flat assembler
Message board for the users of flat assembler.

Index > Heap > Windows 10

Goto page Previous  1, 2, 3 ... , 39, 40, 41  Next
Author
Thread Post new topic Reply to topic
Furs



Joined: 04 Mar 2016
Posts: 1483
Furs
sleepsleep wrote:
it just we all came to a state that, we can't securely using our computer anymore,
Don't use Windows.
Post 14 May 2020, 13:22
View user's profile Send private message Reply with quote
sleepsleep



Joined: 05 Oct 2006
Posts: 8955
Location: ˛                             ⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣Posts: 334455
sleepsleep
then use what? Furs os?
Post 14 May 2020, 13:32
View user's profile Send private message Reply with quote
revolution
When all else fails, read the source


Joined: 24 Aug 2004
Posts: 17338
Location: In your JS exploiting you and your system
revolution
One way to setup your firewall (say an RPi or something else external) might be to install W10 on a sacrificial machine. Run it through the RPi. Run the RPi though a VPN/proxy to the Internet and just leave it active. Run some innocuous programs that don't access the network (like fasm for example), and type stuff, encrypt the drive with BitLocker, etc.

After a week you grab the list of DNS names and raw IP addresses from the RPi and program the firewall to block all of it.

It might still miss some stuff. No one seems to know all the IP addresses MS use. And there is the added problem of updates installing new code that accesses new DNS names and IP addresses. It would be a constant game of whack-a-mole. So it is probably just easier to block all updates, and the firewall rules might already do that for you.

Although IMO all that is too much hassle. The OS should be the most trusted part of any system, not the least trusted. So like Furs suggests: Don't use Windows.
Post 14 May 2020, 13:41
View user's profile Send private message Visit poster's website Reply with quote
sleepsleep



Joined: 05 Oct 2006
Posts: 8955
Location: ˛                             ⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣Posts: 334455
sleepsleep
ok, i set up a pi with alpine linux firewall, maybe openwrt, see what things it caught
Post 14 May 2020, 14:44
View user's profile Send private message Reply with quote
sleepsleep



Joined: 05 Oct 2006
Posts: 8955
Location: ˛                             ⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣Posts: 334455
sleepsleep
latest with svf to other languages

https://cloud.mail.ru/public/5vGY/4W8NPiu9w/

en_windows_10_consumer_editions_version_2004_x64_dvd_8d28c5d7.iso
en_windows_10_consumer_editions_version_2004_x86_dvd_fa759348.iso
Post 16 May 2020, 07:11
View user's profile Send private message Reply with quote
guignol



Joined: 06 Dec 2008
Posts: 720
guignol
Is there a problem using https://www.qubes-os.org/ ?
Post 18 May 2020, 19:01
View user's profile Send private message Reply with quote
sleepsleep



Joined: 05 Oct 2006
Posts: 8955
Location: ˛                             ⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣Posts: 334455
sleepsleep
guignol wrote:
Is there a problem using https://www.qubes-os.org/ ?

a lot i guess
https://www.reddit.com/r/Qubes/
Post 19 May 2020, 09:11
View user's profile Send private message Reply with quote
sleepsleep



Joined: 05 Oct 2006
Posts: 8955
Location: ˛                             ⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣Posts: 334455
sleepsleep
Post 07 Jun 2020, 01:16
View user's profile Send private message Reply with quote
revolution
When all else fails, read the source


Joined: 24 Aug 2004
Posts: 17338
Location: In your JS exploiting you and your system
revolution
I wonder if MS have bought shares in recovery software companies and are trying to get more people to fork out cash.
“My 20 TB parity storage space shows up now as raw, no accessible files. Storage Spaces tool and Powershell show it as healthy, containing data. Looks like the ReFS partition has been corrupted, and I may have to fork out cash on recovery software and some external drives to copy files to so I can rebuild.”
You don' t need to worry about viruses when you update your W10 machines, not because it is more secure, but because MS will save you the problem of having files to worry about by getting rid of them. You're welcome, enjoy the newly empty drives and all that new free space. Razz
Post 15 Jun 2020, 12:43
View user's profile Send private message Visit poster's website Reply with quote
sleepsleep



Joined: 05 Oct 2006
Posts: 8955
Location: ˛                             ⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣Posts: 334455
sleepsleep
crazy shit, storage becomes raw, thats why the word, backup is so important, maybe need triple redundancy backup mechanism,
Post 15 Jun 2020, 14:33
View user's profile Send private message Reply with quote
revolution
When all else fails, read the source


Joined: 24 Aug 2004
Posts: 17338
Location: In your JS exploiting you and your system
revolution
A lot of people mistake RAID as a backup. And this highlights why RAID isn't a backup. It is only for redundancy and availability. If you delete files on the RAID, then the RAID controller will faithfully delete them across all the drives in the array.
Post 15 Jun 2020, 23:22
View user's profile Send private message Visit poster's website Reply with quote
guignol



Joined: 06 Dec 2008
Posts: 720
guignol
sleepsleep wrote:
guignol wrote:
Is there a problem using https://www.qubes-os.org/ ?

