Author Topic: Tests and other Media topics  (Read 248810 times)

0 Members and 2 Guests are viewing this topic.

Offline DavidR

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 82311
  • No support PMs thanks
Re: Tests and other Media topics
« Reply #705 on: October 05, 2019, 06:08:45 PM »
The avast forum report: https://nibbler.silktide.com/en_US/reports/forum.avast.com

Hey, folks, read here and else on the forums, because we have found, that
"Over the past 3 months, this website has experienced a moderate decrease in popularity."  :o
That's actually a good sign, as this is a support forum, less traffic means less problems. ;)

Personally I think this report isn't really designed for the likes (excuse the disgraceful pun) of a support forums and not some commercial enterprise where many of these 'popularity' ratings are pointless.

Quote from: extract
Marketing
How well marketed and popular the website is.
I don't see any relationship to this in a support forum.

Quote from: extract
This website does not appear to be associated with a Twitter account.
So bloody what.

Quote from: extract
Social interest
1.  We did not find any Facebook likes or Google +1s for the 5 pages we tested.
Encourage sharing of your content with social media buttons on articles and pages of your website.
2.  The amount of social activity a website should have depends very much on the type of website, its target audience, and how long it has been in operation.

Boy am I glad there aren't any "Facebook likes or Google +1s"
For me that last quoted sentence confirms my comment about the point of avast forums doesn't really lend itself for this type of analysis.

I don't think that less Popularity actually equates to less traffic.

I would say that some traffic is down (but not all) the viruses and worms sub-forum does seem less active, less people requiring help with infections.  I would say that some traffic is up, those complaining about bugs, ads in the UI, etc.  This isn't a good thing and this isn't something that can be measured in this way.
« Last Edit: October 05, 2019, 06:10:20 PM by DavidR »
WinXP ProSP3/ Core2Duo E8300/ 4GB Ram/ avast! free 18.5.2342/ Firefox ESR, uBlock Origin, uMatrix/ MailWasher Pro7.11.0/ DropMyRights/ WinPatrol+/ Drive Image 7.1/ SnagIt 10.0/ avast! mobile security
Windows 10 Home 1909 64bit/ Acer Aspire F15/ Intel Core i5 7200U 2.5GHz, 8GB DDR4 memory, 256GB SSD, 1TB HDD/ avast! free 19.8.2393 (build 19.8.4793.544) UI-1.0.415/ WinPatrol+/ Firefox, uBlock Origin, uMatrix/ MailWasher Pro7.11.0/ WinPatrol+/

Offline polonus

  • Avast Überevangelist
  • Maybe Bot
  • *****
  • Posts: 31973
  • malware fighter
Re: Tests and other Media topics
« Reply #706 on: October 12, 2019, 12:04:50 PM »
@DavidR,

Happy, when you are happy, agree with you there  ;)

polonus
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline polonus

  • Avast Überevangelist
  • Maybe Bot
  • *****
  • Posts: 31973
  • malware fighter
Re: Tests and other Media topics
« Reply #707 on: October 12, 2019, 12:18:39 PM »
Now brought in by Mozilla, CloudFlare & Google to a browser near you:
DoH = (DNS over HTTPS):

https://observatory.mozilla.org/analyze/doh.cleanbrowsing.org
Mozilla, CloudFlare & Google with DoH versus the rest of the globe,
making it harder for supervision, see the controversy kicked up by UK authorities,
with their usual objection (safety filtering for minors).

I, in my humble opinion, see it as a two-sided sword.

Big Commerce will love it for the obvious reasons, some end-users and/or other organizations may like it far less.

More (in)security through obscurity. Not improved website security,
only better secure connection implementation towards whatever insecure or even criminal sites.
But rogues and criminals will also adopt DoH.  :o

Read: https://www.netsparker.com/blog/web-security/pros-cons-dns-over-https/

Consider: https://observatory.mozilla.org/analyze/doh.cleanbrowsing.org  (B-status).

