Discussion in 'privacy technology' started by Reality, Aug 5, 2014.
There's another reason for creating address specific firewall rules for DNS.
To view Resolver Cache:
Open Command Prompt
Type: ipconfig /displaydns <enter>
NOTE: When DNS Client service is set to manual or disabled command prompt will show:
Could not display the DNS Resolver Cache.
Also does the Network Connections Status page (General) tab show errors (counts)?
When you set it to manual or disable it, are you manually setting your DNS server IPs? Regarding the resolver cache, I'm pretty sure that when the service is disabled, there is no Resolver Cache. As long as I manually set DNS IPs, there hasn't been any errors displayed.
@ noone_particular Re Post #446
Those apps are still very useful, & "possibly" some might work on other OS's.
Yes HTAs did used to be run as trusted by default !
Script Defender is what i've been using also.
No wireless Anything here !
Yes Seconfig XP does add 'QueryIPMatching' reg key to the Windows registry with a value of 1?
In both HKLM key locations:
Yes, the DNS servers are manually set & service is disabled. So you read o error counts in connection status?
Not sure, but \Dnscache\Parameters may be incorrect key path.
I haven't seen any. I don't see where they'd be displayed. Got a screenshot of this?
This would display error counter in status window. Disclaimer : Modifying registry may cause
problems. Use the information provided at your own risk. More info at link.
// No need to download and import registry files. Just read alternative instructions.
Thank you. The possibility of someone changing stuff as the radio receiver translates wifi to mouse signals scares me a bit, but I still think it's unlikely and not useful to a criminal. But I really appreciate your comments, as usual
A bit OT, since few of you commented about bad and expensive mouses:
I once had a wifi mouse some vendor gave us in the '90s. It was a clunky, slow, huge, terrible device. Trash bin in a day.
Technology has changed.
When my good old normal mouse stopped working and was beyond any repair or cleaning, I was unable to get a non wifi mouse in any of local stores here. They thought I was out of my mind wanting a mouse with a cord
So the one I now have is M185 by Logitech, was about $12 almost a year ago, last June. Original battery (one AA no special brand alkaline) still functions fine. Some other Mxxx is about 6 months old and also runs on the original battery that's included.
The 2Ghz radio receiver/translator is tiny. It sticks out of the laptop in the back exactly 5mm so can stay there forever.
No slowness, fast as a normal mouse. No crosstalk, each has some unique ID.
No special drivers needed. Standard M$ HID and mouse drivers for XP dated 2001 recognized it, as did newer drivers on Win7. Of course we don't know the security of Logitech conversion routines from radio to mouse data inside that little receiver, so it might be of some concern I suppose if they don't throw away expected USB/URB... packets going up and down and can translate them into something other than mouse x,y,button parameters and windows accepts it.
It would ultimately depend on who you regard as a potential adversary. If you're a whistle blower, leaker, or a dissident, your potential adversaries could be much more formidable than common criminals. I wonder what is possible with a small parabolic antenna tuned to the correct frequency.
That surprises me. They're reasonable and easily available here. Stores like WalMart and Meijers have them, as do many of the discount "Dollar Store" type places.
When you said that, I thought well sometimes it is an advantage to be in a country slow to adopt the "latest and greatest", afterall, such as mine. I don't have a problem getting wired mice here. I bought an el cheapo Logitech. When I see a good deal on a better wired mouse, I;ll go for that. Since people here think of a number and double it, I might be waiting a while.
Regarding batteries, I have a real aversion to having to shell out for them...endlessly. In times past I would avoid anything with batteries like the plague, until I found out about eneloops. I have heaps of (genuine) eneloops which are amazingly forgiving and extremely reliable. They just go and go and go and Ive utterly thrashed them for years. They STILL haven't even had a slow reconditioning charge. High demand devices such as Cameras only use the "top end" of batteries so I'd just put those in the wireless mouse to get a bit more use before recharge. I found I was getting out of kilter with recharging and the logs I keep because they lasted so long in the mouse. That said, if all I had to worry about was batteries there'd be no worries. It scares me to think devices are going to do away with ports and plugs etc so your only choice will be wireless.
