Go Back   Cockos Incorporated Forums > REAPER Forums > REAPER Compatibility

View Poll Results: Do you surf the net on your DAW PC?
No internet on DAW PC 41 26.45%
Internet on DAW PC, but careful about which sites I visit 63 40.65%
Internet on DAW PC, and surf with no restrictions! 51 32.90%
Voters: 155. You may not vote on this poll

Reply
 
Thread Tools Display Modes
Old 09-21-2014, 02:30 PM   #41
Nystagmus
Human being with feelings
 
Nystagmus's Avatar
 
Join Date: Oct 2013
Posts: 509
Default don't contribute to malicious hacking, stay offline

A word to the wise...

A lot of hackers will scan an entire IP range of all computers connected to a large popular internet service provider just to find those that aren't protected. Then, they break into them (easily) and take them over using known security flaws and bugs which they share with each other on hacker websites and forums. Often they share the break-in tools as freewares.

Once in, they can try to siphon off your credit card numbers from internet purchases, and/or install a keystroke logger to get that and other personal information automatically.

Also, they can compile your personal information and use it to impersonate you for financial crimes, or just to post internet bullying or child porn junk on the internet.

If you are a political activist of any type and have adversaries, then they can utilize your personal information to make you look bad and discredit you. This is actually a growing trend that has been written about in recent years due to the sudden growth of independently contracted local intelligence agencies who work for profit for corporations to derail peace activists and anti-pollution activists and whistle-blowers.

The laws are lagging behind the activities, so the dirty tricks are still somewhat legal even though they are clearly espionage level attacks done for profit. Most of the people targeted are honest innocent citizens, but the people paying for them to be hacked and knocked down are corrupt corporations and politicians. Look it up.

Even if you have nothing of value to them on your system, they can use your hacked system as a "bot" (robot), to launch DDoS (dedicated denial of service) attacks on corporations, individual, government, or mililitary internet targets.

Or, they can use your hacked system as a proxy to hide their identity as they try to hack into corporate, individual, government, or military systems.

Seriously, do you really want to open yourself up to all that?

If you don't read about this stuff regularly, you just don't know. It's a very real and widespread problem. Unless you stay offline.
Nystagmus is offline   Reply With Quote
Old 09-21-2014, 03:25 PM   #42
cyrano
Human being with feelings
 
cyrano's Avatar
 
Join Date: Jun 2011
Location: Belgium
Posts: 4,599
Default

Quote:
Originally Posted by Nystagmus View Post
A word to the wise...

A lot of hackers will scan an entire IP range of all computers connected to a large popular internet service provider just to find those that aren't protected.
That would be very inefficient. 99% of broadband users is connected via a NAT router. If anyone scans the net that way, it's probably to break into your router. That's 24/7 on, your computer isn't. And who notices what their router is up to?

Quote:
Then, they break into them (easily) and take them over using known security flaws and bugs which they share with each other on hacker websites and forums. Often they share the break-in tools as freewares.
That is not what hackers do. They are the ones who find the holes, report them and usually follow up to see they get fixed. Research tools are usually open source and free. Tools to break in usually are not. There's even a number of legitimate businesses selling those, but I think you've probably never heard the names "Elcomsoft", or "Finfisher". If you ever find a free break in tool, it's probably a way to break into YOUR computer by making you download, install and run their tool, hoping it'll make you a "hacker" ;-)
That's called "social engineering", BTW.

The best way to get passwords, is still to call a user on the phone and ask for it. Almost 2/3 of humanity gives out their passwords without even thinking about it. I've had a call like that a couple of years ago. That guy wasn't too lucky, because he was pretending to be me. We had a good laugh about it. There simply is no end to human stupidity.

Quote:
Once in, they can try to siphon off your credit card numbers from internet purchases, and/or install a keystroke logger to get that and other personal information automatically.
Why would you try to crack PC's when you can have 54 million VERIFIED CC numbers from companies like Home Depot who hire criminals to run their IT?

