TIP: Click on subject to list as thread! ANSI
echo: nthelp
to: Antti Kurenniemi
from: Rich
date: 2005-03-09 22:27:56
subject: Re: malicious software detection tool
From: "Rich" 

This is a multi-part message in MIME format.

------=_NextPart_000_0221_01C524F7.3DE66AC0
Content-Type: text/plain;
        charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable

   If you want to see what a patched user gets you should accept the =
updates that a patched user accepts.

Rich

  "Antti Kurenniemi"  wrote
in message =
news:422fdbc5$1{at}w3.nls.net...
  No, I specifically want to see what hits a "patched" system. I know an =

  unpatched one will get trashed in a second, nothing interesting there.


  Antti Kurenniemi

  "Rich"  wrote in message news:422f8202{at}w3.nls.net...
     For your trap system you should turn off all updates if you don't =
want it=20
  to reflect a typical users machine.  If you do want it to reflect a =
typical=20
  user then you shouldn't filter updates.

  Rich
    "Antti Kurenniemi"  wrote
in message=20
  news:422f361b$1{at}w3.nls.net...
    I don't want it pushed to me. I appreciate MS giving it a way, but I =
want=20
  to
    choose when I get it - and I want others to run it for at least half =
a=20
  year
    before I give it a try .

    It's mostly an irritation reflex from my part, since it's not an =
update=20
  and
    it's being delivered through windows update.


    Antti Kurenniemi
    (and at the office I have a "trap" system that I specifically want =
to get
    infected whenever possible, to see what's floating around - there, =
too,=20
  I'd
    rather not have the tool automatically pushed)




------=_NextPart_000_0221_01C524F7.3DE66AC0
Content-Type: text/html;
        charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable








   If you
want to see what a =
patched user=20
gets you should accept the updates that a patched user =
accepts.
 
Rich
 

  "Antti Kurenniemi" <NOantti{at}SPAManttikPLEASE.com=">mailto:NOantti{at}SPAManttikPLEASE.com">NOantti{at}SPAManttikPLEASE.com=
>=20
  wrote in message news:422fdbc5$1{at}w3.nls.net...No, I=20
  specifically want to see what hits a "patched" system. I know an =
unpatched=20
  one will get trashed in a second, nothing interesting =
there.Antti=20
  Kurenniemi"Rich" <{at}> wrote in
message news:422f8202{at}w3.nls.net...&nbs=
p; =20
  For your trap system you should turn off all updates if you don't want =
it=20
  to reflect a typical users machine.  If you do want it to =
reflect a=20
  typical user then you shouldn't filter =
updates.Rich =20
  "Antti Kurenniemi" <NOantti{at}SPAManttikPLEASE.com=">mailto:NOantti{at}SPAManttikPLEASE.com">NOantti{at}SPAManttikPLEASE.com=
>=20
  wrote in message news:422f361b$1{at}w3.nls.net...=
 =20
  I don't want it pushed to me. I appreciate MS giving it a way, but I =
want=20
  to  choose when I get it - and I want others
to run it =
for at=20
  least half a year  before I give it a try=20
  <g>.  It's mostly an
irritation reflex from my =
part, since=20
  it's not an update and  it's being delivered through =
windows=20
  update.  Antti
Kurenniemi  (and at the =
office I have=20
  a "trap" system that I specifically want to
get  infected =
whenever=20
  possible, to see what's floating around - there, too, =
I'd  rather=20
  not have the tool automatically=20
pushed)

------=_NextPart_000_0221_01C524F7.3DE66AC0--

--- BBBS/NT v4.01 Flag-5
* Origin: Barktopia BBS Site http://HarborWebs.com:8081 (1:379/45)
SEEN-BY: 633/267 270 5030/786
@PATH: 379/45 1 106/2000 633/267
SOURCE: echomail via fidonet.ozzmosis.com

Email questions or comments to sysop@ipingthereforeiam.com
All parts of this website painstakingly hand-crafted in the U.S.A.!
IPTIA BBS/MUD/Terminal/Game Server List, © 2025 IPTIA Consulting™.