Latest Forum Posts

Latest News Posts
Coming Soon!
Social
Go Back   Techgage.com > Archives > Reviews and Articles

Reviews and Articles Discussion for Techgage content is located here. Only staff can create topics, but everyone is welcome to post.

Reply
 
Thread Tools
Old 12-20-2005, 07:13 PM   #16
Unregistered
Guest Poster
 
Posts: n/a
Default

Quote:
Originally Posted by Unregistered
Someone at iolo sent me this. After reading it and researching on the Internet, it made perfect sense.

What you are describing has to do with the Null sessions exploit of Windows. The Fix Security Vulnerabilities tool of SM6 fixes a security vulnerability in Windows by disabling NULL Sessions to disallow the enumeration of SAM accounts and shares. A NULL session connection is an unauthenticated connection to Windows NT/2000/XP machines and is the number one method for hackers to enumerate information about the machine. From a NULL session hackers can use internal Windows functions, such as Remote Procedure calls, to enumerate information such the true administrator account and password, provide information on passwords, groups, services, users and even active processors. NULL session access can also be used for escalating privileges and perform DoS (Denial of Service) attacks.

The best way to prevent this is to disallow NULL sessions to the fullest extent possible by restricting anonymous users from enumerating SAM accounts and shares on Windows XP, or restricting all anonymous access unless explicitly granted on Windows 2000.

It is primarily recommended that your network administrator, or you under the administrator account login, configure the system to prevent anonymous log on access to all resources, with the exception of resources the anonymous user may have explicitly been given access to. For alternative resolutions, which may also require administrator access, please see the information below.

Reconfigure the Fix Vulnerability Tool

To disable testing for null sessions within the Fix Security Vulnerabilities tool:

1. Start System Mechanic 6.
2. On the left side of the System Mechanic 6 window click on the Protect button.
3. Click on Fix Security Vulnerabilities.
4. Under the Advanced area click on Custom inspection and report.
5. Click on the Next button.
6. Scroll down and locate Network Settings and uncheck the Null Sessions checkbox.


Re-enable the Security Exploit

Please note: re-enabling of this exploit can be hazardous to your system and allow malicious software or viruses to propagate to other computer shares on the network.

Windows 2000

The Windows security vulnerability can be re-enabled by using the Local Security Policy MSC or by manually navigating to the Administrative Tools Control Panel Applet.

1. Click on the Windows Start button, select Settings and click on Control Panel.
2. Double-click on Administrative Tools.
3. Double-click on Local Security Policy.
4. On the left, under Security Settings, double-click on Local Policies, and then select Security Options.
5. On the right, locate and double-click on Additional restrictions for anonymous connections and click on the Local policy setting drop down box. There are 3 possible values to set:

- None. Rely on default permissions
- Do not allow enumeration of SAM accounts and shares
- No access without explicit anonymous permission

The last value, No access without explicit anonymous permissions, is the most secure.

6. Restart the member computer or domain controller for the change to take effect.


Windows XP Home Edition

Windows XP Home Edition is architecturally limited and does not offer the ability of changing Windows policy settings by offering a security applet such as the Local Security Policy applet. Because of this limitation, the vulnerability will need to be manually re-enabled by modifying the Windows system registry.

1. Click on the Windows Start button.
2. In the Open field type regedit.
3. Click the OK button.
4. On the left, click on the plus sign next to HKEY_LOCAL_MACHINE.
5. Click on the plus sign next to SYSTEM.
6. Click on the plus sign next to CurrentControlSet.
7. Click on the plus sign next to Control.
8. Locate and highlight the key (folder looking icon) named Lsa.
9. On the right, double-click on the value named restrictanonymous.
10. Change the value to 0.
11. Scroll back up and click the minus sign next to Control.
12. Scroll back up and click the minus sign next to CurrentControlSet.

If the key ControlSet001 exists:

1. Click the plus sign next to ControlSet001.
2. Click on the plus sign next to Control.
3. Locate and highlight the key (folder looking icon) named Lsa.
4. On the right, double-click on the value named restrictanonymous.
5. Change the value to 0.
6. Scroll back up and click the minus sign next to Control.
7. Click the minus sign next to ControlSet001.

If the key ControlSet002 exists:

1. Click the plus sign next to ControlSet002.
2. Click on the plus sign next to Control.
3. Locate and highlight the key (folder looking icon) named Lsa.
4. On the right, double-click on the value named restrictanonymous.
5. Change the value to 0.
6. Scroll back up and click the minus sign next to Control.
7. Click the minus sign next to ControlSet002.

