Was someone trying to hack my wife's PC last night?

[bernse]

I was using my wifes PC last night for the first time in ages. It is hooked up to our DSL connection that has no firewall, and running Win98SE. I had the computer on for about 1/2 an hour.

When I went to shut it down, Windows gave me a message “A file is open for a user” or something like that, and asked if I still wanted to shut down, which I did.

I looked at the DSL modem and there appeared to be some activity on it. I am sure I terminated the executable that I ran on her PC before I shut her PC down.

I’m not too concerned about security on her PC as it is just a fresh, bare install of Win98SE and no other files on it… other than my little Executable so I’m not concerned about any information leaving, but I was curious as to the message I received as I shut down.

[JRootabega]

You’re right, Derleth, we’re so very sorry, we’ll try to use the correct terminology in the future.

Oops, force of habit.

Anyway, bernse, you probably have File and Printer sharing enabled – it’s under the Network section of the Control Panel. Someone on the network to which your DSL modem connects you was accessing the files that you were thus sharing on that network. If they didn’t have write permissions, there’s not much they can do.

[bernse]

Well, I know I do have sharing allowed on her PC as I do transfer the odd file between the two PCs of ours (only my PC and hers on the LAN) but mine was turned off at the time.

I guess I am wondering if it was someone browsing/opening her files via the net.

[World_Eater]

Well it’s possible it could be a trojan trying to “phone home”, but who knows. I would do as JRoot suggested and disable filesharing, and download this free firewall, it does the job well.

http://www.agnitum.com/products/outpost/

[Will_Repair]

Go to grc.com and perform the Shield’s Up test. Follow the directions for fixing security holes.

[Larry_Mudd]

RegisterUK article on a simple exploit of Microsoft’s notoriously lax Windows networking security.

A program that scans Internet addresses for unprotected disk drives might be viewed as a hacking tool. But to the man who wrote it, ShareSniffer is an honest peer-to-peer venture that brings out the full potential of Windows’ networking features.
“I want people to know that they don’t have to take the time to make a web site and pay somebody to host it,” says ShareSniffer Inc. co-founder Kerry Rogers, 40, the author of the program. “All they have to do is right-click on a folder, and they can make all their music and art and other incredible stuff available to the world.”

Nice spin, there.

Password-protect your open shares at the very least. A firewall is a good idea, too. If you’re not used to configuring firewalls, I recommend ZoneAlarm. After it’s installed, every time you have network requests, a dialog comes up and asks if it’s okay, or if it should be blocked in the future. A very simple case-by-case approach.

[KneadToKnow]

You know, if you’re a little sloppy about the way you pronounce PC, this becomes a much more disturbing question.

[bernse]

Yes, but I already know who that person was.

[bernse]

Actually, um, never mind. I just realized how bad that sounded in conjunction with hack.

[KneadToKnow]

Yeah, see? Much more disturbing.

But at least you took it in the spirit it was intended.

[NutMagnet]

bernse
“my little Executable”

That’s so cute! I’ve never heard it called that before.

[something_clever]

go get ZoneAlarm, you should probably have it already. it should be a law for broadband users or something…