.com> prounounced a fatwah thus:

>
>>Begin by doing things right, which means hardening XP networking:
>>
>>http://www.hsc.fr/ressources/breves/...win.en.html.en
>>
>>Then it makes not a twit of difference which Firewall you use since
>>you don't need one. I like Sygate PF for its excellent traffic log.
>>This can be of some use in tracking down unwanted apps trying to gain
>>internet access. But you also need a good running process viewer or
>>two. You should also use Spybot and AdAware.
>>
>>Next, dump IE and OE and use only apps that have been designed with
>>security in mind. Use the latest Mozilla or Mozilla based browsers. NS
>>7.10 is excellent. Use something like Privoxy for ad blocking, etc.
>
>Telling strangers to just dump the apps they've been using is almost
>always bad advice.

It turned ou to be great advice for me. I learned a LOT by following
such advice.

> Fact is, no one will know how secure Mozilla is
>until it's been tested like IE and Outlook. I use IE and used to use
>Outlook, and had no security problems with either after configuring
>them properly.

Oh, you mean you removed them. Good for you.

>
>>For email and newsgroups, you can use Netscape. I prefer using Pegasus
>>and Free Agent.
>
>That sounds like spamming.