Microsoft Windows Vista Community Forums - Vistaheads
Recommended Download



Welcome to the Microsoft Windows Vista Community Forums - Vistaheads, YOUR Largest Resource for Windows Vista related information.

You are currently viewing our boards as a guest which gives you limited access to view most discussions and access our other features. By joining our free community you will have access to post topics, communicate privately with other members (PM), respond to polls, upload content and access many other special features. Registration is fast, simple and absolutely free so , join our community today!

If you have any problems with the registration process or your account login, please contact us.

Driver Scanner

Probable security breech - how do I fix it?

microsoft.public.windows.vista.security






Speedup My PC
Reply
  #1 (permalink)  
Old 10-13-2009
popalong
 

Posts: n/a
Probable security breech - how do I fix it?
Hi

Using Vista 64 bit Home Premium, MSE, and Spybot,

Yesterday I posted a pic on an eBay forum using this code

<a href="http://tinypic.com" target="_blank"><img
src="http://ixx.tinypic.com/image.jpg" border="0" alt="Image and video
hosting by TinyPic"></a>

(The only things changed above are some image IDs.)

I used this particular image format because the other three I tried resulted
only in "link" with an underscore, and this one produced an image.

About an hour after posting the pic, I noticed that you could click on the
image in the eBay forum post, and it would take you to the image host site.
Once there, another window with a "browse" button allowed you to go directly
into the files on my computer! I had the eBay post containing the image
deleted, but it may haves been too late--about 2 hours after the image was
posted. I deleted the image on my computer that used the filename that was
uploaded, but I still have the original image from my camera on my computer.
I haven't been able to delete the image at the image hosting site. I don't
have an account set up there, so there's no password protection.

What should I do now?

Reply With Quote
Sponsored Links
  #2 (permalink)  
Old 10-13-2009
popalong
 

Posts: n/a
Re: Probable security breech - how do I fix it? -- original was trashed in MS server
RESENT--Original got trashed in MS server

"popalong" <allornufin@gmail.com> wrote in message
news:90DDC55A-6D6B-4702-A984-404983FF8670@microsoft.com...
> Hi
>
> Using Vista 64 bit Home Premium, MSE, and Spybot,
>
> Yesterday I posted a pic on an eBay forum using this code
>
> <a href="http://tinypic.com" target="_blank"><img
> src="http://ixx.tinypic.com/image.jpg" border="0" alt="Image and video
> hosting by TinyPic"></a>
>
> (The only things changed above are some image IDs.)
>
> I used this particular image format because the other three I tried
> resulted only in "link" with an underscore, and this one produced an
> image.
>
> About an hour after posting the pic, I noticed that you could click on the
> image in the eBay forum post, and it would take you to the image host
> site. Once there, another window with a "browse" button allowed you to go
> directly into the files on my computer! I had the eBay post containing
> the image deleted, but it may haves been too late--about 2 hours after the
> image was posted. I deleted the image on my computer that used the
> filename that was uploaded, but I still have the original image from my
> camera on my computer. I haven't been able to delete the image at the
> image hosting site. I don't have an account set up there, so there's no
> password protection.
>
> What should I do now?


Reply With Quote
  #3 (permalink)  
Old 10-14-2009
Malke
 

Posts: n/a
Re: Probable security breech - how do I fix it?
popalong wrote:


> Using Vista 64 bit Home Premium, MSE, and Spybot,
>
> Yesterday I posted a pic on an eBay forum using this code
>
> <a href="http://tinypic.com" target="_blank"><img
> src="http://ixx.tinypic.com/image.jpg" border="0" alt="Image and video
> hosting by TinyPic"></a>
>
> (The only things changed above are some image IDs.)
>
> I used this particular image format because the other three I tried
> resulted only in "link" with an underscore, and this one produced an
> image.
>
> About an hour after posting the pic, I noticed that you could click on the
> image in the eBay forum post, and it would take you to the image host
> site. Once there, another window with a "browse" button allowed you to go
> directly
> into the files on my computer! I had the eBay post containing the image
> deleted, but it may haves been too late--about 2 hours after the image was
> posted. I deleted the image on my computer that used the filename that
> was uploaded, but I still have the original image from my camera on my
> computer.
> I haven't been able to delete the image at the image hosting site. I
> don't have an account set up there, so there's no password protection.
>
> What should I do now?