If more than the above described ControlSet00x registry locations exist then please perform the same steps on each location. When finished, close all open windows and restart the computer.


Windows XP Professional

The Windows security vulnerability can be re-enabled by using the Local Security Policy MSC or by manually navigating to the Administrative Tools Control Panel Applet.

1. Click on the Windows Start button, select Settings and click on Control Panel.
2. Double-click on Administrative Tools.
3. Double-click on Local Security Policy.
4. On the left, under Security Settings, double-click on Local Policies, and then select Security Options.
5. On the right, locate and double-click on each of the following policy settings to ensure they are set to disabled.

Network access: Do not allow anonymous enumeration of SAM accounts
Network access: Do not allow anonymous enumeration of SAM accounts and shares
Network access: Do not allow storage of credentials or .NET Passports for network authentication
Network access: Let everyone permissions apply to anonymous users

6. Select No access without explicit anonymous permissions under.
7. Restart the member computer or domain controller for the change to take effect.
Sure let a hacker tell you how to let him into one's system ...
Nice try buddy ... but no way..
  Reply With Quote
Old 12-20-2005, 07:16 PM   #17
Unregistered
Guest Poster
 
Posts: n/a
Default

Quote:
Originally Posted by espresso
System Mechanic 6 does something no one would like to see.
It scatters its backup files in the roots of the partitions!
Anyone with the same problem?
Did you by any chance figure out a sollution ?
Cause I found the same and am still having doubts about how to prevent it in the future.
  Reply With Quote
Old 01-24-2006, 10:05 PM   #18
Unregistered
Guest Poster
 
Posts: n/a
Default System Mechanic 6.0 is "Bleeding Edge" sofware

I have stopped using System Mechanic effective today. Since installing this product, SM6 has crippled 4 other software products simply by running the product in it's default mode of "Trust us - we'll decide for you and you'll face the consequences if we're wrong". Even for the advance user this product seem cumbersome and prone to error. Things to watch out for are letting SM6 control that should and should not be loaded at system boot time. Second is to watch out for the Spyware tool. It identified 2 keylogger on my system that proved to be false positives. In one of these cases it crippled the software to the point where I had to completely remove it and reinstall. This, in my opinion, is a very dangerous product BEWARE!
  Reply With Quote
Old 01-25-2006, 12:29 AM   #19
madmat
Soup Nazi
 
madmat's Avatar
 
Join Date: Jun 2005
Location: No soup for you!
Posts: 1,654
Default

What was the software it identified as a keylogger?
__________________

M4N82 Deluxe
Phenom II 940 Black Edition quad core @ 3.5Ghz
2x1 gig OCZ PC26400 Platinum, 2x1gig GSkill PC26400
EVGA GTX260
Buncha drives,
Some other stuff,
Even more stuff,
If the automobile had followed the same development cycle as the computer, a Rolls-Royce would today cost $100, get a million miles per gallon, and explode once a year, killing everyone inside. --Robert X. Cringely, InfoWorld magazine
madmat is offline   Reply With Quote
Old 08-16-2006, 04:49 PM   #20
Unregistered
Guest Poster
 
Posts: n/a
Question SM6 vs Zone Alarm Internet Security Suite

Can I get a recommendation from you guys?

I'm in a 15-day trial of ZA and it seems okay but is slowing down my system quite a bit.

I see that SM6 has both a firewall and anti-virus feature.


I'm just an ordinary computer-user. I run a political message board, surf, do email...that's about it.

Can you advanced users tell me which you would go with?

Thanks so much!

Linche
  Reply With Quote
Old 08-16-2006, 05:03 PM   #21
Rob Williams
Editor-in-Chief
 
Rob Williams's Avatar
 
Join Date: Jan 2005
Location: Atlantic Canada
Posts: 13,347
Default

Personally, for a Windows Firewall I have always enjoyed McAfee. I wouldn't recommend SM6's just for the sake of the rest of the application being unstable. You may run into similar problems with the firewall... I am not sure.

Strange that ZA would slow down your PC though. I've heard of weird problems with it before, but nothing like that.
__________________
Intel Core i7-3960X, GIGABYTE G1.Assassin 2, Kingston 16GB DDR3-2133, NVIDIA GeForce GTX 770 2GB
Kingston HyperX 3K 240GB SSD (OS, Apps), WD VR 1TB (Games), Corsair 1000HX, Corsair H70 Cooler
Corsair 800D, Dell 2408WFP 24", ASUS Xonar Essence STX, Gentoo (KDE 4.11. 3.12 Kernel)

"Take care to get what you like, or you will be forced to like what you get!" - H.P. Baxxter
<Toad772> I don't always drink alcohol, but when I do, I take it too far.


