|
Next: BugHunter v2.2d Released September 2nd, 2007
|
| Author |
Message |
External
Since: Sep 08, 2007
Posts: 1
|
(Msg. 1) Posted: Sat Sep 08, 2007 1:07 pm
Post subject: Would a firewall have protected Josh Glazebrook from the FBI?
Archived from groups: alt>privacy>spyware, others (more info?)
|
|
|
I curiuos as to why a firewall, properly configured, would not have
protected Josh Glazebrook from the FBI?
According to the news reports
(http://www.vnunet.com/vnunet/news/2194604/fbi-tracked-bomb-teen-spyware),
the FBI installed routine CIPAV spyware via myspace to this kid's computer
which tracked
The computer's IP address
The MAC address
The person's username
The last URL visited
A list of open ports
Computer programs that are running
The operating system
The internet browser and version
The computer's registered owner
The IP address of every computer which the PC connects for 60 days
I'm curious.
Would a properly configured firewall have prevented this?
What was the weak link here? |
|
| Back to top |
|
 | |
External
Since: Oct 14, 2007
Posts: 190
|
(Msg. 2) Posted: Sat Sep 08, 2007 2:45 pm
Post subject: Re: Would a firewall have protected Josh Glazebrook from the FBI? [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
|
|
|
Do you really think that there is actually a COTS software or hardware that
is capable of blocking what the FBI wants to do to you? Have you heard of
the Patriot Act.
--
Newsgroup Trolls. Read about mine here http://www.pcbutts1.com/downloads
The list grows. Leythos the stalker http://www.leythosthestalker.com, David
H. Lipman, Max M Wachtell III aka What's in a Name?, Fitz,
Rhonda Lea Kirk, Meat Plow, F Kwatu F, George Orwell
"Act of Patriots" <patriotacter.DeleteThis@yahoo.com> wrote in message
news:8jDEi.2023$ZA5.897@nlpi068.nbdc.sbc.com...
>I curiuos as to why a firewall, properly configured, would not have
> protected Josh Glazebrook from the FBI?
>
> According to the news reports
> (http://www.vnunet.com/vnunet/news/2194604/fbi-tracked-bomb-teen-spyware),
> the FBI installed routine CIPAV spyware via myspace to this kid's computer
> which tracked
> The computer's IP address
> The MAC address
> The person's username
> The last URL visited
> A list of open ports
> Computer programs that are running
> The operating system
> The internet browser and version
> The computer's registered owner
> The IP address of every computer which the PC connects for 60 days
>
> I'm curious.
> Would a properly configured firewall have prevented this?
>
> What was the weak link here? |
|
| Back to top |
|
| |
External
Since: Sep 08, 2007
Posts: 3
|
(Msg. 3) Posted: Sat Sep 08, 2007 8:45 pm
Post subject: Re: Would a firewall have protected Josh Glazebrook from the FBI? [Login to view extended thread Info.]
Imported from groups: per prev. post (more info?)
|
|
|
|
|
| Back to top |
|
| |
External
Since: Feb 26, 2006
Posts: 152
|
(Msg. 4) Posted: Sat Sep 08, 2007 8:50 pm
Post subject: Re: Would a firewall have protected Josh Glazebrook from the FBI? [Login to view extended thread Info.]
Imported from groups: per prev. post (more info?)
|
|
|
|
|
| Back to top |
|
| |
External
Since: Sep 08, 2007
Posts: 3
|
(Msg. 5) Posted: Sat Sep 08, 2007 9:04 pm
Post subject: Re: Would a firewall have protected Josh Glazebrook from the FBI? [Login to view extended thread Info.]
Imported from groups: per prev. post (more info?)
|
|
|
|
|
| Back to top |
|
| |
External
Since: Apr 07, 2005
Posts: 34
|
(Msg. 6) Posted: Sat Sep 08, 2007 9:16 pm
Post subject: Re: Would a firewall have protected Josh Glazebrook from the FBI? [Login to view extended thread Info.]
Imported from groups: per prev. post (more info?)
|
|
|
|
|
| Back to top |
|
| |
External
Since: Aug 05, 2005
Posts: 424
|
(Msg. 7) Posted: Sat Sep 08, 2007 9:20 pm
Post subject: Re: Would a firewall have protected Josh Glazebrook from the FBI? [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
|
|
|
Act of Patriots wrote:
> I curiuos as to why a firewall, properly configured, would not
> have protected Josh Glazebrook from the FBI?
How do you know that a firewall was running?
Glazebrook was probably running XP on his PC, and probably just the
in-bound default firewall was running. XP's native firewall does not
perform out-bound permission checking.
Note that the Sophos guy did not say if his software (or any other AV
package) would detect the FBI CIPAV. One could speculate that AV
makers have an agreement with Law Enforcement Agencies to NOT alert a
user to the presence of such software.