Contact the unnamed image hosting company for an explanation. I wouldn't
worry about your own security. You're using a firewall and there is nothing
inherently evil about your own image file. No need to panic and go deleting
it from your hard drive and camera.

Malke
--
MS-MVP
Elephant Boy Computers - Don't Panic!
http://www.elephantboycomputers.com/#FAQ

Reply With Quote
  #4 (permalink)  
Old 10-14-2009
popalong
 

Posts: n/a
Re: Probable security breech - how do I fix it?
The image hosting service is tinypic.com. The window that I referred to
previously, that appears when the user clicks on the posted photo is
actually a dialog box. The browse button I referred to is to select images
from my HDD for uploading to the image host. The photo that I uploaded and
posted in the eBay forum came from my desktop--not from my picture folder.
And when I clicked on the browse button, I had access to the entire contents
of the HDD, not just the picture folder.

If you're confident that my firewall will prevent a different computer from
entering my computer, using the above scenario, then I won't worry about
this, and won't pursue it any further. Also please advise me if it's okay
to upload images from my desktop, or if I should be using a public pictures
folder for this.

Please let me know ASAP.
Thanks

"Malke" <malke@invalid.invalid> wrote in message
news:OVP7eQMTKHA.508@TK2MSFTNGP06.phx.gbl...
> popalong wrote:
>
>
>> Using Vista 64 bit Home Premium, MSE, and Spybot,
>>
>> Yesterday I posted a pic on an eBay forum using this code
>>
>> <a href="http://tinypic.com" target="_blank"><img
>> src="http://ixx.tinypic.com/image.jpg" border="0" alt="Image and video
>> hosting by TinyPic"></a>
>>
>> (The only things changed above are some image IDs.)
>>
>> I used this particular image format because the other three I tried
>> resulted only in "link" with an underscore, and this one produced an
>> image.
>>
>> About an hour after posting the pic, I noticed that you could click on
>> the
>> image in the eBay forum post, and it would take you to the image host
>> site. Once there, another window with a "browse" button allowed you to go
>> directly
>> into the files on my computer! I had the eBay post containing the image
>> deleted, but it may haves been too late--about 2 hours after the image
>> was
>> posted. I deleted the image on my computer that used the filename that
>> was uploaded, but I still have the original image from my camera on my
>> computer.
>> I haven't been able to delete the image at the image hosting site. I
>> don't have an account set up there, so there's no password protection.
>>
>> What should I do now?

>
> Contact the unnamed image hosting company for an explanation. I wouldn't
> worry about your own security. You're using a firewall and there is
> nothing
> inherently evil about your own image file. No need to panic and go
> deleting
> it from your hard drive and camera.
>
> Malke
> --
> MS-MVP
> Elephant Boy Computers - Don't Panic!
> http://www.elephantboycomputers.com/#FAQ
>

Reply With Quote
  #5 (permalink)  
Old 10-14-2009
Paul Adare
 

Posts: n/a
Re: Probable security breech - how do I fix it?
On Wed, 14 Oct 2009 06:15:37 -0700, popalong wrote:

> The image hosting service is tinypic.com. The window that I referred to
> previously, that appears when the user clicks on the posted photo is
> actually a dialog box. The browse button I referred to is to select images
> from my HDD for uploading to the image host. The photo that I uploaded and
> posted in the eBay forum came from my desktop--not from my picture folder.
> And when I clicked on the browse button, I had access to the entire contents
> of the HDD, not just the picture folder.
>
> If you're confident that my firewall will prevent a different computer from
> entering my computer, using the above scenario, then I won't worry about
> this, and won't pursue it any further. Also please advise me if it's okay
> to upload images from my desktop, or if I should be using a public pictures
> folder for this.


