Stop DCOM exploiting

Discussion in 'other anti-malware software' started by Pretender, Sep 3, 2003.

Thread Status:
Not open for further replies.
  1. Pretender

    Pretender Registered Member

    Joined:
    Apr 23, 2002
    Posts:
    670
    Location:
    Virtual Paradise
    http://grc.com/dcom/
     
  2. controler

    controler Guest

    Two thumbs up for Steve again :D
    I have been using Kasperskys firewall for some time now an really like it. Have blocked 135 TCP and UDP in DCOM

    con
     
  3. spy1

    spy1 Registered Member

    Joined:
    Dec 29, 2002
    Posts:
    3,139
    Location:
    Clover, SC
    Thanks. Got it, used it and it didn't have any adverse effects on anything here. Thumbs up!

    (Amazing - that and a M$ critical update on the same day - and my computer still works!) Pete
     
  4. JacK

    JacK Registered Member

    Joined:
    Jun 20, 2002
    Posts:
    737
    Location:
    Belgium -Li?ge
    Hello,

    Any FW prevents this exploit.

    I don't see any benefit to this little gadget : on NT OSs, you may disable this services in a breeze.

    On win 98/Me, just rename rpcss.exe in rpcssold.exe for instance and you are done ;)

    Be aware that depending what applications you are running, you might need DCOM on NT OSs.

    St Gibson already made the same self promotion with UnPlug and Pray to turn off 2 services (UPnP and SSDP) last year.

    Just self advertisement IMHO ;)

    A 10 year kid could write a script closing those services : no need for a GUI promoting the rest of his stuff :D

    Rgds,
     
  5. spy1

    spy1 Registered Member

    Joined:
    Dec 29, 2002
    Posts:
    3,139
    Location:
    Clover, SC
    JacK - There's an awful lot to be said for simplicity.

    How many people out there do you think are running without firewalls?

    How many people out there are going to know how to fix the problem manually? Bother to learn how and then do it?

    How about the scenario where your firewall's icon continues to be there - but it's actually not working? Or what if your firewall's mis-configured?

    Self-promotion? Or simplified self-protection? And, even if it were self-promotion - if the end result is that a whole lot more people's computers get more secure through the application of this program than would have otherwise - who cares?

    Anyone who experiences problems after the application of the program would only have to "turn it off" to recover.

    I see absolutely no downside to using this program (nor any of the other simple, effective programs Gibson puts out).

    While having your level of knowledge and expertise would be wonderful indeed, most of us out here don't - and just want something quick, simple and effective to close the gap.

    This little program does that. Pete
     
  6. JacK

    JacK Registered Member

    Joined:
    Jun 20, 2002
    Posts:
    737
    Location:
    Belgium -Li?ge
    Regards,
     
  7. mR.MTLYPZYK

    mR.MTLYPZYK Guest

    http://www.wilderssecurity.com/showthread.php?t=12498;start=0#msg80332
     
  8. Pretender

    Pretender Registered Member

    Joined:
    Apr 23, 2002
    Posts:
    670
    Location:
    Virtual Paradise
    There are so many people that have personal computers and aren't even updating security patches or anything. There is probably a large percentage of users that have no idea what a firewall is, spyware, etc. The way I see it is keep it as simple as possible and keep trying to remember where we were when we first heard "PC"........."What's that?!?!? "Firewall"......"My computers not near anything hot!!!" So on and on and on :eek:
     
  9. Rickster

    Rickster Guest

    Look how the membership has grown here the last two years. Everywhere I go, friends, family, novice busines oweners and so on, when asked what they're doing to protect themselves on-line, don't know what the heck we talk about here and I was one of them. Thanks to the gracious mentoring by people here at Wilders and people like Steve Gibson at GRC, people are finding simple, easy to use solutions that protect all of us in the end.

    Not being a programmer, I'll never achieve the level of understanding the folks here who help us do, but by sharing what I've learned and encouraging others to visit here, I see them getting pretty excited about tackling security and privacy gaps that threaten all of us - it's one person at a time. I'm proud of this forum and everyone in it, including Steve Gibson at his site, where I first cut my teeth on the subject. I can't express the gratitude, or repay the generosity expressed by so many who help others through forums like this. Always keep sight of the concept of mentoring and the intended audience.

    Thanks, Rick
     
Thread Status:
Not open for further replies.