Quote:
Also, they can compile your personal information and use it to impersonate you for financial crimes, or just to post internet bullying or child porn junk on the internet.
Nobody needs your PC. They've already got Facebook, Linked In, temp agencies, schools and sports clubs doing that for them. You can find details on most people through any search engine.

Quote:
If you are a political activist of any type and have adversaries, then they can utilize your personal information to make you look bad and discredit you. This is actually a growing trend that has been written about in recent years due to the sudden growth of independently contracted local intelligence agencies who work for profit for corporations to derail peace activists and anti-pollution activists and whistle-blowers.
If you are in the way of the NSA, GCHQ, or the agency that used to be called KGB, you're toast anyway. Your PC will make absolutely no difference. They can and will beat a password out of you if they need to. But they don't need to, since they have a direct pipeline into FB and many others.

Quote:
The laws are lagging behind the activities, so the dirty tricks are still somewhat legal even though they are clearly espionage level attacks done for profit. Most of the people targeted are honest innocent citizens, but the people paying for them to be hacked and knocked down are corrupt corporations and politicians. Look it up.
Don't be naive. There's no oversight at all. They'll work for whoever yanks their chain. And if no chains get yanked, they'll freelance.

Quote:
Even if you have nothing of value to them on your system, they can use your hacked system as a "bot" (robot), to launch DDoS (dedicated denial of service) attacks on corporations, individual, government, or mililitary internet targets.
DDOS attacks are a serious problem, but not to you. The latest gen bots do not operate from a PC, but from a (SOHO) router or a VPS. If you have tons of stolen CC numbers, you can get as many VPSes or "cloud instances" as you want.

Quote:
Or, they can use your hacked system as a proxy to hide their identity as they try to hack into corporate, individual, government, or military systems.
Doesn't happen a lot. Seriously, who would want to proxy over a Windows PC connected with an upload that is too small to matter if you can use a VPN or VPS with server bandwidth form a data center?

Quote:
Seriously, do you really want to open yourself up to all that?
WOW! I would really stay off the Internet, if I were you.

Quote:
If you don't read about this stuff regularly, you just don't know. It's a very real and widespread problem. Unless you stay offline.
Seems like you got a lot of reading to do. Especially some other sources than what you've been reading lately.

Use your head. Make long passphrases. Easier to remember than cryptic passwords. Shun services that don't allow spaces in passwords. Even if it's an Apple service. Change passphrase at least once a year. Don't reuse passphrases.

Don't run as admin. The biggest problem with Windows is not the number of holes in it, but the number of users running always as admin.

Buy a decent router if yours is over five years old and has never been updated. Get something from Mikrotik, Ubiquity or even TP-link.

And remember, if it looks to good to be true...

Last edited by cyrano; 09-21-2014 at 03:41 PM.
cyrano is online now   Reply With Quote
Old 09-21-2014, 05:39 PM   #43
stubadger
Human being with feelings
 
Join Date: Sep 2011
Posts: 11
Default

If you go to win 7 64 bit you'll be on the net for hours! the updates are truly immense!and it's shite!
stubadger is offline   Reply With Quote
Old 10-30-2014, 11:29 AM   #44
RLSguitar
Human being with feelings
 
RLSguitar's Avatar
 
Join Date: Jun 2011
Location: Houston Metro, Texas, USA
Posts: 11
Default

I disable my Internet connection, firewall, antivirus/antimalware and any auto-update services for when I'm recording. Otherwise, I'm connected online all the time. I also use my DAW computer as my main system for almost all computing tasks and have it loaded with a lot of software.