You're getting all freaked out over nothing here and Malke's explanation
isn't doing much good. This has nothing at all to do with your firewall,
nor can someone from another computer browse your hard drive using the
upload control on that page.

When you click on the browse button from your computer, it does in fact
allow you to browse your computer, that's the point of the control. When
someone on another computer, either inside or outside of your network
clicks on the same control on the same web page, it lets them browse the
contents of *their* computer. There is no connection between what you
uploaded, that browse control, and access to your computer.

As I said, you're getting all freaked out over nothing.

--
Paul Adare
MVP - Identity Lifecycle Manager
http://www.identit.ca
Reply With Quote
  #6 (permalink)  
Old 10-14-2009
Dave
 

Posts: n/a
Re: Probable security breech - how do I fix it?
sort of like...
file:///c:/windows



--
Windows 7 RC
http://get.live.com/wlmail/overview
http://download.live.com/wlmail

"Paul Adare" <pkadare@gmail.com> wrote in message
news:71fimenj5qn1$.1kaxr0vpyo1wd$.dlg@40tude.net.. .
> On Wed, 14 Oct 2009 06:15:37 -0700, popalong wrote:
>
>> The image hosting service is tinypic.com. The window that I referred to
>> previously, that appears when the user clicks on the posted photo is
>> actually a dialog box. The browse button I referred to is to select
>> images
>> from my HDD for uploading to the image host. The photo that I uploaded
>> and
>> posted in the eBay forum came from my desktop--not from my picture
>> folder.
>> And when I clicked on the browse button, I had access to the entire
>> contents
>> of the HDD, not just the picture folder.
>>
>> If you're confident that my firewall will prevent a different computer
>> from
>> entering my computer, using the above scenario, then I won't worry about
>> this, and won't pursue it any further. Also please advise me if it's
>> okay
>> to upload images from my desktop, or if I should be using a public
>> pictures
>> folder for this.

>
> You're getting all freaked out over nothing here and Malke's explanation
> isn't doing much good. This has nothing at all to do with your firewall,
> nor can someone from another computer browse your hard drive using the
> upload control on that page.
>
> When you click on the browse button from your computer, it does in fact
> allow you to browse your computer, that's the point of the control. When
> someone on another computer, either inside or outside of your network
> clicks on the same control on the same web page, it lets them browse the
> contents of *their* computer. There is no connection between what you
> uploaded, that browse control, and access to your computer.
>
> As I said, you're getting all freaked out over nothing.
>
> --
> Paul Adare
> MVP - Identity Lifecycle Manager
> http://www.identit.ca


Reply With Quote
  #7 (permalink)  
Old 10-14-2009
Jim
 

Posts: n/a
Re: Probable security breech - how do I fix it?
On Wed, 14 Oct 2009 06:15:37 -0700, "popalong" <allornufin@gmail.com>
wrote:

>The image hosting service is tinypic.com. The window that I referred to
>previously, that appears when the user clicks on the posted photo is
>actually a dialog box. The browse button I referred to is to select images
>from my HDD for uploading to the image host. The photo that I uploaded and
>posted in the eBay forum came from my desktop--not from my picture folder.
>And when I clicked on the browse button, I had access to the entire contents
>of the HDD, not just the picture folder.
>
>If you're confident that my firewall will prevent a different computer from
>entering my computer, using the above scenario, then I won't worry about
>this, and won't pursue it any further. Also please advise me if it's okay
>to upload images from my desktop, or if I should be using a public pictures
>folder for this.


NOBODY can say what will happen , it`s up to you to decide what you
wish .


