Re: ITCP Advisory 13: Bypassing of ATGuard Firewal: msg#00437 security.bugtraq

BlueScreen in <014401c1ef8d$1bb66510$0100a8c0@BlueScreenPrimary>:

> ATGuard can be fooled to think that a disallowed program is allowed to
> connect to the internet.

This is a well known problem and has been discussed at length on
<http://grc.com/lt/scoreboard.htm>.

A.M Janssen has written utility which monitors the hashes (SHA1,
Ripe MD-160 or Haval) for the applications in AtGuard's ruleset
<http://www.capimonitor.nl/nisfilecheck11.zip>.

It has to be separately scheduled so it's not as good as real
time checks by the firewall but very useful nonetheless.

<Prev in Thread]	Current Thread	[Next in Thread>

<Prev in Thread]

Current Thread

[Next in Thread>

Previous by Date:	IE/OE6.0 cannot handle malformed XBM files: 00437, Adam [wp-ckkl]
Next by Date:	Security Update: [CSSA-2002-019.0] Linux: imlib processes untrusted images: 00437, security
Previous by Thread:	Re: ITCP Advisory 13: Bypassing of ATGuard Firewall possiblei: 00437, BlueScreen
Next by Thread:	Re: ITCP Advisory 13: Bypassing of ATGuard Firewall possible: 00437, UMusBKidN
Indexes:	[Date] [Thread] [Top] [All Lists]

Previous by Date:

IE/OE6.0 cannot handle malformed XBM files: 00437, Adam [wp-ckkl]

Next by Date:

Security Update: [CSSA-2002-019.0] Linux: imlib processes untrusted images: 00437, security

Previous by Thread:

Re: ITCP Advisory 13: Bypassing of ATGuard Firewall possiblei: 00437, BlueScreen

Next by Thread:

Re: ITCP Advisory 13: Bypassing of ATGuard Firewall possible: 00437, UMusBKidN

Indexes:

[Date] [Thread] [Top] [All Lists]

Re: ITCP Advisory 13: Bypassing of ATGuard Firewall possible: msg#00437

security.bugtraq