Firewalls are merely one minor step in the entire process of properly securing a network. The majority of people only set up the inbound rules and forget about the outbound. Also the majority of firewalls don't prevent MITM attacks, along with countless other methods.
If someone knows your IP address, can he hack into your computer?
- Thread starter prestokeys
- Start date
Well, it is hard to argue with the computer experts here, especially when one of them is a hacker with experience. I've already moved all my sensitive files from this computer.
Firewalls typically can't detect MITM attacks.Firewalls are merely one minor step in the entire process of properly securing a network. The majority of people only set up the inbound rules and forget about the outbound. Also the majority of firewalls don't prevent MITM attacks, along with countless other methods.
If you REALLY want it 100% safe try also unplugging it, storing it inside a tamper proof safe inside a Faraday cage. Ever heard of TEMPEST? http://en.wikipedia.org/wiki/TEMPESTKnowing an ip address is no different than knowing someones home address. You still need to get through the door.
Like a home, any computer can be broken into. If security is a concern keep sensitive data on a non networked computer or external hard drive.
A good first few steps: not using windows, securing your browser. and securing your email.
If you want a good tip invest in an encrypted flash drive that you would keep on your keychain. Start using portable applications. Portableapps.com and if you REALLY want to feel more secure use a VPN connection it's pretty cheap. If you want to but that's a tad extreme instead of using another computer use a bootable linux distribution.Well, it is hard to argue with the computer experts here, especially when one of them is a hacker with experience. I've already moved all my sensitive files from this computer.
Here is my reasoning:
- Get your Firefox browser on your flash drive. It will NEVER touch your hard disk, which makes it pluggable into any other computer i.e no cookies or browser history to worry about.
- Keep it on your key chain. Unless you lose your keys often it would never leave your immediate location. and even if it did it would be hard to access.
- Pay for a VPN provider, your IP will permanently be hidden.
- Bootable linux would secure you against any viruses, trojans or keyloggers. It wont let anything get installed permanently to your hard drive and again you can just pop in a cd or dvd and have an operating system running in seconds.
Once you are done with those sensitive emails, photos, etc they will be saved on your encrypted drive and only you can see them. And once you shut down the computer there will be 0 forensic evidence of anything.
I could push my security a bit further using a ram drive but let's not go there...
As others have said, there are 2 questions here and both have simple answers.
Is it possible to hack my computer that is attached to the Internet?
Short Answer: Yes.
More detail: The security options you put in place only increase the complexity of the hacking operation. It is still possible to hack given the correct motivation. The only truly secure computer is one in a sealed room with no connection to any other computer or the outside world that no-one interacts with in any way at all.
Will my computer that is permanently attached to the Internet be hacked?
Short answer: Probably not.
More detail: With all due respect, to most determined hackers as an average Joe Blow on the net you are not worth the effort. With some basic securty efforts - NAT on your router, antivirus and anti-spyware on your computers you will be largely irrelevent to hackers. There are much bigger fish to fry.
Is it possible to hack my computer that is attached to the Internet?
Short Answer: Yes.
More detail: The security options you put in place only increase the complexity of the hacking operation. It is still possible to hack given the correct motivation. The only truly secure computer is one in a sealed room with no connection to any other computer or the outside world that no-one interacts with in any way at all.
Will my computer that is permanently attached to the Internet be hacked?
Short answer: Probably not.
More detail: With all due respect, to most determined hackers as an average Joe Blow on the net you are not worth the effort. With some basic securty efforts - NAT on your router, antivirus and anti-spyware on your computers you will be largely irrelevent to hackers. There are much bigger fish to fry.
Joe Blow's computer files may be of no use to a hacker, but what's stopping the hacker from stealing the files, deleting them from Joe Blow's computer, and then asking him for money to return the files? Kind of like hard drive ransom? I'm sure at least 1 out of every 10 victims would be willing to pay to get back their files if they were not backed up and took a lot of time/effort/money to create those (irreplaceable) files.
Wrong. LOTS of ISPs are pretty much assigning static IPs these days. OR dynamic IPs with a very very long leases. That's my own personal experience.
To the OP...if you haven't already....please dismiss the above statement as it is a misleading generalization at best.
I am with 2 very large ISP's, neither of which assign static IP's, and in fact charge extra for it, at much lower speeds.
Everytime I re-boot my router, I am assigned a new IP. I have re-tested to support this response.
It is possible it won't work, but certainly worth a try.
To the OP...if you haven't already....please dismiss the above statement as it is a misleading generalization at best.
I am with 2 very large ISP's, neither of which assign static IP's, and in fact charge extra for it, at much lower speeds.
Everytime I re-boot my router, I am assigned a new IP. I have re-tested to support this response.
It is possible it won't work, but certainly worth a try.
Which is why I made the comment. Believing network security starts and ends with a firewall gives users a false sense of security.Firewalls typically can't detect MITM attacks.
Isn't that the way I said I'd do it? LolWhich is why I made the comment. Believing network security starts and ends with a firewall gives users a false sense of security.
Sure they do. Have a look sometime, it is there. Gmail knows your IP and adds it.Emails sent from gmail accounts don't have the IP address of the sender in the headers...
Did you think your google mail was private/anonymous?
Google??!!
Sure they do. Have a look sometime, it is there. Gmail knows your IP and adds it.
Did you think your google mail was private/anonymous?
Google??!!
I never said that Google doesn't have this information - they not only have it but in all likelihood retain it indefinitely . I said that e-mails originating from gmail do not have the IP address of the gmail originator in the headers but you have no clue what headers are so you jumped to conclusions in hopes of looking smart. To summarize if I sent you a mundane e-mail from a hotmail address you will find my IP address in the headers. If I were to send you that same e-mail from a gmail account you wouldn't have that info without gmail abuse and/or law enforcement getting involved.
Try actually looking at the header sometime.I never said that Google doesn't have this information - they not only have it but in all likelihood retain it indefinitely . I said that e-mails originating from gmail do not have the IP address of the gmail originator in the headers but you have no clue what headers are so you jumped to conclusions in hopes of looking smart. To summarize if I sent you a mundane e-mail from a hotmail address you will find my IP address in the headers. If I were to send you that same e-mail from a gmail account you wouldn't have that info without gmail abuse and/or law enforcement getting involved.
X-Originating-IP
