1 |
On 26 Dec 2005, at 11:17, Dale wrote: |
2 |
> |
3 |
> Well, I did go to the site but it was *after* I got the traffic. |
4 |
> How did they find me to begin with? I assume it was just a random |
5 |
> hit. Sort of like a shot in the dark. |
6 |
|
7 |
They just automate sending of these messenger service spams. Send |
8 |
them to every IP in a range, that sort of thing. It might be a wake- |
9 |
up call to take a look at your security setup in general, but don't |
10 |
worry about this particular aspect. |
11 |
|
12 |
On 26 Dec 2005, at 10:51, Holly Bostick wrote: |
13 |
> |
14 |
> ... the message uses |
15 |
> Microsoft Messenger Service, which is turned on by default under |
16 |
> Windows, and enables these kind of popup messages across LAN and WAN, |
17 |
> sort of like a mini MSN-- which I believe it connects to as well-- and |
18 |
> is not only quite "useless" except to people like this, but also quite |
19 |
> insecure because it lets unknown people like this send you "messages" |
20 |
> without your active consent. |
21 |
|
22 |
The Messenger Service is different from Windows Messenger - it's all |
23 |
a bit of a confusing hodgepodge of names. |
24 |
|
25 |
XP comes supplied with an MSN Messenger program which isn't called |
26 |
"MSN Messenger" but instead "Windows Messenger", I think; apart from |
27 |
the name it's identical to old versions of MSN messenger in that you |
28 |
add buddies by email address. |
29 |
|
30 |
The Messenger Service is something else completely - you're right |
31 |
that it allows people to send you little pop-up windows without your |
32 |
consent, but it's kinda a bigger story than that. Unlike buddy |
33 |
messengers, there's no reply box or any buttons other than "OK" and |
34 |
to send one of these messages you have to use the Windows File & |
35 |
Printer Sharing command line `net /send <computer name> text of your |
36 |
message`. Back in the days of Windows 3.1 or 95 this undoubtedly |
37 |
seemed like a great idea, as no-one using Windows networks had heard |
38 |
of the Internet, this was essentially a "free" service with Windows |
39 |
File & Printer Sharing and the only abuse it was really open to was |
40 |
employees kidding about with each other. |
41 |
|
42 |
I suspect the reason Messenger Service is enabled by default because |
43 |
third-party developers use it. I've seen it used by the likes of |
44 |
cheap database apps to say "Blimey! You're out of stock! Order some |
45 |
more." For those who think that Microsoft writes bad software, you |
46 |
really should see some of the sewage written by small independent |
47 |
developers for the Windows platform; some meeting this description |
48 |
are undoubtedly doing a great job, but I've seen some horrors from |
49 |
those aiming at small business & niche markets. These guys seem to |
50 |
have no incentive to consider quality or security - basically anyone |
51 |
with a programmer & a salesman can set up in these markets and as |
52 |
long as the product meets a need and appears to work then it goes out |
53 |
the door. |
54 |
|
55 |
I'd guess that Messenger Service could safely be disabled out the box |
56 |
these days, but I wouldn't be surprised that there were many |
57 |
applications that would have suffered from that at the time XP was |
58 |
released. |
59 |
|
60 |
Stroller. |
61 |
|
62 |
-- |
63 |
gentoo-user@g.o mailing list |