addressalign-toparrow-leftarrow-rightbackbellblockcalendarcameraccwcheckchevron-downchevron-leftchevron-rightchevron-small-downchevron-small-leftchevron-small-rightchevron-small-upchevron-upcircle-with-checkcircle-with-crosscircle-with-pluscrossdots-three-verticaleditemptyheartexporteye-with-lineeyefacebookfolderfullheartglobegmailgooglegroupsimageimagesinstagramlinklocation-pinm-swarmSearchmailmessagesminusmoremuplabelShape 3 + Rectangle 1outlookpersonStartprice-ribbonImported LayersImported LayersImported Layersshieldstartickettrashtriangle-downtriangle-uptwitteruseryahoo

Re: [linux-5] Moving back to Windows from Linux?

From: Wong Boon H.
Sent on: Monday, October 31, 2011 3:06 PM
Thanks for the gfi email security test. Our Zimbra's ClamAV blocked everything. :)

Talking about Microsoft security, they are boosting about how security their new Windows and IE are and have been certified and used by both Government and Military in US and UK. However, I find Windows is so much more frustrating to use now due to enhanced security. It prompts before proceeding to execute everything. Ironically, they are now condemning how unsafe it is to use Firefox when IE used to be the most insecured browser of all.

And talking about Firefox, it has become so resource hunger and slow just like IE. Thus, I have given up on Firefox and switched to Chrome.

Boon Hong

From: anton_kg <[address removed]>
To: [address removed]
Sent: Monday, 31 October[masked]:59 AM
Subject: Re: [linux-5] Moving back to Windows from Linux?

Boon Hong,

On 31 October[masked]:52, Wong Boon Hong <[address removed]> wrote:
> Some attachments are clever enough to put multiple extension such that
> my_secret.doc.exe

Yes, these tricks are very well known:
http://www.theregister.co.uk/2003/02/01/trojan_writers_exploit_outlook_express/

you better install a fix for that if you haven't since 2003.

Here is the link with more tricks:
http://www.gfi.com/emailsecuritytest/

I don't think the list is complete, but you've got an idea that every
new trick is the security problem of software in use, not a user.

You need to keep your system up to date. It's not vendor's over-hype
and there is nothing to argue about.

ps.
@Mark: you need to run your payload first, we don't discuss
post-exploitation stage (reverse shell over dns or whatever) yet.



--
Please Note: If you hit "REPLY", your message will be sent to everyone on this mailing list ([address removed])
http://www.meetup.com/sg-linux/
This message was sent by anton_kg ([address removed]) from The Singapore Linux Meetup Group.
To learn more about anton_kg, visit his/her member profile: http://www.meetup.com/sg-linux/members/4500727/
To unsubscribe or to update your mailing list settings, click here: http://www.meetup.com/sg-linux/settings/
Meetup, PO Box 4668 #37895 New York, New York[masked] | [address removed]



People in this
Meetup are also in:

Sign up

Meetup members, Log in

By clicking "Sign up" or "Sign up using Facebook", you confirm that you accept our Terms of Service & Privacy Policy