Also note that the NSA had input during the design of Vista. >> Stay informed about: Would a firewall have protected Josh Glazebrook from the F.. |
|
| Back to top |
|
| |
External
Since: Feb 26, 2006
Posts: 152
|
(Msg. 8) Posted: Sat Sep 08, 2007 9:51 pm
Post subject: Re: Would a firewall have protected Josh Glazebrook from the FBI? [Login to view extended thread Info.]
Imported from groups: per prev. post (more info?)
|
|
|
|
|
| Back to top |
|
| |
External
Since: Feb 26, 2006
Posts: 152
|
(Msg. 9) Posted: Sat Sep 08, 2007 9:51 pm
Post subject: Re: Would a firewall have protected Josh Glazebrook from the FBI? [Login to view extended thread Info.]
Imported from groups: per prev. post (more info?)
|
|
|
|
|
| Back to top |
|
| |
External
Since: Apr 07, 2005
Posts: 34
|
(Msg. 10) Posted: Sat Sep 08, 2007 10:28 pm
Post subject: Re: Would a firewall have protected Josh Glazebrook from the FBI? [Login to view extended thread Info.]
Imported from groups: per prev. post (more info?)
|
|
|
|
|
| Back to top |
|
| |
External
Since: Sep 24, 2006
Posts: 22
|
(Msg. 11) Posted: Sun Sep 09, 2007 2:38 am
Post subject: Re: Would a firewall have protected Josh Glazebrook from the FBI? [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
|
|
|
Once malware is running on your computer there isn't any software firewall
that can be relied upon to stop it from communicating. If the malware has
system level access it can modify the TCP/IP stack. It can create it's own
TCP/IP stack and even get it's own IP address if a DHCP server is on the
network. It could install itself as a root kit and intercept and modify all
TCP/IP communications between Windows and the NIC. There are many ways to
bypass a software firewall. I'm pretty sure the FBI has access to
programmers that could use any of these tricks.
--
Kerry Brown
"Act of Patriots" <patriotacter RemoveThis @yahoo.com> wrote in message
news:8jDEi.2023$ZA5.897@nlpi068.nbdc.sbc.com...
>I curiuos as to why a firewall, properly configured, would not have
> protected Josh Glazebrook from the FBI?
>
> According to the news reports
> (http://www.vnunet.com/vnunet/news/2194604/fbi-tracked-bomb-teen-spyware),
> the FBI installed routine CIPAV spyware via myspace to this kid's computer
> which tracked
> The computer's IP address
> The MAC address
> The person's username
> The last URL visited
> A list of open ports
> Computer programs that are running
> The operating system
> The internet browser and version
> The computer's registered owner
> The IP address of every computer which the PC connects for 60 days
>
> I'm curious.
> Would a properly configured firewall have prevented this?
>
> What was the weak link here? >> Stay informed about: Would a firewall have protected Josh Glazebrook from the F.. |
|
| Back to top |
|
| |
External
Since: Apr 11, 2006
Posts: 25
|
(Msg. 12) Posted: Sun Sep 09, 2007 10:03 am
Post subject: Re: Would a firewall have protected Josh Glazebrook from the FBI? [Login to view extended thread Info.]
Imported from groups: per prev. post (more info?)
|
|
|
|
|
| Back to top |
|
| |
External
Since: Sep 08, 2007
Posts: 3
|
(Msg. 13) Posted: Sun Sep 09, 2007 10:23 am
Post subject: Re: Would a firewall have protected Josh Glazebrook from the FBI? [Login to view extended thread Info.]
Imported from groups: per prev. post (more info?)
|
|
|
|
|
| Back to top |
|
| |
External
Since: Sep 12, 2007
Posts: 1
|
(Msg. 14) Posted: Wed Sep 12, 2007 6:20 am
Post subject: Re: Would a firewall have protected Josh Glazebrook from the FBI? [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
|
|
|
There's trillion ways to passby all the security measurements.
Like:
1) breaking a network firewall/gateway is to have the traffic
encrypted using https (port 443, which is commonly allowed in most of
the firewall policy)
2) lure the user to install any unexpected software like malicious
active X or use crafted javascript
....
Most of the cases that have shown that the weakest link is the user
On Sep 9, 4:07 am, Act of Patriots <patriotac....RemoveThis@yahoo.com> wrote:
> I curiuos as to why a firewall, properly configured, would not have
> protected Josh Glazebrook from the FBI?
>
> According to the news reports
> (http://www.vnunet.com/vnunet/news/2194604/fbi-tracked-bomb-teen-spyware),
> the FBI installed routine CIPAV spyware via myspace to this kid's computer
> which tracked
> The computer's IP address
> The MAC address
> The person's username
> The last URL visited
> A list of open ports
> Computer programs that are running
> The operating system
> The internet browser and version
> The computer's registered owner
> The IP address of every computer which the PC connects for 60 days
>
> I'm curious.
> Would a properly configured firewall have prevented this?
>
> What was the weak link here? >> Stay informed about: Would a firewall have protected Josh Glazebrook from the F.. |
|
| Back to top |
|
| |
FAQ
Profile
Private Messages
Log in