Rob Williams is offline   Reply With Quote
Old 08-16-2006, 05:59 PM   #22
madmat
Soup Nazi
 
madmat's Avatar
 
Join Date: Jun 2005
Location: No soup for you!
Posts: 1,654
Default

The Sys Mech. 6 Pro firewall is Kaspersky Anti Hacker. You can get it and Kaspersky anti virus from Kaspersky directly and forego the Sys Mech 6 Pro if you wish.

Personally I like Kaspersky's product quite a bit, it works very well and I never saw any sort of slowdown. One thing I did experience was Anti-Hacker would mistake Steam's server lookup as a DNS attack and shut my PC off from the 'net and I'd have to disable it.
__________________

M4N82 Deluxe
Phenom II 940 Black Edition quad core @ 3.5Ghz
2x1 gig OCZ PC26400 Platinum, 2x1gig GSkill PC26400
EVGA GTX260
Buncha drives,
Some other stuff,
Even more stuff,
If the automobile had followed the same development cycle as the computer, a Rolls-Royce would today cost $100, get a million miles per gallon, and explode once a year, killing everyone inside. --Robert X. Cringely, InfoWorld magazine
madmat is offline   Reply With Quote
Old 08-16-2006, 07:46 PM   #23
Unregistered
Guest Poster
 
Posts: n/a
Default Thanks!

I used to use McAfee years ago and liked it. Then I switched to Norton and now just feel like a change.

I would have automatically gone with McAfee but saw the news that they have a huge security problem with their programs.

I've never tried Kapersky. I just want to get the best "all inclusive" program for a "regular user" that won't interfere with my speed.

I'm a little limited because I use Firefox instead of IE and not all programs work with that. (I tried to download and install the suite my ISP provides free but it won't work with Firefox.)

Thanks for your comments. I'll check back later to see if there are any other ideas. (Normally, I would have no business being in this site, lol.)
  Reply With Quote
Old 08-16-2006, 08:43 PM   #24
madmat
Soup Nazi
 
madmat's Avatar
 
Join Date: Jun 2005
Location: No soup for you!
Posts: 1,654
Default

Kaspersky works just fine with Firefox, used them together for the better part of a year with nary an issue.
__________________

M4N82 Deluxe
Phenom II 940 Black Edition quad core @ 3.5Ghz
2x1 gig OCZ PC26400 Platinum, 2x1gig GSkill PC26400
EVGA GTX260
Buncha drives,
Some other stuff,
Even more stuff,
If the automobile had followed the same development cycle as the computer, a Rolls-Royce would today cost $100, get a million miles per gallon, and explode once a year, killing everyone inside. --Robert X. Cringely, InfoWorld magazine
madmat is offline   Reply With Quote
Old 10-19-2006, 06:20 PM   #25
Unregistered
Guest Poster
 
Posts: n/a
Smile System Mech 6

I installed the above last week and all seemed ok. In the last few days I noticed some heavy duty slowdowns when starting up an (any) application. For instance, Notepad took for ever to launch AND then more delay loading the text file. Through process of elimination I discovered the culprit to be SM6. Once I removed it everything was fine. In fact my PC is running faster than ever. Go figure....
  Reply With Quote
Old 10-19-2006, 07:03 PM   #26
Rob Williams
Editor-in-Chief
 
Rob Williams's Avatar
 
Join Date: Jan 2005
Location: Atlantic Canada
Posts: 13,347
Default

Great, another success story

I really hope to see SysMech 7 fix all of the problems that plagued 6. That was by far their worst release yet.
__________________
Intel Core i7-3960X, GIGABYTE G1.Assassin 2, Kingston 16GB DDR3-2133, NVIDIA GeForce GTX 770 2GB
Kingston HyperX 3K 240GB SSD (OS, Apps), WD VR 1TB (Games), Corsair 1000HX, Corsair H70 Cooler
Corsair 800D, Dell 2408WFP 24", ASUS Xonar Essence STX, Gentoo (KDE 4.11. 3.12 Kernel)

"Take care to get what you like, or you will be forced to like what you get!" - H.P. Baxxter
<Toad772> I don't always drink alcohol, but when I do, I take it too far.


Rob Williams is offline   Reply With Quote
Old 12-13-2006, 07:23 AM   #27
espresso
Guest Poster
 
Posts: n/a
Angry System Mechanic 7

Hello again from me after so much time!