Conclusion what is good for Big Money IT core business and gigantic properity,
is not that perse for the common end-user (their much ignored product)  8)

Free services normally mean you are owned by something or some-one,
well at least on propriety software that is.

polonus
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline polonus

  • Avast Überevangelist
  • Maybe Bot
  • *****
  • Posts: 31973
  • malware fighter
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline polonus

  • Avast Überevangelist
  • Maybe Bot
  • *****
  • Posts: 31973
  • malware fighter
Re: Tests and other Media topics
« Reply #709 on: October 13, 2019, 01:33:33 PM »
Various DNS and domain tests:
Test website and connection: https://en.internet.nl/
DNSViz visualization scan: https://dnsviz.net/
DNSSEC validation: https://dnssectest.sidnlabs.nl/
Zonemaster domain check: https://www.zonemaster.net/domain_check

Enjoy, my good friends, enjoy,

polonus
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline polonus

  • Avast Überevangelist
  • Maybe Bot
  • *****
  • Posts: 31973
  • malware fighter
Re: Tests and other Media topics
« Reply #710 on: October 14, 2019, 10:41:26 PM »
Mozilla now protects Firefox against attacks via about:pages:
Read: https://blog.mozilla.org/security/2019/10/14/hardening-firefox-against-injection-attacks/

Now they have introduced CSP re-written code inside the browser. (CSP means Content Security Policy)
Good action by Mozilla's Browser Development Team.

However, how many websites do not have one single CSP implementation enabled?

For the frightening results on the website infrastructure,
look here on the map immuniweb presents: https://www.immuniweb.com/websec/

The browser may have now come with further improved security,
many, many websites still have a long way to go, where best security policies are being concerned.

Scan websites here:
https://securityheaders.com/?q=&followRedirects=on

For immediate threat risk evaluation results (MiM attacks, sending e-mails fraudulently etc.):
https://webscan.upguard.com/#/

Of course the browser end-user can do something to get better protection,
by (temp) blocking JavaScript etc. via an extension like uMatrix.

Mozilla always had Giorgio Maone's No Script to perform such tasks.

Where JavaScript is concerned, it always is an uneven battle between attacker and those that try to protect against it.
Security protection has to take all sort of issues into account over with a wide protection window,
a malicious hacker just has need for a tiny little worm-hole to get through,
be it in some cases after the hundredth parameter, when he tested that out.  (info source credits go to luntrus)

So for volunteer 3rd party cold recon website security analysts and website error-hunters it is time to stay vigilant.

polonus (volunteer 3rd party cold recon website security analyst and website error-hunter)
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline polonus

  • Avast Überevangelist
  • Maybe Bot
  • *****
  • Posts: 31973
  • malware fighter
Re: Tests and other Media topics
« Reply #711 on: October 21, 2019, 03:55:13 PM »
How to go about strengthening the security of your website?
Some issues to consider.

When you perform a scan here: http://isithacked.com/check/
One should establish whether there is no Cloaking taking place,
that means the site does not show other code to Google as it does to Googlebot.

Check status codes, they should all be the same.

Are there no spammy looking links?

Any inframes, that could be hidden and malicious?

Is your site blacklisted - Reputation Check
PASSED
Google Safe Browse:OK
Spamhaus Check:OK
Abuse CC:OK
Dshield Blocklist:OK
Cisco Talos Blacklist:O

In the case of a Word Press Security Scan we could get such blacklisting info also, also info on outdated Word Press software,
outdated plug-ins etc. Info on wrong settings like User Enumeration enabled and Directory Listing enabled.

Also we should check webserver excessive info proliferation. Check on IP via shodan.io,
you then also could explore server bugs and vulnerabilities given for that particular host - domain IP.
An example on GoDaddy's with vulnerabilities: https://www.shodan.io/host/107.180.57.26
Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.
That is why making your webserver not talking that loud is so important! (Dazzlepod ip scan - DOM-XSS issue scan).


Please retire vulnerable jQuery libraries. Two ways to check - Retire.JS extension for website developers https://retirejs.github.io/retire.js/
or check here: http://retire.insecurity.today/#!/scan

Another check for JavaScript errors with an extension like Javascript Errors Notifier.
Web Developer extension gives a complete range of tools - then open Ctrl+Shift+I
This for website developers -

Also important to know about security header implementation, check through an extension like RECX Security Analyzer.
Or just scan: https://www.immuniweb.com/websec/  and here: https://observatory.mozilla.org/

Then just generate your CSP: https://www.cspisawesome.com/

It is not good to read for example:
X-Frame-Options header is missing
-2 X-XSS-Protection header is missing
-1 X-Content-Type-Options header is missing

In the next posting we look over other aspects and will go a-linting,

polonus (volunteer 3rd party cold recon website security analyst and website error-hunter)


Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline polonus

  • Avast Überevangelist
  • Maybe Bot
  • *****
  • Posts: 31973
  • malware fighter
Re: Tests and other Media topics
« Reply #712 on: October 21, 2019, 04:28:58 PM »
Very nice extended test: https://www.immuniweb.com/websec/?id=PfsziMm1
C+ grade and see the miscofigurations alerted there.

