lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Tue Oct  4 14:59:16 2005
From: azlate at bitdefender.com (Andrei Zlate-Podani)
Subject: Bypassing Personal Firewall, is it that* hard?

A firewall has to do with network traffic. All this talk about 
"bypassing firewall x or y using this trick or that one" is sheer nonsense.
It is not the job of a firewall to track all the relations of 
executables and/or API calls in the system.
I never heard anybody complaining that iptables allows a script execute 
Conqueror to communicate with a server.
Use an antivirus program or an IDS for this job.

Andrei


Aditya Deshmukh wrote:

>>say... a backdoor want to communicate to its server... It can do
>>is,.... use a trusted internal application to do the job. Suppose; it
>>creates a batch file run the batch file  (evil.bat) & executes this
>>command
>>    
>>
>
>this has been going on for years - there are some trojans that create 
>An invisible browser window at the screen center to comm with the 
>Server. 
>
>This is the reason most firewalls like show you a popup saying 
>the [app-name] trying to connect to [server-name] at [port-number]
>
>
>
>
>
>
>________________________________________________________________________
>Delivered using the Free Personal Edition of Mailtraq (www.mailtraq.com)
>_______________________________________________
>Full-Disclosure - We believe in it.
>Charter: http://lists.grok.org.uk/full-disclosure-charter.html
>Hosted and sponsored by Secunia - http://secunia.com/
>
>
>  
>


-- 
Ignorance more frequently begets confidence than does knowledge.
--- Charles Darwin



-- 
This message was scanned for spam and viruses by BitDefender.
For more information please visit http://www.bitdefender.com/

Powered by blists - more mailing lists