AmigaActive (1482/1728)

From:Neil Bothwick
Date:27 Jun 2001 at 12:04:59
Subject:Re: Internet Abuse and Port Hacks (reply)

David McMinn said,

> --- In amigactive@y..., "Neil Bothwick" <neil@w...> wrote:

>> Thanks Oovis. I wrote about that for AA 23 yesterday, now everyone
>> will have read it before the magazine comes out :(

> Is it going to include all the criticism that Gibson is getting?

No, it's just a pointer to the site.

>> Fortunately, we don't appear to have any Zombie programs... yet.

> Surprising, given how easy the code for it would be once it's running
> (it would just be a case of a really simple IRC client and a high
> level input handler, if you wanted one like the Sub7 one). The hardest
> bit would seem to be getting it onto people's machines and infecting
> programs without having any adverse effects and giving it's presence
> away (like corrupting exe's, strange tasks running, etc).

There are that many oddly names tasks running one Amigas that an extra
one would usually go unnoticed.

>> These programs are very hard to detect, except by their results. A
>> personal firewall doesn't help here as it is designed to stop
>> unauthorised traffic coming in, not going out.

> I've used ZoneAlarm (like Oovis) and it blocks unauthorised ingoing
> and outgoing (based on the program name) traffic.

So it won't send email unless the calling program is one it recognises?
It wouldn't be too hard for a trojan to spoof as YAM or THOR.

> I thought that
> should be the job of a firewall - just because something is sending
> outgoing traffic doesn't mean it can be trusted (e.g. our uni is going
> to try to block the students using IM services with a firewall soon
> :).

I did say "personal firewall" which are generally intended to protect
you from atacks and scans. A full blown firewall protects against abuse
from both sides of the network, but doesn't usually forbid email.

> I guess this has been asked loads, but is there any (good) firewalls
> for the Amiga (not including the one in MiamiDx)?

Not that I know of. Until MiamiDx came along there was no real need for
one as it wasn't possible for an Amiga to act as a router.

Cheers

Neil



Neil Bothwick - New Media Editor, Amiga Active Magazine

Every time I jump on the bandwagon all its wheels fall off.

Quote carefully and read all ADMIN:README mails
To unsubscribe mailto:amigactive-unsubscribe@yahoogroups.com
Anyone sending unsubscribe messages to the list will be SHOT!

Your use of Yahoo! Groups is subject to http://docs.yahoo.com/info/terms/