im a user of zone alarm free version and im rather anoyed to learn that it cannot has detect and block exploits like firehole and too leakey *>:( and im wondering if anyone knows if zone labs are planing to update the free version to stop this sort of thing and if thay are when the update will be released *???

as this could be a pertentoualy serious security breach !! if any hacker should designe malware to take advantage of this

-{ Quote: "im a user of zone alarm free version and im rather anoyed to learn that it cannot has detect and block exploits like firehole and too leakey" }-
Exacly what proof do you have of these claims?

i know because iv tested there fire wall testers against the latest version of zone alarm free edition 2.6.362 and thay when right through zone alarm like it wasnt there thats my proof

so parden my manours but unless you have any useful coments plz say nothing im lookin for answers not smart arse comments

Gentlemen,

Let's keep it friendly, OK?

Bethrezen,

allowing any .exe file (and that's what FireHole and TooLeaky in fact are) to execute is the main issue here. True: in case you do allow these to execute, your system will be vulnerable. For that reason, if using ZA Free, one should configure this app in a way, all apps should ask for access every time.

As for updating ZA Free: as always, the Pro version has all priority. In the end - and this can take quite some time - ZA Free might be updated as well.

You could consider the (free) addon as posted in this forum; running the both in conjunction will take care of your problem.

regards.

paul

This is definitely a touchy issue !
As Paul points out, if everything is configured to be asked access, then all firewalls would pass these tests, as in essence you are in fact denying the tests to go through.
The purpose of these tests however *is to to go one step behond that and test your firewalls's to see *if something similar to these tests , but with malignant intent were able to make their way into your system, what would then be the protection offered by said firewalls.
Not all score evenly on that.

Fully agreed, Mickey.

regards.

paul

-{ Quote: "i know because iv tested there fire wall testers against the latest version of zone alarm free edition 2.6.362 and thay when right through zone alarm like it wasnt there thats my proof

so parden my manours but unless you have any useful coments plz say nothing im lookin for answers not smart arse comments" }-

Keep it simple switch to another firewall company!!!! Or..Send your results to ZA Company and help them resolve this matter if it exists...

Technodrome

i apolagise for my poor manours

you mentioned somthin about a plug in ???

contacin zone labs was my first though but i dont got a contact adress

there are only 2 resions im using zonealarm 1 its easy to use for a novice like me 2 its free although changin fire walls may be a good idea i dont know which one to get which is the best free one right now ?? plus i would all so need some instruction on how to properaly configure it as im not sure id beable to do it on my own well not at first untill i learned how to use it

Check out Wilders.org firewall section and you might be able to find your answer.

http://www.wilders.org/firewalls_m.htm

Technodrome

-{ Quote: "so parden my manours but unless you have any useful coments plz say nothing im lookin for answers not smart arse comments" }-
Hey, it wasn't meant to be a smart-arse comment. *Let's not get trigger happy. *To my knowledge both ZA and ZAP both prevent the leaks you mentioned by default, as backed up by grc.com. *Okay?

-{ Quote: "
To my knowledge both ZA and ZAP both prevent the leaks you mentioned by default, as backed up by grc.com. *Okay?" }-

not according to Zonelabs themselves, they don't ! *Unless of course they managed to solve that recently !

I'm happy to be corrected but I thought this was a non-issue since V3? *Hmm...maybe I'd better send a few emails out.... *???

Tooleaky etcetera were known issues at 2.6 and earlier, but not 3.0 onwards. *:)

-{ Quote: "Tooleaky etcetera were known issues at 2.6 and earlier, but not 3.0 onwards. *:)" }-

Checkout, as the initial poster inquired about the free version, and there has not been released a v3.0 Free as far as I know, the version he uses indeed is vulnerable, won't you agree?

regards.

paul

Dammit, you're right. *Not being a ZA user, I made an erroneous assumption that it would be at the same level as ZAP.

I hereby back-pedal, with alacrity. *Sorry folks.

Checkout,

Never mind. Happens to the best *;)

regards.

paul

Paul - I'm not seeing anything in our d/l section that addresses the tooleaky/firehole 'vulnerability' as re: ZA.

Am I missing something?

Bethrezen - Hi! The ZA you've got right now is probably perfectly sufficient to your needs.

I say that because, while the tooleaky/firehole 'vulnerability' does apply to the freeware ZA, I have yet to see any instances out here in the Internet of any actual successful exploits against anyone that employ the 'vulnerability' exposed by tooleaky/firehole.

As far as ease of use and simplicity, it's kind of hard to beat the ZA you already have.