a lot i guess
https://www.reddit.com/r/Qubes/
it doesn't load
Post 16 Jun 2020, 08:10
View user's profile Send private message Reply with quote
Furs



Joined: 04 Mar 2016
Posts: 1483
Furs
revolution wrote:
A lot of people mistake RAID as a backup. And this highlights why RAID isn't a backup. It is only for redundancy and availability. If you delete files on the RAID, then the RAID controller will faithfully delete them across all the drives in the array.
Don't forget to use something like par2 for bit rot. Wink
Post 16 Jun 2020, 13:16
View user's profile Send private message Reply with quote
revolution
When all else fails, read the source


Joined: 24 Aug 2004
Posts: 17338
Location: In your JS exploiting you and your system
revolution
Furs wrote:
Don't forget to use something like par2 for bit rot. Wink
Hmm, I don't see the benefit. A proper set of backups is much more important IMO.

If a file is damaged and/or lost then it should be restored from a known good copy, not recovered with complicated tools that might fail or have bugs. You can use RAID to give you the redundancy in case of damaged data or failed drives. That is what RAID is for.
Post 16 Jun 2020, 14:12
View user's profile Send private message Visit poster's website Reply with quote
guignol



Joined: 06 Dec 2008
Posts: 720
guignol
the question is what copy is?
if you mean an identical set of binary data given at runtime, then it does not matter how it is represented, and hence recovered.
Post 17 Jun 2020, 09:28
View user's profile Send private message Reply with quote
revolution
When all else fails, read the source


Joined: 24 Aug 2004
Posts: 17338
Location: In your JS exploiting you and your system
revolution
Recovery tools like par2 might promise to recover stuff, but if they fail due to too much damaged data, or have bugs, then you don't get your data back. You lost it.

If you keep your par2 archives on the same drive as the data then say goodbye to all your stuff when the drive fails.

Much better to have backups. Multiple backups are better than one. Tested backups are better than untested. Verified backups are better than unverified. etc.
Post 17 Jun 2020, 09:39
View user's profile Send private message Visit poster's website Reply with quote
Furs



Joined: 04 Mar 2016
Posts: 1483
Furs
revolution wrote:
Recovery tools like par2 might promise to recover stuff, but if they fail due to too much damaged data, or have bugs, then you don't get your data back. You lost it.

If you keep your par2 archives on the same drive as the data then say goodbye to all your stuff when the drive fails.

Much better to have backups. Multiple backups are better than one. Tested backups are better than untested. Verified backups are better than unverified. etc.
You misunderstood. I'm not saying you shouldn't have backups, but for long-term archival of backups you should also store the par2 files along, in case the backup itself suffers from bit rot.

Let's say one of them is bitrotted, but you don't know which, so which one do you restore? Actually how would you even know it's bitrotted until it's too late? (par2 provides verification also). You'd have to store checksums but at that point just use par2 it's better, IMO.

I store long-term backups on M-Discs with 5% par2 recovery which should be plenty. Smile

BTW if the tool has bugs you'll simply lose the ability to repair the file, can't be worse than without it. And I tested it by randomly flipping bits or even entire chunks, it works. Wink
Post 17 Jun 2020, 15:47
View user's profile Send private message Reply with quote
revolution
When all else fails, read the source


Joined: 24 Aug 2004
Posts: 17338
Location: In your JS exploiting you and your system
revolution
I don't consider long-term backups at all. If you aren't periodically actively verifying your backups then they might as well be considered already dead IMO.

If you haven't tested them, then you have no idea if they are good, so assume they aren't good.

Relying upon a complicated recovery process for important data feels very wrong to me. Keep it simple. Fewer things to worry about and fewer things to fail.
Post 17 Jun 2020, 22:35
View user's profile Send private message Visit poster's website Reply with quote
sleepsleep



Joined: 05 Oct 2006
Posts: 8955
Location: ˛                             ⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣⁣Posts: 334455
sleepsleep
so how financial institutions or some other great companies, governments deal with this problem?
Post 18 Jun 2020, 06:58
View user's profile Send private message Reply with quote
revolution
When all else fails, read the source


Joined: 24 Aug 2004
Posts: 17338
Location: In your JS exploiting you and your system
revolution
sleepsleep wrote:
so how financial institutions or some other great companies, governments deal with this problem?
What problem?

Backups are already solved. Multiple copies, tested/verified, rotated, off-site, etc. After that it is just a matter of managing/maintaining them to suit your disaster recovery plan.

What backups don't have is complicated processes and procedures to follow to "recover" damaged data. If one of your backups if failing you discard it and replace with another. Backups don't have you go fussing about trying to recover stuff and hoping for the best that everything works exactly as promised.
Post 18 Jun 2020, 07:05
View user's profile Send private message Visit poster's website Reply with quote
Display posts from previous:
Post new topic Reply to topic

Jump to:  
Goto page Previous  1, 2, 3 ... , 39, 40, 41  Next

< Last Thread | Next Thread >
Forum Rules:
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You can attach files in this forum
You can download files in this forum


Copyright © 1999-2020, Tomasz Grysztar. Also on YouTube, Twitter.

Website powered by rwasa.