|
A friend of mine once told a teacher his computer crashed (which it had not), so he lost his assignment that was due for that day (Dutch class). The teacher was understanding and gave him an extra day to finish his assignment. When my friend came home his computer actually crashed! The next day he told the teacher the truth, that he lied, but that it kind of backfired. I believe the teacher could laugh about it, but still gave my friend a point deduction from his final grade
That was about ten years ago... I don't think my friend ever lied again. Fun fact, he and I have the same first name, we are still good friends and he is one of the best IT people I know
My blog[ ^]
public class SanderRossel : Lazy<Person>
{
public void DoWork()
{
throw new NotSupportedException();
}
}
|
|
|
|
|
I have to agree with Guy: this is a site for professionals, and there are things professionals don't want to do, or be associated with. There are plenty of sites for hackers, script kiddies, and related idiots - if this site became known for that kind of material, it wouldn't get through Corporate Net Policies that easily and could quickly become unavailable to the people that it wants to attract. Heck, do you want your company to blacklist CP?
And I'm not happy that my expertise would be used to create something malicious, either.
Bad command or file name. Bad, bad command! Sit! Stay! Staaaay...
|
|
|
|
|
And why professionals should not know about the dark side and be aware to defend? I don't get your Point!
Everybody is talking about, nobody knows the details and prate about it. Professinal should know the Details to fight against to it...I think.
Thank you for your comment
Bruno
modified 19-Jan-21 21:04pm.
|
|
|
|
|
Because we are professionals, but not professional anti-virus writers. Not professional key-logger detectors. Not professional Trojan seekers. Not ...
If I wanted to be one of those, then yes, I would need to know - but I would need to know the latest that is going on, and there are almost certainly sites for that. And I'm pretty sure they don't let script kiddies login!
All providing the data here would do it make it more available to morons, and promote the production of "protection" software that doesn't protect that well in practice! (Look at some of the "anti-virus" writing questions we already get periodically in QA.)
How would you rather protect your PC? With antivirus and firewall from a company with the resources to put serious effort into it (and keeping it updated) or from me: a one-man-band with not enough time to do what actually pays?
Bad command or file name. Bad, bad command! Sit! Stay! Staaaay...
|
|
|
|
|
To be a professional is also to know when to stop to do things by yourself...Or in other words - to know when you do not know...
Skipper: We'll fix it.
Alex: Fix it? How you gonna fix this?
Skipper: Grit, spit and a whole lotta duct tape.
|
|
|
|
|
I think two reasons:
1. Most of us despite such activities as non-professional behavior...
2. CodeProject can gain a name of a non serious site, even one that support harmful activity...
Skipper: We'll fix it.
Alex: Fix it? How you gonna fix this?
Skipper: Grit, spit and a whole lotta duct tape.
|
|
|
|
|
Quote: 1. Most of us despite such activities as non-professional behavior...
Professionals who don't know how to defend, because they don't know how, because they don't know the details.
How you can name them "professionals"?
Thank you for your comment.
Bruno
modified 19-Jan-21 21:04pm.
|
|
|
|
|
I do not talk about knowing or not, but to publishing it...As it will go, for certain, to the wrong hand...
Now you ask how one can learn if we do not want to publish? That's what we call 'Catch 22'...
I think you have to do with the dark-sites to discover the dark-side...It will make no good for CP...
Skipper: We'll fix it.
Alex: Fix it? How you gonna fix this?
Skipper: Grit, spit and a whole lotta duct tape.
|
|
|
|
|
Knowing and Publishing? Do you think it is contrary? From where you get your knowledge? I think from the published things....
The only small thing I know about these stuff is sync attack and how one can defend against it. Why I know it? Because I read an artcile about it (CT www.heise.de). This Special case is not very usefull for me because I don't drive a Server. But recognizing faked links would be very usefull for me....but without knowledge, no Chance
Bruno
modified 19-Jan-21 21:04pm.
|
|
|
|
|
I understand your problem, but still I think that publishing such things is no good for CP...
As for sources - you have to do the research for yourself (I did it when I wanted to understand things - and bought books too)...
But if all your point is to stay protected, then use software from a reliable - large - company, that done a lot of research - with a lot of money, and stay up-to-date. Any other way will eventually fail (I do this and had no virus problem for over a decade)!
Skipper: We'll fix it.
Alex: Fix it? How you gonna fix this?
Skipper: Grit, spit and a whole lotta duct tape.
|
|
|
|
|
My Computers are protected by this "large companies"....in my case it is Sophos. But my idea is to sensitize all of us. Remove uncertainty means knowledge. To get knowlegde in some subversive Forums, I think it is not the good way.
Bruno
modified 19-Jan-21 21:04pm.
|
|
|
|
|
Defence against the Dark Arts is a vital skill. Using the Dark Arts, on the other hand...
If you have an important point to make, don't try to be subtle or clever. Use a pile driver. Hit the point once. Then come back and hit it again. Then hit it a third time - a tremendous whack.
--Winston Churchill
|
|
|
|
|
Once again: How to defence if one has not the knowledge about, and this includes of course how to use it...?