Just my two cents. pete

Pete,

Have a look on our firewall page:

www.wilders.org/firewalls.htm

You'll find a link over there regarding this subject:

www.wilders.org/HTMLobj-1073/firewall vulnerability.txt

regards.

paul

* * * * * Checkout

* * * * * *you were absolutely..totally correct in your first reply.....zone alarm free version will pass all tests when set *that programs must ask for permission........this is a matter of "just say no" * * *Furthermore..previous versions of zone alarm free version also worked the same way....an passed all tests mention......

* * * * * *is zone alarm free version "vulnerable" ..yes...if the user does not set it so as all programs my "ask"


* * * * * going by the firewall results posted at pcflank:

* * * * * Look n Stop lite..is vulnerable * (free version)

* * * * * sygate (free version) is vulnerable

* * * *point being: *most all freeware versions of firewalls are vulnerable to this issue. * many of the shareware versions of firewalls are not.

* * * in the past I have used Look n Stop lite.....Tiny *and zone alarm (free version)

* * * * * The Pro version of Look n Stop imo is a great firewall. * An if I were in the market for a firewall it would be my personal choice.

* * * * * if zone alarm free version passes the tests when set correctly......in all fairness that should be mentioned.
so as not to mislead a person into believing other freeware firewalls are not just as vulnerable....


* * * * *Pete......great post!


* * * * * * * * * * * *Regards

* * * * * * * * * * * *snowman

* * * * * Mickey

* * * * *I believe your first post summed it up very well.
an excellent assessment.



* * * * * * * * * * * *reagrds

* * * * * * * * * * * * snowman

* * * * *respectfully posted: no intent to be off topic*



* * * * *time and time again I have noticed numerous people express that they are concerned about using rule based firewalls for fear of not being able to correctly set rules.


* * * * * with all the wonderful people at this forum willing to offer help......its only matter of asking. *

* * * * * *over the years I have seen Spy1...Mickey the Man.....Paul.....an many many others go well out of their way to help anyone in need.......they have certainly done so many times with me.

* * * * * *so,,to anyone..anywhere...just ask. * if you want to try a rule based firewall someone will always be willing to help out or direct you to a source of information. * by no means am I an expert on anything...but I know good people when I see them. *an these guys are the best.

* * * * *at a time such as this when new exploits are hitting users nearly every day....there is no better time than now to express this to those in need of help.


* * * * * * * * * * * * * *thanks for allowing the post

* * * * * * * * * * * * * * * * * snowman

Thanks, snowman!

We appreciate the compliments! And will, of course, do our best to live up to them. pete

Just when i was about to retire ! :D

* * * * *SPY1

* * * * *I can remember the days when you and Mickey had to patiently walk me through even the most minor computer problems........an always it was appreciated.

* * * * *Education is desperately needed by many users....an just maybe...once people realize that there good people willing to help-out.....the over-all results will be a better use of the internet for all...... * an what better way of learning about helpful people then from someone like myself......who so many have reached out and helped......even when I didn't deserve it..
* * * * *its you whom I thank Pete......




* * * * *Mickey

* * * * * *RETIRE!!!! * *no way buddy....there is still a whole lot you have to teach me yet.....you aren't getting off that easy... * * LOL

* * * * * * Truely..my sincere best regards to both you guys..


* * * * * * * * * * Snowman

Hi guys and thanks for all ya replys

education is indeed the name of the game and if more users where educated in computers the result would indeed be a beter online experance for us all and thats why i signed up at the spyblocker forum and here to learn new skills and keep my self and my comp safe while me and my bro's are on line

indead the guys who give up there time to help people like me are to be thanked keep up the good work *;D

if i ever need help i know where i can come to find the answers i seek

Blessed be

I'm coming a bit late to this party, but wanted to add my hearty agreement to Mickey's original post, and add further comment.

I've heard various folks assert that such and such firewall passes such and such leak test, only to discover that they have the relevant apps set to 'ask'. *Well, that kinda defeats the purpose of the leak tests in my opinion. *There is no freaking way I'm setting all my apps to ask. *I'd spend more time responding to dialogue boxes then actually USING the computer to get things done. *I want, nay, EXPECT a firewall to allow me to specify 'trusted' apps, and then prevent some rogue program from taking control of said trusted app and using this to do me harm. *In my opinion, the ONLY way to do a leak test is to ensure that the involved apps (the rogue app notwithstanding) are set to auto-allow, THEN attempt to execute the leak app. *

In this scenario, the only firewall I'm aware of that passes TooLeaky is LooknStop.