From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from sog-mx-2.v43.ch3.sourceforge.com ([172.29.43.192] helo=mx.sourceforge.net) by sfs-ml-2.v29.ch3.sourceforge.com with esmtp (Exim 4.76) (envelope-from ) id 1WadCW-0004BQ-L3 for bitcoin-development@lists.sourceforge.net; Thu, 17 Apr 2014 03:41:24 +0000 Received-SPF: pass (sog-mx-2.v43.ch3.sourceforge.com: domain of yahoo.com designates 98.138.229.29 as permitted sender) client-ip=98.138.229.29; envelope-from=rdwnj@yahoo.com; helo=nm36.bullet.mail.ne1.yahoo.com; Received: from nm36.bullet.mail.ne1.yahoo.com ([98.138.229.29]) by sog-mx-2.v43.ch3.sourceforge.com with esmtps (TLSv1:AES256-SHA:256) (Exim 4.76) id 1WadCV-0007Ug-IO for bitcoin-development@lists.sourceforge.net; Thu, 17 Apr 2014 03:41:24 +0000 Received: from [127.0.0.1] by nm36.bullet.mail.ne1.yahoo.com with NNFMP; 17 Apr 2014 03:41:13 -0000 Received: from [98.138.100.113] by nm36.bullet.mail.ne1.yahoo.com with NNFMP; 17 Apr 2014 03:38:13 -0000 Received: from [98.138.88.238] by tm104.bullet.mail.ne1.yahoo.com with NNFMP; 17 Apr 2014 03:37:56 -0000 Received: from [127.0.0.1] by omp1038.mail.ne1.yahoo.com with NNFMP; 17 Apr 2014 03:37:56 -0000 X-Yahoo-Newman-Property: ymail-4 X-Yahoo-Newman-Id: 920101.63803.bm@omp1038.mail.ne1.yahoo.com Received: (qmail 91508 invoked by uid 60001); 17 Apr 2014 03:37:56 -0000 X-YMail-OSG: 9Zt37zwVM1kjZk8x2fnIZeYJCH0yHXqwZevZJRHQd9_Ndtc rcq4ZrRZGzq3yExD2USZBwn1_qAALDGDOUOvUMV.gJu8hL198TaZx_AnSShi rhl0FRHOSnAkMIXrJ0gMKbGza.L1D5ktZ3cmNRSh4PXbBTLLQZLEIp0p971g nx_3cj8uzNE0kymlrCNuBjYTz5EVbam9eOjGPNo57JsfXITNpe6iITjyEIcm VXJnIHIdbPtt4zKJAM3fOgrA.xDjhG1zvug5aC567PE78Hsso1t6mIFB92jX LpBJW8urBx9Y6DY4fwYP9CkavQof2N3nt3FQwfb8PuJn5BXdTN1lNw2uFP2q ewUDvyykWJftFQILutZw.QnAiawE1GFoNDQfHZSo_Xxtd_FLxvkfZ26X.d_Z k6R3slpujy7lSUzFs4A_BpsYp2iVB.atH12XsNFMWlk5bQF3T8t7givzwa2B m8mHYa0SCo5P8uB43ezwXgL5KA2nBZ7WeBZqy_Ku4wWsvZZm9wIKH6xN5xug _oVHtWxQ6VWLY0.Dxq1AdHisfE9MFaVSCldUiSFGXPzXeVrfsNWGu6jB3fec 8t3CSSabBT6np1ln3xmQH3UrpQEFQRww7rN8KNEum.Spd4FQfYPt.PDdtvLF 0PLj4kvHPEgfA_HfXZdA5Tg-- Received: from [24.44.154.204] by web124504.mail.ne1.yahoo.com via HTTP; Wed, 16 Apr 2014 20:37:56 PDT X-Rocket-MIMEInfo: 002.001, Cl9fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fCi4uLgpNZXNzYWdlOiA0CkRhdGU6IFdlZCwgMTYgQXByIDIwMTQgMjE6NDM6MTAgKzAyMDAKRnJvbTogQWRhbSBCYWNrIDxhZGFtQGN5cGhlcnNwYWNlLm9yZz4KU3ViamVjdDogUmU6IFtCaXRjb2luLWRldmVsb3BtZW50XSBXYXJuaW5nIG1lc3NhZ2Ugd2hlbiBydW5uaW5nIHdhbGxldArCoMKgwqAgaW4gV2luZG93cyBYUCAob3IgZHJvcCBzdXBwb3J0PykKVG86IFdsYWRpbWlyIDxsYWFud2pAZ21haWwuY29tPgpDYzogQml0Y29pbiBEZXYgPGJpdGMBMAEBAQE- X-Mailer: YahooMailWebService/0.8.185.657 References: Message-ID: <1397705876.21285.YahooMailNeo@web124504.mail.ne1.yahoo.com> Date: Wed, 16 Apr 2014 20:37:56 -0700 (PDT) From: Ron To: "bitcoin-development@lists.sourceforge.net" In-Reply-To: MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="-1600273758-1485183827-1397705876=:21285" X-Spam-Score: 1.4 (+) X-Spam-Report: Spam Filtering performed by mx.sourceforge.net. See http://spamassassin.org/tag/ for more details. 1.0 HK_RANDOM_REPLYTO Reply-To username looks random 1.0 HK_RANDOM_FROM From username looks random -1.5 SPF_CHECK_PASS SPF reports sender host as permitted sender for sender-domain 0.6 HK_RANDOM_ENVFROM Envelope sender username looks random 0.0 FREEMAIL_FROM Sender email is commonly abused enduser mail provider (rdwnj[at]yahoo.com) -0.0 SPF_PASS SPF: sender matches SPF record -0.7 RP_MATCHES_RCVD Envelope sender domain matches handover relay domain -0.0 RCVD_IN_DNSWL_NONE RBL: Sender listed at http://www.dnswl.org/, no trust [98.138.229.29 listed in list.dnswl.org] 1.0 HTML_MESSAGE BODY: HTML included in message -0.1 DKIM_VALID_AU Message has a valid DKIM or DK signature from author's domain 0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily valid -0.1 DKIM_VALID Message has at least one valid DKIM or DK signature X-Headers-End: 1WadCV-0007Ug-IO Subject: Re: [Bitcoin-development] Bitcoin-development Digest, Vol 35, Issue 61 X-BeenThere: bitcoin-development@lists.sourceforge.net X-Mailman-Version: 2.1.9 Precedence: list Reply-To: Ron List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 17 Apr 2014 03:41:24 -0000 ---1600273758-1485183827-1397705876=:21285 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: quoted-printable =0A________________________________=0A...