To keep it running smoothly, I routinely optimize my computer with regular maintenance tasks, such as backups, virus/malware scans, file and registry cleanup, services review, defragmentation of disks, etc. I'm also cautious when surfing and downloading from the Internet.
__________________
True to the music...
RLSguitar.com
RLSguitar is offline   Reply With Quote
Old 10-30-2014, 11:34 AM   #45
Lawrence
Human being with feelings
 
Join Date: Mar 2007
Posts: 21,502
Default

No matter how paranoid some can be, the vast majority who take reasonable precautions never have any issue at all.

Carry on.

And please be aware, a heck of lot of people drive drunk on Friday and Saturday night so never go outside on Friday and Saturday night, it's just way too dangerous.

By the way, you just spent days on the internet talking about how dangerous the net is, so the hackers probably already got your personal info, except for the ones who were specifically waiting for you to fire up your daw on the net before they hack you.

"Now! He just fired up Reaper! Run the malware script now!!!!"

Last edited by Lawrence; 10-30-2014 at 11:41 AM.
Lawrence is offline   Reply With Quote
Old 10-31-2014, 01:32 AM   #46
Nip
Human being with feelings
 
Join Date: Jun 2010
Location: Sweden
Posts: 1,421
Default

Off internet/network while working with audio.

On internet/network only for updates and registration purposes, simplifies quite a bit.
__________________
----- Windows 7 Pro x64, i7-860 2.8GHz 16G, RME HDSP 9632+Ai4S+Audient ASP800, Reaper 4.7 x64 -----
Nip is offline   Reply With Quote
Old 10-31-2014, 09:11 AM   #47
vanhaze
Human being with feelings
 
vanhaze's Avatar
 
Join Date: Jul 2012
Location: Netherlands
Posts: 4,772
Default

No offense against PC users but for Apple users, disabling internet/network while working wih audio has always been totally non redundant.

I work with audio on Apple maschines for about 20 years and never ever have done that, without any audio issues or even virus shizzle.

Knock on wood ... 😜
vanhaze is offline   Reply With Quote
Old 10-31-2014, 01:39 PM   #48
cyrano
Human being with feelings
 
cyrano's Avatar
 
Join Date: Jun 2011
Location: Belgium
Posts: 4,599
Default

Quote:
Originally Posted by vanhaze View Post
No offense against PC users but for Apple users, disabling internet/network while working wih audio has always been totally non redundant.

I work with audio on Apple maschines for about 20 years and never ever have done that, without any audio issues or even virus shizzle.

Knock on wood ... 😜
While this is mostly true, I'd still disable wifi and bluetooth while recording/mixing, just to prevent RFI, especially if you have vintage analog gear like mic preamps.
cyrano is online now   Reply With Quote
Old 10-31-2014, 01:47 PM   #49
Lawrence
Human being with feelings
 
Join Date: Mar 2007
Posts: 21,502
Default

That choice, on Mac or PC, is not a big deal. It takes all of 5 seconds to switch wifi or a network card on/off... so... to each his own as relates to when it might or might not be "enabled".

I actually thought the discussion was more about.. "Is your daw computer even ever physically connected to the net.", at all... not if it's connected 24-7. None of my systems are on the net 24-7, they're usually on the net when I need to be on the net... otherwise, there's no reason to be connected in any case.

I mean, i don't need wifi to record with Camtasia so if that's all I'm doing in this sitting, why would I even turn it on?

It's kinda like a light switch. If you can see and you don't need more light, don't turn it on.

The idea that I wouldn't put the most powerful system i own on the net ever, just because that's also where my audio / studio work is done, is foreign to me. Like i said before, large corporate systems and networks who stand to lose way more than any of us are on the net. Just about every single workstation in every office everywhere has access to the net.

