Feeds

Win-XP firewall defeats Gibson NanoProbes

How can the bad kiddies find you if Steve can't?

  • alert
  • submit to reddit

Protecting against web application threats using SSL

A reader recently told me that the default settings on his Win-XP Pro firewall made him invisible on the Net, at least according to Steve Gibson's ShieldsUp security diagnostic tool. But this isn't what Gibberson is worried about. As we know, he's terrified that Harry Homeowner users will be Trojanized six ways to Sunday by malicious teenagers bent on using their raw sockets to destroy the Internet.

So I installed the XP Home Edition last night and enabled the firewall with default settings only. Then I took a little trip over to GRC and submitted myself to an onslaught of Steve's unimaginably sophisticated NanoProbe Technology.

I could almost feel the Ninja-like power of Steve's NanoProbes assaulting my machine like a million tiny 'vibrating palms'.

And I was shocked, shocked, I tell you, to find that ShieldsUp gave my now explosively deadly Windows box a perfect, 'full stealth' score. This new weapon of mass destruction which I'm typing on is absolutely invisible.

"For all intents and purposes your computer doesn't exist to scanners on the Internet!" Steve explains.

God, what a relief.

So of course, if Steve's 101% pure assembly language scanning engine can't find my machine on the Net, there's absolutely no possibility that some malicious kiddie could do so. And of course, to commandeer an XP box for destructive purposes, the kiddies have to feed the victim a Trojan, or find the machine with a scanning utility.

A really good attack will defeat anything; but Steve's concern, endlessly repeated, is clueless Windows users who don't even know what a firewall is, and who fall victim to the simplest tricks. Now they've got a firewall. It could be better (no outbound filtering), but it will greatly reduce the number of clueless Web surfers getting r00t3d by lame IRC kiddiots.

And, as Steve says, XP boxes 'don't exist' on the Net. Thus the scanning route to destruction is off now -- unless, of course, Steve's ShieldsUp system is just some lame prop he uses to mystify the masses and propagate his bogus legend of technical superiority.

If ShieldsUP is a crap toy, and XP really is a weapon broadcasting its deadly raw sockets to the dark side, then Steve is a fraud. But if the XP firewall really offers 'full stealth' right out of the box, then Steve is a fraud.

So which is it? ®

The Proof

ShieldsUp step one
ShieldsUp step two

Reducing the cost and complexity of web vulnerability management

More from The Register

next story
Spies would need SUPER POWERS to tap undersea cables
Why mess with armoured 10kV cables when land-based, and legal, snoop tools are easier?
Early result from Scots indyref vote? NAW, Jimmy - it's a SCAM
Anyone claiming to know before tomorrow is telling porkies
TOR users become FBI's No.1 hacking target after legal power grab
Be afeared, me hearties, these scoundrels be spying our signals
Jihadi terrorists DIDN'T encrypt their comms 'cos of Snowden leaks
Intel bods' analysis concludes 'no significant change' after whistle was blown
Home Depot: 56 million bank cards pwned by malware in our tills
That's about 50 per cent bigger than the Target tills mega-hack
Hackers pop Brazil newspaper to root home routers
Step One: try default passwords. Step Two: Repeat Step One until success
China hacked US Army transport orgs TWENTY TIMES in ONE YEAR
FBI et al knew of nine hacks - but didn't tell TRANSCOM
Microsoft to patch ASP.NET mess even if you don't
We know what's good for you, because we made the mess says Redmond
NORKS ban Wi-Fi and satellite internet at embassies
Crackdown on tardy diplomatic sysadmins providing accidental unfiltered internet access
prev story

Whitepapers

Secure remote control for conventional and virtual desktops
Balancing user privacy and privileged access, in accordance with compliance frameworks and legislation. Evaluating any potential remote control choice.
WIN a very cool portable ZX Spectrum
Win a one-off portable Spectrum built by legendary hardware hacker Ben Heck
Intelligent flash storage arrays
Tegile Intelligent Storage Arrays with IntelliFlash helps IT boost storage utilization and effciency while delivering unmatched storage savings and performance.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
Beginner's guide to SSL certificates
De-mystify the technology involved and give you the information you need to make the best decision when considering your online security options.