>
>Please let me know ASAP.
>Thanks
>
>"Malke" <malke@invalid.invalid> wrote in message
>news:OVP7eQMTKHA.508@TK2MSFTNGP06.phx.gbl...
>> popalong wrote:
>>
>>
>>> Using Vista 64 bit Home Premium, MSE, and Spybot,
>>>
>>> Yesterday I posted a pic on an eBay forum using this code
>>>
>>> <a href="http://tinypic.com" target="_blank"><img
>>> src="http://ixx.tinypic.com/image.jpg" border="0" alt="Image and video
>>> hosting by TinyPic"></a>
>>>
>>> (The only things changed above are some image IDs.)
>>>
>>> I used this particular image format because the other three I tried
>>> resulted only in "link" with an underscore, and this one produced an
>>> image.
>>>
>>> About an hour after posting the pic, I noticed that you could click on
>>> the
>>> image in the eBay forum post, and it would take you to the image host
>>> site. Once there, another window with a "browse" button allowed you to go
>>> directly
>>> into the files on my computer! I had the eBay post containing the image
>>> deleted, but it may haves been too late--about 2 hours after the image
>>> was
>>> posted. I deleted the image on my computer that used the filename that
>>> was uploaded, but I still have the original image from my camera on my
>>> computer.
>>> I haven't been able to delete the image at the image hosting site. I
>>> don't have an account set up there, so there's no password protection.
>>>
>>> What should I do now?

>>
>> Contact the unnamed image hosting company for an explanation. I wouldn't
>> worry about your own security. You're using a firewall and there is
>> nothing
>> inherently evil about your own image file. No need to panic and go
>> deleting
>> it from your hard drive and camera.
>>
>> Malke
>> --
>> MS-MVP
>> Elephant Boy Computers - Don't Panic!
>> http://www.elephantboycomputers.com/#FAQ
>>

Reply With Quote
  #8 (permalink)  
Old 10-14-2009
popalong
 

Posts: n/a
Re: Probable security breech - how do I fix it?
Exactly!

"Dave" <Dave@beepbeepbeepbeep.com> wrote in message
news:unQWwqNTKHA.4028@TK2MSFTNGP05.phx.gbl...
> sort of like...
> file:///c:/windows
>
>
>
> --
> Windows 7 RC
> http://get.live.com/wlmail/overview
> http://download.live.com/wlmail
>
> "Paul Adare" <pkadare@gmail.com> wrote in message
> news:71fimenj5qn1$.1kaxr0vpyo1wd$.dlg@40tude.net.. .
>> On Wed, 14 Oct 2009 06:15:37 -0700, popalong wrote:
>>
>>> The image hosting service is tinypic.com. The window that I referred to
>>> previously, that appears when the user clicks on the posted photo is
>>> actually a dialog box. The browse button I referred to is to select
>>> images
>>> from my HDD for uploading to the image host. The photo that I uploaded
>>> and
>>> posted in the eBay forum came from my desktop--not from my picture
>>> folder.
>>> And when I clicked on the browse button, I had access to the entire
>>> contents
>>> of the HDD, not just the picture folder.
>>>
>>> If you're confident that my firewall will prevent a different computer
>>> from
>>> entering my computer, using the above scenario, then I won't worry about
>>> this, and won't pursue it any further. Also please advise me if it's
>>> okay
>>> to upload images from my desktop, or if I should be using a public
>>> pictures
>>> folder for this.

>>
>> You're getting all freaked out over nothing here and Malke's explanation
>> isn't doing much good. This has nothing at all to do with your firewall,
>> nor can someone from another computer browse your hard drive using the
>> upload control on that page.
>>
>> When you click on the browse button from your computer, it does in fact
>> allow you to browse your computer, that's the point of the control. When
>> someone on another computer, either inside or outside of your network
>> clicks on the same control on the same web page, it lets them browse the
>> contents of *their* computer. There is no connection between what you
>> uploaded, that browse control, and access to your computer.
>>
>> As I said, you're getting all freaked out over nothing.
>>
>> --
>> Paul Adare
>> MVP - Identity Lifecycle Manager
>> http://www.identit.ca

>

Reply With Quote
  #9 (permalink)  
Old 10-14-2009
Malke
 

Posts: n/a
Re: Probable security breech - how do I fix it?
popalong wrote:

> The image hosting service is tinypic.com. The window that I referred to
> previously, that appears when the user clicks on the posted photo is
> actually a dialog box. The browse button I referred to is to select
> images
> from my HDD for uploading to the image host. The photo that I uploaded
> and posted in the eBay forum came from my desktop--not from my picture
> folder. And when I clicked on the browse button, I had access to the
> entire contents of the HDD, not just the picture folder.
>
> If you're confident that my firewall will prevent a different computer
> from entering my computer, using the above scenario, then I won't worry
> about
> this, and won't pursue it any further. Also please advise me if it's okay
> to upload images from my desktop, or if I should be using a public
> pictures folder for this.