Conceal unfortunately you know from your history
Bruno
modified 19-Jan-21 21:04pm.
|
|
|
|
|
By your rationale, the police should be trained to catch murderers by murdering. It just happens that the skills needed to get away with murder differ completely from the skills needed to catch murderers.
I agree that coroners must have a knowledge of e.g. the effects of various poisons, but that does not mean that such specialised knowledge should be publically disseminated.
[There was a case in England where an expert on poisons was testifying in court, and started to say that all poisons can be detected, except for... at which point the judge stopped him, saying that airing such knowledge was not in the public interest.]
If you have an important point to make, don't try to be subtle or clever. Use a pile driver. Hit the point once. Then come back and hit it again. Then hit it a third time - a tremendous whack.
--Winston Churchill
|
|
|
|
|
Cryptography and Security - OK here - Public domain stuff.
Viruses, Worms, etc. - Not OK here - NSA stuff
modified 22-Feb-15 10:17am.
|
|
|
|
|
You know, here one point every user about SQL injection but the reality nobody recognize... *lol* simply stupid...SQL injection that is maybe a Thing which my 10 year old son use.....
Bruno
modified 19-Jan-21 21:04pm.
|
|
|
|
|
Bruno, your use of the term so-called professionals comes across very poorly. Just because they don't agree with you doesn't mean that their opinions are invalid.
The simple reason we close these discussions down is because we don't want to help people write malicious software. Effectively we would be publishing details on how to write malicious software. If you want to find out more details, you can always take one of the numerous courses on the topic. The thing you have to remember is that while you might have reasonable cause to want to read about it, we can't guarantee that anyone reaching it off a search engine will have similar motives. So no. We don't welcome this topic. If you want to find out how well the idea would be received, head on over to StackOverflow and ask the question. Just let us know when you are going to do it so we can bring popcorn.
|
|
|
|
|
Dear Pete O'Hanlon
Thank you for the first constructive answer! Now, I can't agree with your arguments, but I hope that does not affect to proceed the discussion.
I'm still on the Point "the professionals" do not know more than me about this theme and that's why nobody likes to discuss about it.
What is wrong about my thinking "knowing the enemy" is the best way to defense?
Bruno
modified 19-Jan-21 21:04pm.
|
|
|
|
|
Knowing the enemy is fine. Giving them the codes to your house alarm isn't.
|
|
|
|
|
I think the enemies have the code before....
modified 19-Jan-21 21:04pm.
|
|
|
|
|
If you're interested in something that lets you just sit back and listen to, I recommend Steve Gibson's Security Now[^] podcast.
It's not exactly a show that's meant to be accessible for the masses, but at the same time, he won't go so far as to discuss source code. Personally, I find it's an easy-to-digest format to keep up to date with current computer security news.
|
|
|
|
|
Well, you could do a couple of practical things in how you go about doing things on a pc to protect yourself against viruses without knowing how to code it.
1) Don't open any email attachment without absolute certainty about who send the email.
2) Scan the email attachment in any case for viruses... It could be that this person send you a virus without even knowing about it.
3) Don't follow any links via email without knowing who send the email.
4) Use long passwords and keep them in a safe place.
5) Go to safe/recognized websites.
6) Do regular scans with anti-virus software.
7) Keep anti-virus software updated.
8) Monitor your computer's performance, data usage, behaviour and programs running in the background.
9) Search the web and make sure these things running is legit.
10) Change passwords regularly
11) Don't use public pc's to access your internet accounts... These are riddled with viruses.
12) Read articles about security tips on how to prevent yourself from being hacked.
13) If your gut tells you something is fishy, don't do it, or find out more information about it via internet.
14) Pay for the stuff you want... software/games/music/movies... nothing in life is for free... people might make you believe it is but chances are, it comes with a little virus attached. Sure you could download stuff for free off torrent sites but the chance of your pc contracting a virus is good... once again, nothing in life is free. If you download free stuff off torrent sites, be willing to pay for the consequences.
15) Etc.
P.S. If you want to learn how to protect yourself, do not go to hacking websites as this is where you'll get hacked the easiest.
"Program testing can be used to show the presence of bugs, but never to show their absence."
<< please vote!! >>
modified 23-Feb-15 2:32am.
|
|
|
|
|
Born to code...[^]
Skipper: We'll fix it.
Alex: Fix it? How you gonna fix this?
Skipper: Grit, spit and a whole lotta duct tape.
|
|
|
|
|
Hell yes I'd take the job. I love coding, but I also love having responsibilities and getting paid accordingly
As a bonus I can make my underlings do whatever I want, ALL SHALL LOVE ME AND DESPAIR!!! MUWHAHAHA!
My blog[ ^]
public class SanderRossel : Lazy<Person>
{
public void DoWork()
{
throw new NotSupportedException();
}
}
|
|
|
|
|
Sander Rossel wrote: As a bonus I can make my underlings do whatever I want I would like to live the day you discover how that's not! true...
Skipper: We'll fix it.
Alex: Fix it? How you gonna fix this?
Skipper: Grit, spit and a whole lotta duct tape.
|
|
|
|