I also wouldn't count on it that what TLAs call crime and what ordinary people call crime are necessarily the same. What their agenda is, is total control and to reign in anyone who crosses the line. In other words we're all at risk of being spied on. Afterall you're a terrorist for any number of reasons now.. Indeed they should be investigating themselves, not harmless people just exercising their right to choose. There's much more to this can of worms than meets the eye.
If anyone has access to the last releases of SSM, Malware Defender and Kerio Personal Firewall... can they be uploaded somewhere please? I just realised I had VirtualBox installed, so I cracked open two VMs, one for Ubuntu x64 and the other for XP SP2 x64. I am just wondering, worth running an update on XP or disable auto updates altogether? Gotta' figure out what to replace this funny IE 6 with...
Here are all the QueryIPMatching REG entries i could locate that Seconfig XP added
I'm not sure if any of those will work on XP-x64. Regarding Kerio, I'm not sure what the last version is or if it's any good. A while back, I uploaded the last version of SSM-Pro here.
For verification purposes, the file hashes are:
AFAIK Kerio 2.1.5 which is the version we generally refer to here, is only for 32bit. If it's not the last version, from what I remember it was the last rules based only version. It also became a bit bloated. I don't update XP and haven't for years. I wouldn't recommend IE6. You might want to try SeaMonkey. Some of us are becoming more and more wary of FF. It's getting harder to keep track of whats going on with it. They've also so been too chummy with Google. I'm still using it, but I won't go past version 28.0 and when I can, I'll ditch it. As if there wasn't enough to keep our eyes on, we also can't guarantee that future versions of something won't be compromised in some way.
Filter rule in Kerio
Protocol: Other (2)
Direction: Both directions
Local: Any port
Application: Any application
Remote: Any address > Any port
// only rule set in Kerio.
Windows XP uses IGMPv3 by default.
Supported values/versions (Microsoft Knowledgebase)
Value | IGMP version
2 | 1
3 | 2
4 | 3 (default)
Do not have 'IGMPVersion' key listed under HKLM...\Tcpip\Parameters key path.
I do have 'IGMPLevel' key with data value of 0 (disable IGMP and MLD processing)
Internet Group Management Protocol (IGMP) is used for IPv4 multicast.
Multicast Listener Discovery (MLD) enables you to manage subnet multicast membership for IPv6.
The IGMPLevel entry is supported by Windows 2000, Windows XP Professional, and the Windows Server
The Kerio product... is it also known as Kerio WinRoute Firewall?
When I put together the reference on post 425, disabling UPnP with GRCs UNPNP utility resulted in a couple of prompts from Kerio for protocol 2 in what it called an unknown event. The IP was 188.8.131.52, which is IGMP version 3. See https://en.wikipedia.org/wiki/Multicast_address
IGMP traffic appears to be involved in some UPnP functions.
If I recall, the old versions of KPF were based on the WinRoute firewall. The WinRoute firewall itself was a commercial product.
KPW won't work on x64. It will install fine, but after reboot, throws up 32bit runtime initialisation errors. No biggie, I will create a XP SP3 x86 VB
Sunbelt Personal Firewall 4 does not run on the following operating systems: (Sunbelt acquired Kerio)
* Windows NT
* Windows 2000 Server
* Windows 2003 Server
* Windows 95
* Windows 98 or Windows 98 SE (Second Edition)
* Windows ME
* Windows Vista
*64 bit Versions of Windows
Malware Defender (Help file)
* Windows XP (32-bit)
* Windows 2003 (32-bit)
* Windows Vista (32-bit)
* Windows 2008 (32-bit)
* Windows 7 (32-bit)
Not sure on SSM.
I'm pretty sure that both versions of SSM are 32 bit only. If I recall, there wasn't much available for XP-64bit. Not many used it.
Kerio is set to alert on IGMP and SSDP filter rules. When testing GRCs UNPNP utility there were no prompts
Are you looking for Kerio 2.1.5, or the latest Sunbelt version (4.7.4 and 4.7.5) - both are 32 bit, stop at Win XP-Sp3.
Or are you looking for the paid Kerio for enterprises?
Interesting. On every test unit I've tried it on, I get the same prompt.
In the "Customize Rule" options, the local and remote ports are shown as zero. I think Kerio regards port zero as any port or first available port, not sure.
Perhaps one of your existing rules is already allowing or blocking it.