I honestly doubt that anything is fixed with version 7. I have installed v7 trial and got disappointed from the start. The interface is disgusting, the whole thing looks pretty much like an internet page with links that lead to other sections of the application. I have noticed that everything else remained the same - the entire engine from v6.
I think v6 had been the one where started to make the wrong decions. It's not good old system mechanic anymore, it looks like some shiny addware application that offers you to fix some stuff in your PC but actually makes it slower and worse.
It's all messy when you start the application (like pilot's cockpit) with lots of warnings and alerts (as if you are about to crash).
To be honest I am afraid to try out all features in v7 since we all know that early versions of 6 had big problems that caused system crashes and stuff.

I don't like it. I'll keep using v6.

Can we expect a review on this site any time soon?
  Reply With Quote
Old 12-13-2006, 07:49 AM   #28
madmat
Soup Nazi
 
madmat's Avatar
 
Join Date: Jun 2005
Location: No soup for you!
Posts: 1,654
Default

I honestly hadn't heard that 7 was out yet and as snowed under (not literally, I'm in a warm state) as I am right now I can say no review of it anytime soon, not from me. If it's basically the same engine as 6 and just a minor interface shake up I'd advise to avoid it unless you're planning to go the power user route and choose what to do and not do. The automated sections of 6 left me cold, 5 was much better IMO.
__________________

M4N82 Deluxe
Phenom II 940 Black Edition quad core @ 3.5Ghz
2x1 gig OCZ PC26400 Platinum, 2x1gig GSkill PC26400
EVGA GTX260
Buncha drives,
Some other stuff,
Even more stuff,
If the automobile had followed the same development cycle as the computer, a Rolls-Royce would today cost $100, get a million miles per gallon, and explode once a year, killing everyone inside. --Robert X. Cringely, InfoWorld magazine
madmat is offline   Reply With Quote
Old 12-15-2006, 08:08 PM   #29
Unregistered
Guest Poster
 
Posts: n/a
Angry Don't upgrade to version 7!!!

I recently updated my license and saw that version 7 was out, so I would upgrade. Huge mistake. I have used SM Pro since version 5 and this was by far my worst experincce with it. Version 6 and version 7 seem to be the same program. They tried to dumb down the program for the average user, but IMO did a bad job. Things are hard to find now. Seems like the computer locks up more. Program is a huge RAM hog. I liked the V6 interface better. Also, the program does not appear to run under limited user accounts. I am going to play around a bit to see if I can get it working. Their tech support is worthless. Two of their "support" personel told me that I would have to change my limited user accounts to admin accounts so the program would work right. One guy told me that it is supposed to work that way since you don't want the regular users to be in the firewall or antivirus programs. This was the same idiot that hung up on me. They will feel the heat once MS Vista comes out. SM7 will fail miserably. We may not get a SM8 if they don't fix their problems and listen to their users.

That felt better. Needed to vent.
  Reply With Quote
Old 12-15-2006, 10:11 PM   #30
Rob Williams
Editor-in-Chief
 
Rob Williams's Avatar
 
Join Date: Jan 2005
Location: Atlantic Canada
Posts: 13,347
Default

Haha, wow. This sounds like a program I need to get a hold off. We've shrugged this program for a while. It's amazing how popular it actually is. Our 6 review was posted over a year ago, and nothing has changed!

iolo needs to get their stuff together. I think the first version I used was 4, and it was great. Not sure what happened.
__________________
Intel Core i7-3960X, GIGABYTE G1.Assassin 2, Kingston 16GB DDR3-2133, NVIDIA GeForce GTX 770 2GB
Kingston HyperX 3K 240GB SSD (OS, Apps), WD VR 1TB (Games), Corsair 1000HX, Corsair H70 Cooler
Corsair 800D, Dell 2408WFP 24", ASUS Xonar Essence STX, Gentoo (KDE 4.11. 3.12 Kernel)

"Take care to get what you like, or you will be forced to like what you get!" - H.P. Baxxter
<Toad772> I don't always drink alcohol, but when I do, I take it too far.


Rob Williams is offline   Reply With Quote
Reply

Tags
None

Thread Tools

Posting Rules
You may not post new threads
You may post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is On

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Gaming system Merlin Gaming 3 04-15-2008 10:38 PM
System Mechanic and Windows Vista kamel General Software 5 04-03-2007 12:39 PM
System Mechanic 6 stephend12 General Software 4 03-21-2006 01:11 PM
iolo System Mechanic 5 Rob Williams Reviews and Articles 1 07-02-2005 02:36 AM


All times are GMT -4. The time now is 06:23 PM.