Results 1 to 7 of 7
  1. #1
    iNET Interactive
    Join Date
    Jan 2010
    Location
    Seattle, WA, USA
    Posts
    376
    Thanks
    1
    Thanked 29 Times in 24 Posts

    IE 8 publicly hacked as IE9 is released




    IN THE WILD

    IE 8 publicly hacked as IE9 is released

    By Robert Vamosi

    At this year's Pwn2Own browser-hacking competition, a component of the CanSecWest security conference, clever new exploits took down Internet Explorer 8.

    Released just days later, Internet Explorer 9 is immune and offers additional security enhancements.

    The full text of this column is posted at WindowsSecrets.com/2011/03/17/07 (paid content, opens in a new window/tab).

    Columnists typically cannot reply to comments here, but do incorporate the best tips into future columns.

  2. #2
    Star Lounger
    Join Date
    Dec 2009
    Location
    NSW, Australia
    Posts
    67
    Thanks
    1
    Thanked 3 Times in 3 Posts
    I turned on Active X filtering in IE9 and when I went to look at my Gmail box I was told that Gmail needs Active X filtering turned off. Not quite those words but you get the idea. So much for that security feature.
    Bob
    Win 8.1 Pro - IE11, Office Pro 2013, Acronis TIH 2014
    Win 10 Pro preview 10162

  3. #3
    Lounger
    Join Date
    Jun 2010
    Location
    Ontario, Canada
    Posts
    27
    Thanks
    0
    Thanked 0 Times in 0 Posts
    Isn't one's physical location trivially derivable from one's IP address regardless of whether one has "geolocation" enabled or not?

  4. #4
    Administrator
    Join Date
    Mar 2001
    Location
    St Louis, Missouri, USA
    Posts
    23,572
    Thanks
    5
    Thanked 1,057 Times in 926 Posts
    Quote Originally Posted by kehander View Post
    Isn't one's physical location trivially derivable from one's IP address regardless of whether one has "geolocation" enabled or not?
    Not necessarily. Depends on your ISP - where they are located & how they assign IP addresses.

    Joe

  5. #5
    Lounge VIP bobprimak's Avatar
    Join Date
    Feb 2009
    Location
    Hinsdale, IL, USA
    Posts
    2,482
    Thanks
    176
    Thanked 152 Times in 129 Posts
    Quote Originally Posted by kehander View Post
    Isn't one's physical location trivially derivable from one's IP address regardless of whether one has "geolocation" enabled or not?
    Not if you use a DNS Service, like Comodo DNS or Open DNS. These redirect traffic through their own servers, obscuring your true IP Address. Very effective, but some sites don't like it. Also, stealth all your ports and no one can see your IP Address.
    -- Bob Primak --

  6. #6
    Star Lounger E Pericoloso Sporgersi's Avatar
    Join Date
    Dec 2010
    Location
    Flanders, Belgium, EU
    Posts
    71
    Thanks
    5
    Thanked 6 Times in 5 Posts

    Exclamation

    Quote Originally Posted by bobprimak View Post
    stealth all your ports and no one can see your IP Address.
    Warning! This is NOT TRUE!

    With a regular internet connection (cable), Steve Gibson's Shields up reports my NAT-router and my computer behind it fully stealthed, but still exactly reports my IP address.

    But when I connect through Vypr Virtual Private Network, then my IP is effectively hidden for everybody else (Shields Up reports the Vypr server's IP).

    Don't take my word for it. Test it.
    Last edited by E Pericoloso Sporgersi; 2011-03-31 at 07:30.
    E Pericoloso Sporgersi
    "It is Dangerous to Lean Out! [of Windows]"

  7. #7
    Lounge VIP bobprimak's Avatar
    Join Date
    Feb 2009
    Location
    Hinsdale, IL, USA
    Posts
    2,482
    Thanks
    176
    Thanked 152 Times in 129 Posts
    Quote Originally Posted by E Pericoloso Sporgersi View Post
    Warning! This is NOT TRUE!

    With a regular internet connection (cable), Steve Gibson's Shields up reports my NAT-router and my computer behind it fully stealthed, but still exactly reports my IP address.

    But when I connect through Vypr Virtual Private Network, then my IP is effectively hidden for everybody else (Shields Up reports the Vypr server's IP).

    Don't take my word for it. Test it.
    Apparently, you do not understand what stealthing ports means. Because, when Comodo Firewall stealths ports (also true of Zone alarm), Steve Gibson's test site does not find the real IP Address in my tests.
    -- Bob Primak --

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •