Bugtraq: Re: ... Tiny Personal Firewall ...

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq mailing list archives

Re: ... Tiny Personal Firewall ...

From: "Maher Odeh" <rax () X-war org>
Date: Fri, 1 Mar 2002 13:04:17 +0200

hello
regarding the tiny firewall "bug", when you finish configuring the firewall
you must uncheck the "learning" mode, in this case the firewall wont popup
any window asking to permit or deny .

  thanks ,

----- Original Message -----
From: "Andrew Barkley" <andrew.barkley () usa net>
To: <bugtraq () securityfocus com>
Sent: Thursday, February 28, 2002 4:53 PM
Subject: ... Tiny Personal Firewall ...

Hi ...


Scanning hosts running the Tiny Personal Firewall (2.0.15a) on W2K
workstations that have been locked (ctl + alt + del)

The popup alert/dialogue jumps to the foreground, thus open to accept
permit/deny input from the local console, even when the workstations are
locked (ctl + alt + del).  Thus an untrusted individual whom has local

access

to individuals workstations can scan a workstation/network, wait for the

popup

alert dialogue and enter "permit" on unattended (locked workstations)

without

the owners permission/knowledge, No need to first unlock (ctl + alt + del)
...


CHEERS ...

By Date By Thread

Current thread:

... Tiny Personal Firewall ... Andrew Barkley (Feb 28)
- Re: ... Tiny Personal Firewall ... Maher Odeh (Mar 01)
- Re: ... Tiny Personal Firewall ... Scott Nursten (Mar 05)
  - Re: ... Tiny Personal Firewall ... Dave Ahmad (Mar 04)
    - Re: ... Tiny Personal Firewall ... Tom Geldner (Mar 05)
    - Re: Tiny Personal Firewall elfs (Mar 05)
    - Re: ... Tiny Personal Firewall ... J.Brown (Ender/Amigo) (Mar 06)