From: "Geo" 

This is a multi-part message in MIME format.

------=_NextPart_000_0097_01C5B979.995BF890
Content-Type: text/plain;
        charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable

I notice you didn't have anything to say about my comparison to =
activation.. if' it's so useless, why annoy so many honest users with = it?

Geo.
  "Rich"  wrote in message news:4328c3f4{at}w3.nls.net...
     George's suggestion is a great example of bad use of encryption, =
something that is not encryption at all but simply complicated = obfuscation.

  Rich

    "Paul Ranson"  wrote in message =
news:4328b57d{at}w3.nls.net...
    Encrypting the registry would just mean at a simplest level running =
the=20
    firewall configuration app and poking keystrokes at it rather than =
just=20
    editing the registry. Keeping it hidden isn't rocket science.

    Not running untrusted code would seem to be the first line of =
defence. And=20
    having the firewall physically distinct a distant second. I don't =
see that=20
    any local firewall significantly adds to my security, it just may =
alert me=20
    to unauthorised activity. But then my router's firewall log does =
that.

    Paul

    "Geo."  wrote in message =
news:432857bf$1{at}w3.nls.net...
    > You are missing the point, step one is to get your evil.exe code =
onto my
    > machine and run it.
    >
    > I don't have to have code executing on your machine to change your =

    > firewall.
    > A simple javascript included in a pdf file and emailed to you or =
posted to=20
    > a
    > newsgroup should be enough to disable your firewall fire up tftp =
and
    > download your evil.exe code and run it. (I don't really know if I =
can do=20
    > all
    > that in javascript but I'm just trying to describe a technique =
that's been
    > used by countless hackers)
    >
    > Your firewall is useless against an attack where the firewall =
needs to be
    > diabled before the evil.exe can be downloaded and run.
    >
    > Something as simple as encrypting the registry key data would =
prevent this
    > or at least make it infinitely more difficult.
    >
    > Security is not an absolute, it's a shade of grey and the idea is =
to have
    > your grey more white than black.. this sillyness definitely moves =
you
    > towards black.
    >
    > Geo.


------=_NextPart_000_0097_01C5B979.995BF890
Content-Type: text/html;
        charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable








I notice you didn't have anything to =
say about my=20
comparison to activation.. if' it's so useless, why annoy so many honest = users=20
with it?
 
Geo.

  "Rich" <{at}> wrote in message news:4328c3f4{at}w3.nls.net...
    
George's suggestion is a =
great=20
  example of bad use of encryption, something that is not encryption at =
all but=20
  simply complicated obfuscation.
   
  Rich
   
  
    "Paul Ranson" <paul{at}barkto.com>">mailto:paul{at}barkto.com">paul{at}barkto.com>
wrote in =
message news:4328b57d{at}w3.nls.net...En=
crypting=20
    the registry would just mean at a simplest level running the =
firewall=20
    configuration app and poking keystrokes at it rather than just =
editing=20
    the registry. Keeping it hidden isn't rocket science.Not =
running=20
    untrusted code would seem to be the first line of defence. And =
having=20
    the firewall physically distinct a distant second. I don't see that =
any=20
    local firewall significantly adds to my security, it just may alert =
me=20
    to unauthorised activity. But then my router's firewall log does =

    that.Paul"Geo."
<fake{at}barkdom.com>">mailto:fake{at}barkdom.com">fake{at}barkdom.com>
wrote in =
message news:432857bf$1{at}w3.nls.net...=
>=20
    You are missing the point, step one is to get your evil.exe code =
onto=20
    my> machine and run
it.>> I don't have to have =
code=20
    executing on your machine to change your >
firewall.> =
A simple=20
    javascript included in a pdf file and emailed to you or posted to =
>=20
    a> newsgroup should be enough to disable your firewall fire =
up tftp=20
    and> download your evil.exe code and run it. (I don't really =
know if=20
    I can do > all> that in javascript
but I'm just trying =
to=20
    describe a technique that's been> used by countless=20
    hackers)>> Your firewall is useless
against an attack =
where=20
    the firewall needs to be> diabled before the evil.exe can be=20
    downloaded and run.>> Something as simple as =
encrypting the=20
    registry key data would prevent this> or at least make it =
infinitely=20
    more difficult.>> Security is not an
absolute, it's a =
shade of=20
    grey and the idea is to have> your grey more white than =
black.. this=20
    sillyness definitely moves you> towards =
black.>>=20
   
Geo.

------=_NextPart_000_0097_01C5B979.995BF890--

--- BBBS/NT v4.01 Flag-5