[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] Bypassing Personal Firewall, is it that* hard?

A firewall has to do with network traffic. All this talk about "bypassing firewall x or y using this trick or that one" is sheer nonsense.
It is not the job of a firewall to track all the relations of executables and/or API calls in the system.
I never heard anybody complaining that iptables allows a script execute Conqueror to communicate with a server.
Use an antivirus program or an IDS for this job.

Andrei


Aditya Deshmukh wrote:

say... a backdoor want to communicate to its server... It can do
is,.... use a trusted internal application to do the job. Suppose; it
creates a batch file run the batch file (evil.bat) & executes this
command



this has been going on for years - there are some trojans that create An invisible browser window at the screen center to comm with the Server.

This is the reason most firewalls like show you a popup saying the [app-name] trying to connect to [server-name] at [port-number]






________________________________________________________________________
Delivered using the Free Personal Edition of Mailtraq (www.mailtraq.com)
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/






--
Ignorance more frequently begets confidence than does knowledge.
--- Charles Darwin



--
This message was scanned for spam and viruses by BitDefender.
For more information please visit http://www.bitdefender.com/

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/