johnwhelan
Well-known member
I've some 990 available for download, jatws.org under the download link.
Cheerio John
Cheerio John
pofig's trees and assets
- Thread starter johnwhelan
- Start date
Yep, probably is safe, McAfee can be a bit over zealous at times but, nevertheless, I shan't be risking it.
Rob.
No, not at all, 'might contain' is good enough warning for me, 'nuff said.
Last edited:
I don't even see jatws.org link... --?
cascaderailroad
New member
Now you can see http://jatws.org/ link... --?
It was hiding ... Highlight the wurdz: jatws.org and click: "Open Link"
Last edited:
johnwhelan
Well-known member
Tried downloading the arrowed...
...and my anti virus software (McAfee) pops up with this warning message, needless to say, download abandoned!
Rob.
The site has no scripting and is about as vanilla as you can get. Certainly there are no adverts that can highjack your browser. .zip files are basically a container with another file inside sometimes it can contain an executable so they can be suspect. In this case because of the MIME handler HTML5 will not automatically download .7zfiles so the .7z files have been placed in a .zip wrapper which is a standard recognizable MIME type that browsers know what to do with.
Since McAfee is unable to scan the file until it is downloaded logically it has its knickers in a twist. A compressed .7z file will contain sequences that McAfee may recognise as the same as some malware however they are a data file to zip-7 so its only the decompressed files that should be of concern.
Process and procedures are important in security and in this case you may assume that if I built the site with my own fair hands and gave you the link to drop in your browser it is reasonably safe. McAfee likes to show it offers value for money so will give off false positives I think you're safer with Microsoft Update and Windows defender.
Cheerio John
John, a fair and comprehensive explanation, thank you. My post was in no way meant to be a sleight against you or your site. I'm a tad dubious about downloading when I see messages such as that and I'm glad it, McAfee, gives false positives rather than not - better safe than sorry as the saying goes. Perhaps you may be right about Windows Defender etc. but would I trust it? Probably not. Anyway, thanks for the reassurance.
Rob.
Just out of curiosity, I remember the furore that occurred a few months back (or was it a year ago?) when Pofig was claiming that his assets had been illegally hijacked (or something similar) by N3V and placed onto the DLS. I know your site is not the DLS but has there been a change of circumstance?
Thanks for the link John. What's the latest about these trees working with TANE? I remember a rumor about a month ago mentioning there's a very good chane they will not be compatible. That would be a real shame because I still beleive they're are the best trees and foliage available.
Pofigs licence for SpeedTree from IDV does not allow commercial use, he is ok with people making packs and distributing from third party sites so long as payware is not involved.
The hijack episode was in a localised non english language version of Trainz done presumably by an N3V partner.
The hijack episode was in a localised non english language version of Trainz done presumably by an N3V partner.
They have to be re-compiled with the version 6 compiler to work in T:ANE. Pofig has been advised and requested to send his trees in to be re-compiled, as yet, it doesn't look like he has done.
johnwhelan
Well-known member
Just out of curiosity, I remember the furore that occurred a few months back (or was it a year ago?) when Pofig was claiming that his assets had been illegally hijacked (or something similar) by N3V and placed onto the DLS. I know your site is not the DLS but has there been a change of circumstance?
There are some licensing issues with using the DLS. Essentially N3V now require you to allow them to use DLS content in payware. Pofig's software for creating speedtrees does not allow creation for payware even if you don't get any benefit. He does allow any one else to host his trees though. JustAnotherTrainzWebSite has ample storage space and no bandwidth limitation so I threw them up on there together with my own content etc. I must confess I don't check to see if anyone downloading content has TS12 which I understand you need for the DLS unless you buy a First Class Ticket. Some of my DLS content uses textures that are only licensed for freeware but N3V have refused to remove them after they clarified that all DLS content must be licensed for Payware.
The site is not renown for its graphics or images but it does have some 4,000 assets available for download.
Cheerio John
So I guess the answer is no. That's a shame. It's hard to for me to see a lot of value in TANE without a nice selection of high quality foliage like pofig's.
johnwhelan
Well-known member
Before I retired much of my work was to do with security and being federal government occasionally even Microsoft would wheel in its big guns. I was chatting to one of them about root kits etc and we were swapping war stories and he came up with an interesting point. 99% of Malware attacks vulnerabilities that Microsoft has removed in Windows Update. Sputnik Malware was an exception and the interesting thing was that most security analysts believe that only a government would have the resources to write such code. It's easier to look at what has patched then work out what the vulnerability was then write an exploit. That's why Microsoft releases its update patches once a month to everyone.
Windows is based on Win NT code, there was a rewrite for Vista and for the first time Microsoft actually trained their programmers to write defensive secure code. If a venerability is patched in Win 7 it is quite possible that XP has the same vulnerability and that's what makes running XP today scary.
The Home Depot attack you may have heard about was done using a technique called memory scraping where the Malware scans its way through the machine's memory looking for interesting things. The vulnerability has been known about for more than ten years. Win 7 uses memory in a totally different way than XP and as a result is a lot less vulnerable to memory scraping etc.
Stats Canada got hit by Malware about ten years ago. It infected about a thousand desktops. The virus was three years old, that's when we found out that some divisions thought that running antivirus software slowed the machines down so they didn't bother to install it. Well they were isolated from the Internet so why did they need it? They also didn't bother running the updates, again they weren't connected to the internet.
The virus was on a consultant's infected laptop which was plugged into the secure network to print a document. It took us three days to clean up the mess. No data was lost to the outside world as it was on the secure network but a whole slew of new rules came in about consultants or anyone else's computer being connected to network A and about Windows update and antivirus software being installed. We had kittens when we found out that quite a number of our UNIX machines didn't even have antivirus software available.
Why am I rambling on, well no one knows better than Microsoft what vulnerabilities are going to be patched so its likely that Windows Defender will be aware of the latest Malware, in fact more likely than anyone else. The other companies have to work backwards from the Windows updates.
Cheerio John
meatloaf747
Spotter...
What version???
John,
What version of Trainz are these downloads please? - Eg; 3.3 (and below) or 3.4 (and above) ???
Many thanks...
Cheers, Mac...
John,
What version of Trainz are these downloads please? - Eg; 3.3 (and below) or 3.4 (and above) ???
Many thanks...
Cheers, Mac...