Also important to see the 3rd party content -
compare this top a scan here: https://webcookies.org/cookies/
-> https://webcookies.org/cookies/ww1.samuzar.com/28557040?676320
with resource insecurely loaded over plaintext HTTP.

Sometimes additional scans should be performed: https://webcookies.org/cookies/pxlgnpgecom-a.akamaihd.net/16643915
See: https://www.shodan.io/host/23.62.7.136 -> https://aw-snap.info/file-viewer/?protocol=not-secure&ref_sel=GSP2&ua_sel=ff&chk-cache=&fs=1&tgt=cHhsZ25wZ3teXW0tfC58a3xtfFtoIy5ue3Q%3D~enc
Quote
PORT    STATE SERVICE VERSION
80/tcp  open  http    AkamaiGHost (Akamai's HTTP Acceleration/Mirror service)
|_http-server-header: AkamaiGHost
|_http-title: Invalid URL
443/tcp open  ssl
|_ssl-date: TLS randomness does not represent time
| tls-alpn:
|_  http/1.1
| tls-nextprotoneg:
|   http/1.1
|_  http/1.0
Dazzlepod info

Also see Netcraft Site Report - risk grade 1 red out of 10:
https://toolbar.netcraft.com/site_report?url=a23-62-7-136.deploy.static.akamaitechnologies.com
Detections for this IP address: https://www.virustotal.com/gui/ip-address/23.62.7.136/relations

Blocked for me by an extension = -dt.gnpge.com  : https://www.virustotal.com/gui/ip-address/23.62.7.136/relations

polonus

« Last Edit: October 21, 2019, 07:03:49 PM by polonus »
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline polonus

  • Avast Überevangelist
  • Maybe Bot
  • *****
  • Posts: 31973
  • malware fighter
Re: Tests and other Media topics
« Reply #713 on: October 21, 2019, 10:14:21 PM »
Some security linting done here for security issues and recommendations:
https://webhint.io/scanner/d95de77c-34b5-4a24-8a9d-56c2d3247f5a#category-security
https-only -  Site should be served over HTTPS to ensure a better connection.
validation not set: 'set-cookie' header to set 'vsid' doesn't have the 'secure' directive
See why this is important: https://webhint.io/docs/user-guide/hints/hint-validate-set-cookie-header/#why-is-this-important
x-content-type-options: 3 hints - Response should include 'x-content-type-options' header.
SSL-labs - does not support HTTPS-

Site has a critical security risk and is blocked by an extension for me:
https://sitecheck.sucuri.net/results/ww1.samuzar.com - see under links found, see:
https://otx.alienvault.com/indicator/ip/208.91.196.145/  IP, having instant access malware - Trojan.

polonus
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline polonus

  • Avast Überevangelist
  • Maybe Bot
  • *****
  • Posts: 31973
  • malware fighter
Re: Tests and other Media topics
« Reply #714 on: October 26, 2019, 12:09:44 AM »
I was reading about these subjects: attack vectors, they are being introduced here: http://www.tecapi.com/public/relative-vulnerability-rating-gui.jsp  and then here: http://www.tecapi.com/public/rvr-view-attack-vector-gui.jsp?antiCsrfToken=null&attackVectorId=10  and see why these attack vectors are critical.

Then I went over an attack vector that was found up by fuzzing and only working in Firefox like
Quote
<!----!> but not in chrome and again on älert(1)" string when I reached here: https://alf.nu/alert1  HTML & JavaScript and you open a real can of worms, not always, but you sure in for some surprise. You are right in the Win A series of JavaScript challenges.

Are you in for testing, well Polonus does it all the time all of the time: https://alf.nu/Chargen
Combine it with this and learn: https://www.duplichecker.com/url-rewriting-tool.php

Enjoy, my good friends, enjoy,

polonus

« Last Edit: October 26, 2019, 12:13:33 AM by polonus »
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline polonus

  • Avast Überevangelist
  • Maybe Bot
  • *****
  • Posts: 31973
  • malware fighter
Re: Tests and other Media topics
« Reply #715 on: October 26, 2019, 02:43:26 PM »
You often see me react on Word Press flaws on reported websites in the Virus & Worms section.

