| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <Pine.GSO.4.61.0408201349260.24201@pbaprcg> From: sbirl at temple.edu (Birl) Subject: Unsecure file permission of ZoneAlarm pro. On Aug 20, bipin gautam (nospam-visitbipin@...oo.com.ns) typed: bipin: > On Friday 20 August 2004 12:40, John LaCour wrote: bipin: > > There is absolutely no security issue here. bipin: > > bipin: > > ZoneAlarm does not rely on file permissions to protect bipin: > > any configuration files. Configuration files are protected bipin: > > by our TrueVector(r) driver in the kernel. bipin: > bipin: > Which is, of course, completely utterly infallible bipin: > so any additional means are bipin: > not only unneccessary, but even unwanted. bipin: bipin: In my part of globe, 90% of dialup users just turn on bipin: zone alarm pro. JUST before connecting to the bipin: internet... cauz its too annoying cauz zap pop's up bipin: with bla...bla...bla quit often and use resources bipin: etc... bipin: bipin: bipin Aye. ZA Pro does consume quite a bit of the CPU at times. Im consdering a hardware fw just for that reason. There are other things about logging that concern me as well. But that's different topic. Scott Birl http://concept.temple.edu/sysadmin/ Senior Systems Administrator Computer Services Temple University ====*====*====*====*====*====*====*====+====*====*====*====*====*====*====*====*
Powered by blists - more mailing lists