=0AMessage: 4=0ADate: Wed, 16 Apr = 2014 21:43:10 +0200=0AFrom: Adam Back =0ASubject: Re:= [Bitcoin-development] Warning message when running wallet=0A=A0=A0=A0 in W= indows XP (or drop support?)=0ATo: Wladimir =0ACc: Bitcoi= n Dev =0AMessage-ID: <2014041619= 4310.GA11552@netbook.cypherspace.org>=0AContent-Type: text/plain; charset= =3Diso-8859-1; format=3Dflowed=0A=0ANot to get snarky or OS elitist but as = I understand it windows security,=0Aeven during its support period has been= measured in low digit number of days=0Ain the year when is NOT an outstand= ing known remote root compromise or=0Acombination of remote user compromise= + priviledge escalation.=A0 Add in=0Aphishing, watering holes, malware and= the average windows computer is=0Aprobably compromised a dozen times over.= =A0 Apparently for sometime it was not=0Aeasily possible to secure it insta= ll boot - install OS, connect to network=0Ato download security updates, IP= range scanned and compromised faster than=0Ayou can patch it.=0A=0AAdam=0A= ...=0A________________________________________________________________=0ARi= ght.=0A=0AThe trick was to install off line, add your own (free or commerci= al s/w firewall) then =0Aconnect, behind a router that had no port forwardi= ng, etc.=A0 Hell before cheap =0Arouters I ran one Win95B as I remember, us= ing ICS to a hub that feed my LAN and in front =0Awas a dialup and a cable = modem.=A0 Atguard was the S/W firewall, worked great and =0Anever was penet= rated.=0A=0AAnd if one used IE for anything, or any form of Outlook one was= and still is a fool. =0AThere are still fools who think that their Windows= Vista, 7, 8 or 8.1 is safe because =0AMS updates it days, weeks or longer = after an exploit is found/exposed/known... And=0Athey feel that they can in= stall and run anything anyone says is OK?=A0 No firewall can protect =0Aaga= inst shall we say digital naivety. =0A=0AAh what fools these mortals be.=A0= Then there are others that have never used IE, =0Anever installed/enabled = Outlook, never enabled UPNP &/or, DCOM; never executed =0A"unknown" s/w, an= d always had their own s/w firewall on, long before MS even =0Athought of "= Windows Firewall".=A0 Does anyone (other than zone alarm) check for =0Adata= leaving one's computer "unexpectedely"?=A0 Those machines could run Win95B= , =0AWin98SE, NT4, Win2K, XP pro long past MS's "cut off date" and barely n= otice=0Aanything. The show stopper is usually the browser (FF) or Adobe fla= sh or pdf =0Ademanding more OS functions, usually so that they can perform = more functions =0Amore poorly, I'm sorry to say.=0A=0ACheck the live deskto= p OSs connected to the internet, by version at =0AMarket share for mobile, = browsers, operating systems and search engines | NetMarketShare =0A=0A=0A = =0A Market share for mobile, browsers, operating systems and search engines= | NetMarketShare=0AMarket share for mobile, browsers, operating systems, s= earch engines and social media. Mobile market share and desktop market shar= e data. =0AView on www.netmarketshare.com Preview by Yahoo =0A=A0 last I = checked, XP was still ~29% and all Windows versions, ~90%=0A=0AComputer saf= ety, like driver safety, has more to do with the knowledge and skill =0Aof = the operator/driver, than the "newness" of the car/computer.=A0 A good driv= er/computer =0Auser, never gets into a situation that he/she can't repair/r= everse/prevent/recover from=0Aetc.=A0 Drive/run a motorcycle/computer and y= ou will learn defensive driving/computing =0A=0Areally fast or be roadkill = on the highway/digital highway.=0A=0ARon ---1600273758-1485183827-1397705876=:21285 Content-Type: text/html; charset=iso-8859-1 Content-Transfer-Encoding: quoted-printable

