djMot Posted October 23, 2014 Member ID: 3189 Group: *** Clan Members Followers: 98 Topic Count: 357 Topics Per Day: 0.07 Content Count: 5257 Content Per Day: 1.09 Reputation: 11146 Achievement Points: 48948 Solved Content: 0 Days Won: 114 Joined: 02/11/12 Status: Offline Last Seen: Monday at 07:24 PM Birthday: 12/24/1957 Device: Windows Posted October 23, 2014 This is good information that everyone should read and be aware of. Solutions are presented that are easily enough implemented. http://windowssecrets.com/top-story/protecting-yourself-from-poodle-attacks/ WiZiD, hxtr, BUDMAN and 1 other 4 Awards
eidolonFIRE Posted October 23, 2014 Member ID: 2759 Group: **- Inactive Registered Users Followers: 17 Topic Count: 199 Topics Per Day: 0.04 Content Count: 3496 Content Per Day: 0.70 Reputation: 3021 Achievement Points: 26464 Solved Content: 0 Days Won: 3 Joined: 08/22/11 Status: Offline Last Seen: June 16, 2017 Birthday: 07/27/1990 Posted October 23, 2014 nice... a page with all the text grey'd out... spinpuppy 1
hxtr Posted October 23, 2014 Member ID: 220 Group: **- Inactive Registered Users Followers: 147 Topic Count: 595 Topics Per Day: 0.10 Content Count: 16950 Content Per Day: 2.96 Reputation: 13538 Achievement Points: 129714 Solved Content: 0 Days Won: 120 Joined: 09/04/09 Status: Offline Last Seen: October 26, 2023 Birthday: 04/05/1970 Posted October 23, 2014 I'm looking to pushing one of my customers to use a service available using the DD-WRT rom and a VPN service like ExpressVPN. All internet traffic is encrypted and your IP is hidden. Plus you can get content from around the world as you can have any country IP you want. Anyone ever look into this? https://www.express-vpn.com/best_provider?a_aid=zpeti2&data1=top%20vpn%20providers
BUDMAN Posted October 23, 2014 Member ID: 800 Group: *** Clan Members Followers: 152 Topic Count: 139 Topics Per Day: 0.02 Content Count: 7109 Content Per Day: 1.26 Reputation: 4646 Achievement Points: 60463 Solved Content: 0 Days Won: 6 Joined: 11/27/09 Status: Offline Last Seen: 7 hours ago Birthday: 05/29/1957 Device: Windows Posted October 23, 2014 Good info Thanks D.J. @@eidolonFIRE Normal page for me.... Awards
djMot Posted October 24, 2014 Member ID: 3189 Group: *** Clan Members Followers: 98 Topic Count: 357 Topics Per Day: 0.07 Content Count: 5257 Content Per Day: 1.09 Reputation: 11146 Achievement Points: 48948 Solved Content: 0 Days Won: 114 Joined: 02/11/12 Status: Offline Last Seen: Monday at 07:24 PM Birthday: 12/24/1957 Device: Windows Author Posted October 24, 2014 nice... a page with all the text grey'd out... All you have to do is answer one simple survey question to get all the text to show. Sheesh - it's just not rocket science. All good information doesn't come absolutely free, just damn near. Awards
djMot Posted October 24, 2014 Member ID: 3189 Group: *** Clan Members Followers: 98 Topic Count: 357 Topics Per Day: 0.07 Content Count: 5257 Content Per Day: 1.09 Reputation: 11146 Achievement Points: 48948 Solved Content: 0 Days Won: 114 Joined: 02/11/12 Status: Offline Last Seen: Monday at 07:24 PM Birthday: 12/24/1957 Device: Windows Author Posted October 24, 2014 I'm looking to pushing one of my customers to use a service available using the DD-WRT rom and a VPN service like ExpressVPN. All internet traffic is encrypted and your IP is hidden. Plus you can get content from around the world as you can have any country IP you want. Anyone ever look into this? https://www.express-vpn.com/best_provider?a_aid=zpeti2&data1=top%20vpn%20providers If it's like most VPN services, the proxies will be marginal in performance and availability and the speed of surfing will be severely impacted. I know nothing of the provider you mention, nor do I believe such extreme measures are ever actually needed. Exception might be if you are engaged in some sort of espionage or illegal activity making cloaking your identity and activity an imperative. hxtr 1 Awards
hxtr Posted October 24, 2014 Member ID: 220 Group: **- Inactive Registered Users Followers: 147 Topic Count: 595 Topics Per Day: 0.10 Content Count: 16950 Content Per Day: 2.96 Reputation: 13538 Achievement Points: 129714 Solved Content: 0 Days Won: 120 Joined: 09/04/09 Status: Offline Last Seen: October 26, 2023 Birthday: 04/05/1970 Posted October 24, 2014 If it's like most VPN services, the proxies will be marginal in performance and availability and the speed of surfing will be severely impacted. I know nothing of the provider you mention, nor do I believe such extreme measures are ever actually needed. Exception might be if you are engaged in some sort of espionage or illegal activity making cloaking your identity and activity an imperative. Perfect response as I agree. What if this company held all your financial info and put in to a site like redtail?
