|
|
#1
May 22nd, 2009, 04:18 PM
|
|||
|
|||
About 'Conficker Detection' By The Firewall
Hello,
as long as the worm is detected by the 'Web Access Protection' module -it disconnects the connection before the worm access PC-, why that detection was added to the personal firewall? Many Thanks .. |
|
#2
May 22nd, 2009, 07:54 PM
|
||||
|
||||
|
Re: About 'Conficker Detection' By The Firewall
Hello,
Some malware, such as the Win32/Conficker worm, spread themselves by using specially-crafted packets designed to attack vulnerabilities in an operating system, service or application bound to an open port. Because these attacks can be identified on a per-packet basis (as opposed to looking at the data stream from a file transfer--the attack can be blocked by IDS functionality in the firewall. Regards, Aryeh Goretsky
__________________
Resources: ESET · blog · documentation · FAQs · knowledge base · news · RSS · signature updates · support · Threat Center · @ESETNA (Twitter) · YouTube: ESETKnowledgebase · VirusRadar Fun Stuff: Facebook (global) · Facebook (US) · @ESET (Twitter) · YouTube: esetusa |
|
#3
May 22nd, 2009, 10:59 PM
|
|||
|
|||
|
Re: About 'Conficker Detection' By The Firewall
Many thanks Aryeh ..
|
| « Previous Thread | Next Thread » |
| Thread Tools | Search this Thread |
|
|
