Time To Retest Your Firewall - Page 5

war59312 · #41 16th Oct 04, 07:44 PM

Quote:

Originally posted by EyU@Oct 16 2004, 08:40 AM
With NAV 2005

Source: C:\Documents and Settings\Me\Desktop\pcaudit.exe
Description: The file C:\Documents and Settings\Me\Desktop\pcaudit.exe is a Spyware threat.
Click for more information about this threat : link Spyware.Pcaudit

[snapback]215675[/snapback]

Thanks for the link.
About to see what this says.

http://security.symantec.com/sscv6/vc_prescan.asp

rikytik · #42 16th Oct 04, 08:01 PM

Quote:

Hmm .. It seems to be a test of things going out - not coming in. SO if you think about it and you are behind a router or a software firewall. If some tried to get in they wouldn't be able to. This only explain in better detail why I insist on having a soft firewall along side the router ..

Leech, it seems to be more about what is going OUT, rather than what is coming in. That was my big concern over this last kufuffle. I was really concerned that things were going out via a dll that wasn't being stopped by the firewall.

Sygate and "maybe" the new Agnitum Outlook 2.5 may have new ideas regarding things like this. I suspect there is going to be a revolution in firewall technology this year.

Leech · #43 17th Oct 04, 07:31 PM

Quote:

Originally posted by rikytik@Oct 16 2004, 02:01 PM
Leech, it seems to be more about what is going OUT, rather than what is coming in.  That was my big concern over this last kufuffle.  I was really concerned that things were going out via a dll that wasn't being stopped by the firewall.

Sygate and "maybe" the new Agnitum Outlook 2.5 may have new ideas regarding things like this.  I suspect there is going to be a revolution in firewall technology this year.

[snapback]215703[/snapback]

Yeah .. I agree with you on that. I installed the new Zone Alarm, and ran the test. When it asked for anything to go out while testing I said no, it then came back clean. So the problem is that not all firewalls have dll authenication for outgoing processes.

I also find it interesting because now when I go to some websites I get the dll autherization warning. If I click deny it locks down the browser to where I can't surf anywhere. In order to surf agan I have to restart it .. So it looks like zone labs was already doing something about this ...

war59312 · #44 17th Oct 04, 11:29 PM

Yeap and thats annoryin as hell. It should only kill the damn dll you know.

daMANiack · #45 21st Oct 04, 05:44 AM

Hi,

So, what are you guyz doing, treating this threat as serious, or just a ploy for the creators of PCAudit to sell their Anti-Virus and Firewall programs.

Cheerz

Leech · #46 21st Oct 04, 09:29 AM

Quote:

Originally posted by daMANiack@Oct 20 2004, 11:44 PM
Hi,

So, what are you guyz doing, treating this threat as serious, or just a ploy for the creators of PCAudit to sell their Anti-Virus and Firewall programs.

Cheerz    

[snapback]216140[/snapback]

I wrote it off as a ploy, uninstalled Zone Alarm. Then Installed McAfee Internet Security 7 (2005)

war59312 · #47 22nd Oct 04, 05:16 AM

Yeah a ploy realy. Its a know weekeness in firewalls. Has been for a long long time.

lickablepig · #48 24th Oct 04, 07:37 AM

[semi quote]Its a known firewall weakness.[/semi quote]

GRC has been telling us this for years... why he created leaktest

btw, wonder why Symantec Online scan doesn't recognize NOD32 as AV...

/http://securityresponse.symantec.com/

ooops can't seem to attach screen snag of it yet...