Here an example.

How to test for such flaws against your own website: http://evuln.com/tools/sql-encoder/
See where others utterly have failed: https://codecurmudgeon.com/wp/sql-injection-hall-of-shame/
And an example of SQL Injection on a plug-in of the Word Press CMS:
https://securityboulevard.com/2019/04/sql-injection-in-duplicate-page-wordpress-plugin/

PHP driven CMS, could often mean a can of worms: use a PHP security scanner: http://evuln.com/tools/php-security/
And whenever you decide to use it anyways, use best practices: https://www.cloudways.com/blog/php-security/

polonus
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline polonus

  • Avast Überevangelist
  • Maybe Bot
  • *****
  • Posts: 31973
  • malware fighter
Re: Tests and other Media topics
« Reply #716 on: October 26, 2019, 06:02:24 PM »
Now on unto something completely different.
Mysticism and numbers.
As a teacher I still learned to check difficult multiplications through the proof by nine.

For the link to the stack and the digital world, see:
see number theory:
https://math.stackexchange.com/questions/1620248/the-nine-rule-proof-example-13-15-28-rightarrow-control-13-15

Also Tesla made his specific observations and especially on the trits- 3,6,9:
https://blog.world-mysteries.com/science/why-did-tesla-say-that-369-was-the-key-to-the-universe/

Funny all goes back even to the days of the Big "Goochems" (the Jewish scientists of Mathematics in the days of Alhambra),
but only with Arabic numbers, not with the Latin equivalents. Earlier they counted with a 72-numeric sequence in Babylon,
to make very intricate extrapolations.
Together with a decimal variant for use on the market, counting the fingers of your two hands (menat is 10, as few people  have only four digits). Or taking letters as numbers, aleph = 1, beth = 2 etc.

Now we are entering Quantum days certainly opening further horizons.

polonus aka Damian.

Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline DavidR

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 82311
  • No support PMs thanks
Re: Tests and other Media topics
« Reply #717 on: October 26, 2019, 07:44:09 PM »
Well my teacher never taught me that (perhaps I was sleeping) :)
https://en.wikipedia.org/wiki/Casting_out_nines
WinXP ProSP3/ Core2Duo E8300/ 4GB Ram/ avast! free 18.5.2342/ Firefox ESR, uBlock Origin, uMatrix/ MailWasher Pro7.11.0/ DropMyRights/ WinPatrol+/ Drive Image 7.1/ SnagIt 10.0/ avast! mobile security
Windows 10 Home 1909 64bit/ Acer Aspire F15/ Intel Core i5 7200U 2.5GHz, 8GB DDR4 memory, 256GB SSD, 1TB HDD/ avast! free 19.8.2393 (build 19.8.4793.544) UI-1.0.415/ WinPatrol+/ Firefox, uBlock Origin, uMatrix/ MailWasher Pro7.11.0/ WinPatrol+/

Offline polonus

  • Avast Überevangelist
  • Maybe Bot
  • *****
  • Posts: 31973
  • malware fighter
Re: Tests and other Media topics
« Reply #718 on: October 27, 2019, 12:30:53 PM »
Hi DavidR,

He probably did not tell you either that Tesla was a very superstitious man, who had a bout of control disorder.
I do not know how common it is for inventors to meddle in such magical issues or artists, think of Michelangelo.

Tesla had it all a bit worse than average,where one just will double check the gas is turned off before leaving the house.
every person have such remainders of the reptile-brain functionality traits.

A teacher would never tell about the proof of nine. They kept it for themselves to quickly check outcomes.

Assume, we arrived to the outcome of 491 × 5915 this number 2.904.365. Through proof by nine we now get 491 mod 9 = 5 via this route: 4+9+1 = 14 → 1+4 = 5, en 5915 mod 9 = 2 via: 5+9+1+5 = 20 → 2+0 = 2, and then we get at accordingly (5 × 2) mod 9 = 1, just by adding the number of this resulting in 10. Easy peasy. All Dutch teachers before the Second World War had this at their disposition. It is not being taught anymore.

polonus
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline polonus

  • Avast Überevangelist
  • Maybe Bot
  • *****
  • Posts: 31973
  • malware fighter
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!