No, you're misunderstanding things. Of course when you go to upload
something you're given a browse button that shows your hard drive. You're
being given the opportunity to navigate to a file somewhere on your hard
drive to select for uploading. It doesn't matter whether the file is in your
Public folder, your user's Pictures folder, or wherever. It's how uploading
*works*. It doesn't mean someone from the outside is watching you do this.

As far as your firewall goes, all I meant by that was that you seem to have
the normal protection of your system. Because you uploaded a picture to an
image hosting site doesn't mean someone from the outside can get into your
computer. I really think you're fretting over nothing because you've not
really understood the uploading process and what you saw.

Malke
--
MS-MVP
Elephant Boy Computers - Don't Panic!
http://www.elephantboycomputers.com/#FAQ

Reply With Quote
  #10 (permalink)  
Old 10-14-2009
popalong
 

Posts: n/a
Re: Probable security breech - how do I fix it?
Thanks! I'll stop worrying. The issue is settled.

"Malke" <malke@invalid.invalid> wrote in message
news:OfhuGkPTKHA.5164@TK2MSFTNGP02.phx.gbl...
> popalong wrote:
>
>> The image hosting service is tinypic.com. The window that I referred to
>> previously, that appears when the user clicks on the posted photo is
>> actually a dialog box. The browse button I referred to is to select
>> images
>> from my HDD for uploading to the image host. The photo that I uploaded
>> and posted in the eBay forum came from my desktop--not from my picture
>> folder. And when I clicked on the browse button, I had access to the
>> entire contents of the HDD, not just the picture folder.
>>
>> If you're confident that my firewall will prevent a different computer
>> from entering my computer, using the above scenario, then I won't worry
>> about
>> this, and won't pursue it any further. Also please advise me if it's
>> okay
>> to upload images from my desktop, or if I should be using a public
>> pictures folder for this.

>
> No, you're misunderstanding things. Of course when you go to upload
> something you're given a browse button that shows your hard drive. You're
> being given the opportunity to navigate to a file somewhere on your hard
> drive to select for uploading. It doesn't matter whether the file is in
> your
> Public folder, your user's Pictures folder, or wherever. It's how
> uploading
> *works*. It doesn't mean someone from the outside is watching you do this.
>
> As far as your firewall goes, all I meant by that was that you seem to
> have
> the normal protection of your system. Because you uploaded a picture to an
> image hosting site doesn't mean someone from the outside can get into your
> computer. I really think you're fretting over nothing because you've not
> really understood the uploading process and what you saw.
>
> Malke
> --
> MS-MVP
> Elephant Boy Computers - Don't Panic!
> http://www.elephantboycomputers.com/#FAQ
>

Reply With Quote
Reply


Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

vB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
Probable Water Ice Sighted On Mars Steve General Technology News 0 06-20-2008 03:50
Security Breech!!! thdrummer09 microsoft.public.windows.vista.print fax scan 2 09-30-2007 13:00
Google CEO says mobile auction bid still probable Steve General Technology News 0 08-22-2007 06:40
Google CEO says mobile auction bid still probable Steve General Technology News 0 08-22-2007 06:01
Open WAP = Probable Cause? Steve General Technology News 0 04-23-2007 17:25




All times are GMT +1. The time now is 12:45.




Driver Scanner - Free Scan Now

Vistaheads.com is part of the Heads Network. See also XPHeads.com , Win7Heads.com and Win8Heads.com.


Design by Vjacheslav Trushkin for phpBBStyles.com.
Powered by vBulletin® Version 3.6.7
Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Search Engine Optimization by vBSEO 3.6.0 RC 2

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120