Last edited by Lawrence; 10-31-2014 at 01:57 PM.
Lawrence is offline   Reply With Quote
Old 11-01-2014, 01:38 AM   #50
Guitarminator
Human being with feelings
 
Guitarminator's Avatar
 
Join Date: Oct 2014
Location: Colorado Springs, CO
Posts: 74
Default

Read an article recently claiming the latest popular attack is in the form of ads on legitimate, popular sites. Starting out as legitimate paid ads then at some point being infused with malicious code. Something along those lines.
So it seems that ad blockers, Adblock Plus and the like, have become a necessity rather than a luxury.
I've been using ABP, Disconnect and DoNotTrackMe for a while now, mostly to stop annoying ads and spam. Reduced spam/junk emails from 15-20 a day down to 1 or 2 while also, apparently, protecting me/my PC from attack.
Anyone else use these or read the reports of malicious ads?
__________________
An amateur practices until they get it right.
A professional practices until they can't get it wrong.
Guitarminator is offline   Reply With Quote
Old 11-01-2014, 04:23 PM   #51
Nip
Human being with feelings
 
Join Date: Jun 2010
Location: Sweden
Posts: 1,421
Default

Quote:
Originally Posted by Guitarminator View Post
Read an article recently claiming the latest popular attack is in the form of ads on legitimate, popular sites. Starting out as legitimate paid ads then at some point being infused with malicious code. Something along those lines.
So it seems that ad blockers, Adblock Plus and the like, have become a necessity rather than a luxury.
I've been using ABP, Disconnect and DoNotTrackMe for a while now, mostly to stop annoying ads and spam. Reduced spam/junk emails from 15-20 a day down to 1 or 2 while also, apparently, protecting me/my PC from attack.
Anyone else use these or read the reports of malicious ads?
Haven't read about these ads.

But have experienced that people having super-duper ad blockers and stuff unknowingly pasted links to places that creates issues for those clicking the link and not having the same quality blockers. Basically have to end browser processes in task manager.
__________________
----- Windows 7 Pro x64, i7-860 2.8GHz 16G, RME HDSP 9632+Ai4S+Audient ASP800, Reaper 4.7 x64 -----
Nip is offline   Reply With Quote
Old 11-02-2014, 12:34 AM   #52
Guitarminator
Human being with feelings
 
Guitarminator's Avatar
 
Join Date: Oct 2014
Location: Colorado Springs, CO
Posts: 74
Default

Quote:
Originally Posted by Nip View Post
Haven't read about these ads.

But have experienced that people having super-duper ad blockers and stuff unknowingly pasted links to places that creates issues for those clicking the link and not having the same quality blockers. Basically have to end browser processes in task manager.
Interesting.
I will be more vigilant if I decide to paste any links in the future.
Perhaps run them through onlinelinkscnandotcom first and such.
Thanks for the heads up Nip.
__________________
An amateur practices until they get it right.
A professional practices until they can't get it wrong.
Guitarminator is offline   Reply With Quote
Old 11-02-2014, 12:48 AM   #53
Mivo
Human being with feelings
 
Mivo's Avatar
 
Join Date: Jan 2014
Location: Europe
Posts: 153
Default

All my computers are connected to the net. I have a separate machine for gaming, but that is chiefly so that I can occasionally play a game without work interfering. I use ad blockers and no-script tools. Never had a virus or hacking issues, but I don't typically visit problematic sites, either (and I don't pirate software).
Mivo is offline   Reply With Quote
Old 11-02-2014, 02:13 PM   #54
cyrano
Human being with feelings
 
cyrano's Avatar
 
Join Date: Jun 2011
Location: Belgium
Posts: 4,599
Default

Quote:
Originally Posted by Guitarminator View Post
Read an article recently claiming the latest popular attack is in the form of ads on legitimate, popular sites. Starting out as legitimate paid ads then at some point being infused with malicious code. Something along those lines.
So it seems that ad blockers, Adblock Plus and the like, have become a necessity rather than a luxury.
I've been using ABP, Disconnect and DoNotTrackMe for a while now, mostly to stop annoying ads and spam. Reduced spam/junk emails from 15-20 a day down to 1 or 2 while also, apparently, protecting me/my PC from attack.
Anyone else use these or read the reports of malicious ads?
True. It's not new, but much more popular lately. The most vicious large scale attacks are being transported by ads. Google is getting better at catching the thugs, but some other ad agencies seem very uninterested. As long as it's a paying customer the can serve what they want.