djMot Posted October 24, 2014 Member ID: 3189 Group: *** Clan Members Followers: 98 Topic Count: 357 Topics Per Day: 0.07 Content Count: 5257 Content Per Day: 1.09 Reputation: 11146 Achievement Points: 48948 Solved Content: 0 Days Won: 114 Joined: 02/11/12 Status: Offline Last Seen: Monday at 07:24 PM Birthday: 12/24/1957 Device: Windows Author Posted October 24, 2014 Perfect response as I agree. What if this company held all your financial info and put in to a site like redtail? Don't know what "redtail" is, but I would be expecting my financial institution to be exercising significant white-hat security measures, not scummy lurk-about-and-go-undetected measures. Awards
BigPapaDean Posted October 24, 2014 Member ID: 1128 Group: *** Clan Members Followers: 78 Topic Count: 1211 Topics Per Day: 0.22 Content Count: 6554 Content Per Day: 1.18 Reputation: 4430 Achievement Points: 63664 Solved Content: 0 Days Won: 6 Joined: 02/13/10 Status: Offline Last Seen: Wednesday at 01:06 AM Birthday: 10/21/1954 Device: Windows Posted October 24, 2014 Don't know what "redtail" is, but I would be expecting my financial institution to be exercising significant white-hat security measures, not scummy lurk-about-and-go-undetected measures. Don't you mean "skulking"? Awards
Sonovabich Posted October 24, 2014 Member ID: 82 Group: ** Registered Users Followers: 0 Topic Count: 1535 Topics Per Day: 0.27 Content Count: 5022 Content Per Day: 0.88 Reputation: 5198 Achievement Points: 131537 Solved Content: 0 Days Won: 116 Joined: 09/02/09 Status: Offline Last Seen: May 8 Device: Windows Posted October 24, 2014 When you said Poodle attacks i thought.... hxtr 1
Damage_inc- Posted October 24, 2014 Member ID: 2048 Group: ***- Inactive Clan Members Followers: 0 Topic Count: 294 Topics Per Day: 0.06 Content Count: 6689 Content Per Day: 1.27 Reputation: 4709 Achievement Points: 48999 Solved Content: 0 Days Won: 5 Joined: 12/15/10 Status: Offline Last Seen: November 29, 2023 Birthday: 05/30/1967 Posted October 24, 2014 ive made adjustments.thanks Awards
Labob Posted October 24, 2014 Member ID: 42 Group: *** Clan Members Followers: 50 Topic Count: 338 Topics Per Day: 0.06 Content Count: 8389 Content Per Day: 1.46 Reputation: 6126 Achievement Points: 54468 Solved Content: 0 Days Won: 13 Joined: 09/01/09 Status: Offline Last Seen: April 22 Birthday: 01/30/1959 Device: Windows Posted October 24, 2014 I use Chrome I have done nothing and I am not vulnerable. Why you ask ? I think its because I do not eat whiny wheaties and drive a silverado not a ford. Its that or Google has read this post and fixed it for me. TY DJ and Google Deckard 1 Awards
Sitting-Duc Posted October 24, 2014 Member ID: 561 Group: ++++ Senior Admin Followers: 85 Topic Count: 502 Topics Per Day: 0.09 Content Count: 5336 Content Per Day: 0.94 Reputation: 4612 Achievement Points: 41356 Solved Content: 0 Days Won: 29 Joined: 10/14/09 Status: Offline Last Seen: Wednesday at 06:34 PM Birthday: 04/06/1992 Device: Windows Posted October 24, 2014 Websites that require you to answer questions to view content are as bad as websites that make you disable adblock. Hate em. I would suggest https://www.ssllabs.com/ for SSL/HTTPS related news. I would suggest https://scotthelme.co.uk/sslv3-goes-to-the-dogs-poodle-kills-off-protocol/ for instructions on protecting yourself against the attack. The issue only affects servers that cater to Windows XP users really as they are the only users that may still be using SSLv3. All modern browsers/operating systems use TLSv1.0 and greater. It is only a problem to a client if they are connecting to a server that allows SSLv3 and even then is a hard exploit. If you are concerned over a site that you use HTTPS with that actually passes secure information then you can use this site to check the certifcates: https://www.ssllabs.com/ssltest/ @@Ruggerxi and @@loaderXI - I think me patching for POODLE is the problem behind the images served via HTTPS not loading for you. hxtr 1 Awards
loaderXI Posted October 24, 2014 Member ID: 252 Group: +++ COD2 Head Admin Followers: 72 Topic Count: 396 Topics Per Day: 0.07 Content Count: 6439 Content Per Day: 1.12 Reputation: 6582 Achievement Points: 54661 Solved Content: 0 Days Won: 32 Joined: 09/05/09 Status: Offline Last Seen: 8 hours ago Birthday: 03/22/1965 Device: Windows Posted October 24, 2014 (edited) @Sitting- I did the poodle test with out making changes and got the terrior so no problem on my end Still getting 404 and can not approve maps and or make changes...Also when I upload it goes to 404 but yet still shows as being uploaded (pending approval) Edited October 24, 2014 by loaderXI Awards
hxtr Posted October 24, 2014 Member ID: 220 Group: **- Inactive Registered Users Followers: 147 Topic Count: 595 Topics Per Day: 0.10 Content Count: 16950 Content Per Day: 2.96 Reputation: 13538 Achievement Points: 129714 Solved Content: 0 Days Won: 120 Joined: 09/04/09 Status: Offline Last Seen: October 26, 2023 Birthday: 04/05/1970 Posted October 24, 2014 Don't know what "redtail" is, but I would be expecting my financial institution to be exercising significant white-hat security measures, not scummy lurk-about-and-go-undetected measures. Here is my thinking and I am only still thinking. They don't keep much of the clients info on their local LAN. Redtail is a contact management database and also were the financial planning is done. Not on a local database... but all on the Internet. I'm removing their HIPAA complaint router a sonicwall and replacing it with something much faster but it's not HIPAA compliant. To add the best security possible after locking down the system as much as possible is encrypting all their traffic on the net. The service is very fast. I don't notice a performance hit at all on my 14 day trial thus far. The router/rom supports this feature out of the box. It is not only to hide you but also to protect your. For under $10 dollars a month... what better option is out there? Is it going too far in security? I only want to make sure I am doing all I can to protect my customer's customers. If you have a better option.. I would love to hear it.
hxtr Posted October 24, 2014 Member ID: 220 Group: **- Inactive Registered Users Followers: 147 Topic Count: 595 Topics Per Day: 0.10 Content Count: 16950 Content Per Day: 2.96 Reputation: 13538 Achievement Points: 129714 Solved Content: 0 Days Won: 120 Joined: 09/04/09 Status: Offline Last Seen: October 26, 2023 Birthday: 04/05/1970 Posted October 24, 2014 Great info !
Recommended Posts