以下消息未經證實,如果想要確認內容的正確性,請自行與代理商貨原廠詢問。
話說,大家在安裝軟體的時候,軟體會在安裝前宣告一些內容,相信大家都不會去看,當然我也不會去看。但一些涉及隱私的內容,可能會在宣告中敘述,如果選擇同意安裝軟體,就意味著接受宣告中的內容。
據可靠消息來源指出(我不會說的),某軟體在 9.3 版之前,不會上傳一些資訊,但從 10.0 之後,就會上傳一些資訊到某些伺服器。我個人對這消息的正確性,是持正面的。原因是:在 11.3 版(我在 11.3 版的時候收到這訊息)的程式安裝目錄下,曾經攔到有一支程式 PDS64.exe 從安裝目錄連出,但在 12.2 版,這隻程式已經不見了,不確定是改名還是換了方式。目前已 知 12 版還存在。但這還不是重點,重點是在下面:
這一部分,我無從證實,只能大家自己留意。有的程式可能會從你電腦中的 Registry 取得該電腦的網域,或是曾經連過某公司的網域。這一部分才是最重要的。如果可以的話,把 Registry 中將公司網域的相關名稱的機碼刪除。
目前避免軟體將資料上傳的方式:
1. 不接網路線:這絕對是最安全的方式。
2. 防毒軟體的 HIPS 功能(有些防毒軟體有提供):設定花時間和精力,弄不好還會把作業系統弄掛,不過當初用就是用 COMODO 抓到 PDS64.exe 的。
3. 防火牆:也需要先知道該程式有哪幾隻程式會連出去。
4. 虛擬機:安裝虛擬機,然後將虛擬機的網路斷開。在這情形下,HOST 機仍可以上網,但虛擬機無法連網。如果用 VMWare 的免費 Windows 版本的 Player,可以達到此功能,但缺點是,虛擬機的 CPU 工作頻率一直顯示在基頻的速度,而無法 Turbo Boost(不確定是否真的這樣)。且虛擬機建議安裝在 SSD 上。附註:另外準備徹底刪除,無法復原檔案的軟件,必要時將整個虛擬機刪除, 不留痕跡。
6 則留言:
我用一套小程式(Tweaking.com-Right-Click_Allow_Block_or_Remove-Windows_Firewall)可以在檔案總管理把所有執行檔封鎖(因為不知道是哪隻程式會上傳資料,所以全封最保險),比在防火牆裡一個一個設定要方便得多.但是還是有風險.做雙系統開機,一個連網,一個不連,這樣最安全.
感謝分享小工具。比較怕的是,不知道會不會將一些程式安裝到系統目錄,讓使用這誤判是系統軟體的一部分?
這個不用安裝,直接目錄中執行程式即可.以下是這支程式的README.TXT
Tweaking.com - (Right Click) Allow, Block or Remove - Windows Firewall
The point of this program is to make adding/removing programs to/from your Windows firewall easier than ever.
This program will add a right click option to all .exe and .com programs, allowing you to allow, block or remove a program from the Windows firewall in 1 click.
But as the rest of my programs I have gone an extra step, "Shane" style if you will :-D
When you add a program to the firewall, all rules that have the same file path will be removed first and then a new single rule is added.
This can greatly help when a user has multiple different rules for a program and they don't realize it.
A lot of times those rules can conflict and create problems.
Now all those extra rules are removed during the process.
Also when you allow a program through the firewall the settings in the rule are to allow any protocol, any port and allow edge transport.
Basically the settings in the rule are to let the program be fully allowed through.
Aside from allowing programs through you can also block them if need be.
Same thing happens, all current rules that point to the same program are removed and a single new rule is added that blocks the program on every protocol and every port.
And just for those users who like to keep things clean, there is also an option to remove all rules for a program from the firewall.
Nice feature to have when you are uninstalling a game or program and don't want the rules in the firewall any more.
All 3 of these options are just 1 click.
You can also select multiple .exe and .com files at once to make things even faster. All done through Windows Explorer.
How TO INSTALL:
Extract all files from the zip folder. Make sure to save them in a folder that wont be moved or deleted.
Once extracted run the Right_Click_Options.exe in the extracted folder and then in that program click on "Add Right Click Menu".
That's it! That will add the right click menu options to all .exe and .com files. Nothing is installed or written anywhere else.
To uninstall just run Right_Click_Options.exe again and click "Remove Right Click Menu" and then simply delete all the files in the program folder.
If for any reason you move the files to a new folder you need to run the "Add Right Click Menu" option again so the registry keys will be updated with the new file paths.
.
我寫的太精簡了,造成誤會,抱歉了。我不是指 Firewall 的程式,我是指需要被阻擋,可能會偷傳資料的那些程式。以前程式好像會放一些 DLL 之類的檔案到 Windows 的資料夾下,不知道現在還會不會?就像現在,有一些檔案是放在 ProgramData 目錄下。
的確是有可能.這陣子小弟就被原廠抓到了,到現在我還是不知道是哪個程式出去的.
如果可以的話,還是裝個虛擬機吧。或許效能會打些折扣,但可以讓 Host 機保持乾淨,VM 可以用完備份出來,要用的時候再複製進去。目前看起來還蠻安全的。前陣子 MIS 來清查,我的電腦超級乾淨。
張貼留言