However, Adblock plus will only hide the ads. It still loads them in the background. It might lessen the probability of an attack, but will not completely exclude it. Try Ghostery if it's available for your browser.
cyrano is online now   Reply With Quote
Old 11-03-2014, 01:15 PM   #55
Guitarminator
Human being with feelings
 
Guitarminator's Avatar
 
Join Date: Oct 2014
Location: Colorado Springs, CO
Posts: 74
Default

Quote:
Originally Posted by cyrano View Post
True. It's not new, but much more popular lately. The most vicious large scale attacks are being transported by ads. Google is getting better at catching the thugs, but some other ad agencies seem very uninterested. As long as it's a paying customer the can serve what they want.

However, Adblock plus will only hide the ads. It still loads them in the background. It might lessen the probability of an attack, but will not completely exclude it. Try Ghostery if it's available for your browser.
Thanks for the tip cyrano! Edit: Did a quick search for Ghostery. Apparently it's similar to Disconnect, which I already use, only slightly more scummy.
http://lifehacker.com/ad-blocking-ex...to-a-514417864
__________________
An amateur practices until they get it right.
A professional practices until they can't get it wrong.

Last edited by Guitarminator; 11-03-2014 at 01:26 PM.
Guitarminator is offline   Reply With Quote
Old 11-03-2014, 01:39 PM   #56
foxAsteria
Human being with feelings
 
foxAsteria's Avatar
 
Join Date: Dec 2009
Location: Oblivion
Posts: 7,120
Default

never observed that rule, never had a virus infection in 15 years. well apart from the one time my floppy got sick... knock on wood. plenty of self-inflicted injuries though, being that i'm a ceaseless tinkerer.
__________________
Myy Wyyrd Muzyyk
foxAsteria is offline   Reply With Quote
Old 11-06-2014, 02:57 PM   #57
Guitarminator
Human being with feelings
 
Guitarminator's Avatar
 
Join Date: Oct 2014
Location: Colorado Springs, CO
Posts: 74
Default

Quote:
Originally Posted by PooFox View Post
never observed that rule, never had a virus infection in 15 years. well apart from the one time my floppy got sick... knock on wood. plenty of self-inflicted injuries though, being that i'm a ceaseless tinkerer.
I knew it wasn't just me! Haha!
I have to constantly remind my self, if it ain't broke, don't "fix" it.
__________________
An amateur practices until they get it right.
A professional practices until they can't get it wrong.
Guitarminator is offline   Reply With Quote
Old 11-06-2014, 03:31 PM   #58
foxAsteria
Human being with feelings
 
foxAsteria's Avatar
 
Join Date: Dec 2009
Location: Oblivion
Posts: 7,120
Default

Quote:
Originally Posted by Guitarminator View Post
I have to constantly remind my self, if it ain't broke, don't "fix" it.
yea me too, and then my self always replies "but it could be a just little bit better!"
__________________
Myy Wyyrd Muzyyk
foxAsteria is offline   Reply With Quote
Old 11-06-2014, 03:52 PM   #59
heda
Human being with feelings
 
heda's Avatar
 
Join Date: Jun 2012
Location: Spain
Posts: 5,433
Default

Internet ON. No antivirus but firewall.

Also, for performance you can automate disabling network card and network services when launching Reaper and restoring them after Reaper is closed.
heda is offline   Reply With Quote
Old 11-07-2014, 05:10 AM   #60
cyrano
Human being with feelings
 
cyrano's Avatar
 
Join Date: Jun 2011
Location: Belgium
Posts: 4,599
Default

Quote:
Originally Posted by Guitarminator View Post
Thanks for the tip cyrano! Edit: Did a quick search for Ghostery. Apparently it's similar to Disconnect, which I already use, only slightly more scummy.
http://lifehacker.com/ad-blocking-ex...to-a-514417864
Yeah, it's strange that the company developing the plugin was acquired by an advertising company. I've been running AND tracing it for months now and haven 't seen anything suspicious. Yet?

