| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Tue, 22 Sep 2009 15:01:44 -0400 From: "G. D. Fuego" <gdfuego@...il.com> To: Steven Anders <anderstev@...il.com> Cc: "full-disclosure@...ts.grok.org.uk" <full-disclosure@...ts.grok.org.uk> Subject: Re: Dumb question: Is Windows box behind a router safe ? On Sep 22, 2009, at 2:29 PM, Steven Anders <anderstev@...il.com> wrote: > > 1. There are many exploits and vulnerabilities of Windows, but I > was wondering if outdated Windows box behind router generally > safe ? Since, the Windows box was not updated with the latest > updates. > > I have always thought that having a computer behind the router > (since router has firewall) is generally safe, but I would love to > hear insights or thoughts. Nope. A firewall should protect you against inbound connection attempts only. These days a lot of malware is installed via other means like exploiting vulnerabilies in browsers and other client applications (flash, acrobat and various active x controls). Or just prompt the user to install it. > > > 2. If a Windows box is behind a router, could a botnet be installed > to it ? Assuming, the end user does not install/download any > applications from the Internet and always use Firefox. Software installs aren't always obvious. Trusting a java applet for example. _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists