Home page logo
/

fulldisclosure logo Full Disclosure mailing list archives

Re: Bypassing Personal Firewall, is it that* hard?
From: Andrei Zlate-Podani <azlate () bitdefender com>
Date: Tue, 04 Oct 2005 17:07:42 +0300

A firewall has to do with network traffic. All this talk about "bypassing firewall x or y using this trick or that one" is sheer nonsense. It is not the job of a firewall to track all the relations of executables and/or API calls in the system. I never heard anybody complaining that iptables allows a script execute Conqueror to communicate with a server.
Use an antivirus program or an IDS for this job.

Andrei


Aditya Deshmukh wrote:

say... a backdoor want to communicate to its server... It can do
is,.... use a trusted internal application to do the job. Suppose; it
creates a batch file run the batch file  (evil.bat) & executes this
command

this has been going on for years - there are some trojans that create An invisible browser window at the screen center to comm with the Server. This is the reason most firewalls like show you a popup saying the [app-name] trying to connect to [server-name] at [port-number]






________________________________________________________________________
Delivered using the Free Personal Edition of Mailtraq (www.mailtraq.com)
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/




--
Ignorance more frequently begets confidence than does knowledge.
--- Charles Darwin



--
This message was scanned for spam and viruses by BitDefender.
For more information please visit http://www.bitdefender.com/

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]