Anyhow, when it comes to privacy, we have far more serious things to fear, like Facebook, LinkedIn, Google...
cyrano is online now   Reply With Quote
Old 11-07-2014, 11:42 AM   #61
ivansc
Human being with feelings
 
Join Date: Aug 2007
Location: Near Cambridge UK and Near Questembert, France
Posts: 18,941
Default

Quote:
Originally Posted by nym View Post
i'm an "IT professional" so i don't have issues with unintentionally installed software.
What - NEVER EVER EVER?

My wife is also an IT professional - a very highly paid one at that.
I usually wind up cleaning up her machines about twice or three times a year....

Just because she is a professional doesn't mean she doesnt suffer from YeahYeahClick disease.

Her and my daughter keep me fairly busy, along with the neighbours....
ivansc is offline   Reply With Quote
Old 11-07-2014, 12:25 PM   #62
karbomusic
Human being with feelings
 
karbomusic's Avatar
 
Join Date: May 2009
Posts: 24,766
Default

Short story....

A number of years back, I owned a small computer company, had about 10-12 engineers employed yada, yada.... Anyway, for my customers I decided to write my own spyware scanner/mitigation application. Most of the newer one's didn't exist then and it allowed myself and my engineers to better address infected customer systems.

While I was developing it, I needed infected machines to test my code on A LOT. So, I fire up a virtual machine, jump on the net and spend the next three hours doing everything I possibly can to get myself infected with spyware; the word FREE, I'm in, and every single FREE popup after that, I clicked and every time I was asked yes/no I clicked YES! of course!... I was utterly unsuccessful, nada, not a single bad thing on my test machine that didn't completely go away by simply uninstalling the ware in add/remove programs.

Lesson learned....

Though there is nasty stuff out there that can get anyone, there are some people with some special talent that I have yet to find that guarantees them to get infected on a whim. I don't know what it is but some just instinctively know how to completely ass rape their system without even realizing what they are doing. My mother-in-law comes to mind.
__________________
If it requires a null test to find it, it is by definition minuscule.
karbomusic is online now   Reply With Quote
Old 11-07-2014, 12:29 PM   #63
karbomusic
Human being with feelings
 
karbomusic's Avatar
 
Join Date: May 2009
Posts: 24,766
Default

Quote:
IT professional
That's because the term really doesn't mean much holistically when it comes to truly being savvy in this particular arena. Just because someone can set up a SAN array and configure an F5 doesn't mean they know much about the true inner workings of malware unless they specifically take and spend the time to be an expert in that field. Most don't, they only know how to roll out AV software and manage it without really knowing much about the thing it is supposed to be mitigating.
__________________
If it requires a null test to find it, it is by definition minuscule.

Last edited by karbomusic; 11-07-2014 at 12:35 PM.
karbomusic is online now   Reply With Quote
Old 12-14-2014, 04:40 PM   #64
amoretam
Human being with feelings
 
Join Date: Oct 2011
Posts: 492
Default

Quote:
Originally Posted by heda View Post
Internet ON. No antivirus but firewall.

Also, for performance you can automate disabling network card and network services when launching Reaper and restoring them after Reaper is closed.
How do you automate these?
Thanks
amoretam is offline   Reply With Quote
Old 12-14-2014, 04:41 PM   #65
amoretam
Human being with feelings
 
Join Date: Oct 2011
Posts: 492
Default

I was thinking about using Linux Mint with VM player, .. No virus at all
amoretam is offline   Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT -7. The time now is 03:20 PM.


Powered by vBulletin® Version 3.8.11
Copyright ©2000 - 2019, vBulletin Solutions Inc.