Do I need this AnalogX thingee? [Archive] - Outpost Users Support Forum

View Full Version : Do I need this AnalogX thingee?

bellgamin

10-24-2002, 11:28 AM

AnalogX does great programs.

Considering that I have OP, do I need the one linked below?

http://www.analogx.com/contents/download/system/dhcpfix.htm

A snip of the description...
<q>AnalogX DHCP Fix is just a simple program that closes a security hole in Windows 95/98/2000 that can make it possible for another computer to monitor every piece of information that comes and goes from it. The program will allow you to enable or disable the registry entry that closes this particular hole.</q>

I'd lay odds the answer is "NO" but -- since I'm a nooby, it's better to make sure, right?

Regards............bellissimo

root

10-24-2002, 11:57 AM

Good question. I came across that the other day and was wondering the same thing. Lopht isn't there anymore, so I don't know anything about the exploit.
Anybody here know?:confused:

spudkat

10-24-2002, 12:42 PM

I have had it installed for "ages" and have had no problems.........don't really know what it does tho' :p

Better safe than sorry......that's my motto :rolleyes:

Dave.

derekmorton

10-24-2002, 12:46 PM

L0pht have moved to

http://www.atstake.com/

Derek

root

10-24-2002, 12:51 PM

I saw that, but it doesn't look like the same old group. Also I can't seem to find a way to search the archives.
It's like everything else in the world today. If it works, someone will sell it, buy it, close it, or just screw it up in general.
The Peter Principle thrives.

Fry-kun

10-24-2002, 12:53 PM

Just in case you didn't know, the hacker group l0pht has formed a company and is now known as @Stake. I looked through their research advisories and this one is the only one that mentions DHCP:
http://www.atstake.com/research/advisories/1999/index.html. The full report is located
here (http://www.atstake.com/research/advisories/1999/rdp.txt).
I'm not sure if it's the same vulnerability, since the page at analogx.com doesn't go into enough detail about the fix (I usually refrain from installing patches that don't tell me what exactly will be patched, unless the patch came from the original software manufacturer)

/**EDIT**
It seems the advisory is the correct one (corresponding, at least =) ). Here's the atricle on TechTV (http://www.techtv.com/cybercrime/features/story/0,23008,2314671,00.html)
**END EDIT**/

cheers,
Fry-kun