[Full-disclosure] Bypassing Personal Firewall, is it that* hard?
Andrei Zlate-Podani
azlate at bitdefender.com
Tue Oct 4 15:07:42 BST 2005
A firewall has to do with network traffic. All this talk about
"bypassing firewall x or y using this trick or that one" is sheer nonsense.
It is not the job of a firewall to track all the relations of
executables and/or API calls in the system.
I never heard anybody complaining that iptables allows a script execute
Conqueror to communicate with a server.
Use an antivirus program or an IDS for this job.
Andrei
Aditya Deshmukh wrote:
>>say... a backdoor want to communicate to its server... It can do
>>is,.... use a trusted internal application to do the job. Suppose; it
>>creates a batch file run the batch file (evil.bat) & executes this
>>command
>>
>>
>
>this has been going on for years - there are some trojans that create
>An invisible browser window at the screen center to comm with the
>Server.
>
>This is the reason most firewalls like show you a popup saying
>the [app-name] trying to connect to [server-name] at [port-number]
>
>
>
>
>
>
>________________________________________________________________________
>Delivered using the Free Personal Edition of Mailtraq (www.mailtraq.com)
>_______________________________________________
>Full-Disclosure - We believe in it.
>Charter: http://lists.grok.org.uk/full-disclosure-charter.html
>Hosted and sponsored by Secunia - http://secunia.com/
>
>
>
>
--
Ignorance more frequently begets confidence than does knowledge.
--- Charles Darwin
--
This message was scanned for spam and viruses by BitDefender.
For more information please visit http://www.bitdefender.com/
Full-Disclosure is hosted and sponsored by Secunia.