...
Message: 4
Date: Wed, 16 Apr 2014 21:43:10 += 0200
From: Adam Back <adam@cypherspace.org>
Subject: R= e: [Bitcoin-development] Warning message when running wallet
  = ;  in Windows XP (or drop support?)
To: Wladimir <laanwj@gmail.com<= /a>>
Cc: Bitcoin Dev <
bitcoin-dev= elopment@lists.sourceforge.net>
Message-ID: <20140416194310.GA11552@netbook.cyph= erspace.org>
Content-Type: text/plain; charset=3Diso-8859-1; form= at=3Dflowed

Not to get snarky or OS elitist but as I understand it w= indows security,
even during its support period has been measured in low= digit number of days
in the year when is NOT an outstanding known remot= e root compromise or
combination of remote user compromise + priviledge = escalation.  Add in
phishing, watering holes, malware and the avera= ge windows computer is
probably compromised a dozen times over.  Ap= parently for sometime it was not
easily possible to secure it install bo= ot - install OS, connect to network
to download security updates, IP range s= canned and compromised faster than
you can patch it.

Adam
...<= br>________________________________________________________________
Righ= t.

The trick was to install off line, add your own (free or commerci= al s/w firewall) then
connect, behind a router that had no port forward= ing, etc.  Hell before cheap
routers I ran one Win95B as I remembe= r, using ICS to a hub that feed my LAN and in front
was a dialup and a = cable modem.  Atguard was the S/W firewall, worked great and
never= was penetrated.

And if one used IE for anything, or any form of Out= look one was and still is a fool.
There are still fools who think that = their Windows Vista, 7, 8 or 8.1 is safe because
MS updates it days, we= eks or longer after an exploit is found/exposed/known... And
they feel t= hat they can install and run anything anyone says is OK?  No firewall can protect
against shall we say digital naivety.

Ah = what fools these mortals be.  Then there are others that have never us= ed IE,
never installed/enabled Outlook, never enabled UPNP &/or, DC= OM; never executed
"unknown" s/w, and always had their own s/w firewall= on, long before MS even
thought of "Windows Firewall".  Does anyo= ne (other than zone alarm) check for
data leaving one's computer "unexp= ectedely"?  Those machines could run Win95B,
Win98SE, NT4, Win2K, = XP pro long past MS's "cut off date" and barely notice
anything. The sho= w stopper is usually the browser (FF) or Adobe flash or pdf
demanding m= ore OS functions, usually so that they can perform more functions
more = poorly, I'm sorry to say.

Check the live desktop OSs connected to th= e internet, by version at
Ma= rket share for mobile, browsers, operating systems and search engines | NetMarketShare

=
  last I che= cked, XP was still ~29% and all Windows versions, ~90%

Computer safe= ty, like driver safety, has more to do with the knowledge and skill
of = the operator/driver, than the "newness" of the car/computer.  A good d= river/computer
user, never gets into a situation that he/she can't repa= ir/reverse/prevent/recover from
etc.  Drive/run a motorcycle/comput= er and you will learn defensive driving/computing
really fast or be roadkill on the highway/digital highway.=

Ron
 
<= /div>
---1600273758-1485183827-1397705876=:21285--