Matousec

Discussion in 'other firewalls' started by Doc Serenity, Aug 22, 2007.

Thread Status:
Not open for further replies.
  1. Doc Serenity
    Offline

    Doc Serenity Registered Member

    Does anybody know when Matousec's latest findings will be available?
    Doc
  2. GES/POR
    Offline

    GES/POR Registered Member

    Sure, ASAP buddy :p
  3. Doc Serenity
    Offline

    Doc Serenity Registered Member

    Didn't know there would be a problem with asking.
  4. Sjoeii
    Offline

    Sjoeii Registered Member

    It is updated regularly. Just keep on tracking their website. www.matousec.com
  5. Doc Serenity
    Offline

    Doc Serenity Registered Member

    Thanks for the info.
    Doc
  6. henryg
    Offline

    henryg Registered Member

    Hmmm... The last time he posted..... was on 8/1/2007.
  7. kr4ey
    Offline

    kr4ey Registered Member

    IMHO these are not up to date test results. They using a version of Jetico Firewall that is almost five months old!!! And why not use the current version. Most everything else are updated versions.
  8. Mr. Malware
    Offline

    Mr. Malware Registered Member

    My theory:

    jetico 2.0.0.34 is now better than Comodo's newest released version. he is partial to comodo.
    he is stuck on testing a very old version of jetico and doesnt want to admit something is better.
    we will have to wait for the test results if they ever get around to testing a newer version, but doesn't look like it will be anytime soon.
    they will probably test the new version of comodo when it's released before they test a new version of jetico.
  9. Peter2150
    Offline

    Peter2150 Global Moderator

    Frankly I am less then impressed with the whole thing. The whole point of "leak" testing is firewalls, leat thats what I thought.

    But if some one bought Prosecurity or SSM thinking they were getting a firewall, oops.
  10. Zombini
    Offline

    Zombini Registered Member

    One thing to note is that the info on there about KIS7 is false. They testing a pre-ship version build 119. In the shipping build 125, ALL outbound traffic is allowed by default. So it fail all tests with default settings.
  11. Kerodo
    Online

    Kerodo Registered Member

    I don't take any of the tests too seriously....
  12. DVD+R
    Offline

    DVD+R Registered Member

    Its like the Blind leading the Blind :cool: You will Believe Anything you read :shifty:
  13. Dwarden
    Offline

    Dwarden Registered Member

  14. Zombini
    Offline

    Zombini Registered Member

    These leaktests are the biggest waste of time.
  15. WSFuser
    Offline

    WSFuser Registered Member

    Well I just got a response saying the next results will be out in 2-3 weeks.
  16. Stem
    Offline

    Stem Firewall Expert

    Hi Zombini,
    Although I would agree that a need for a firewall with "leak prevention" is certainly not at the top of my list for a firewall function. I would say that at least the "leaktests" show the possiblity of how information/outbound could bypass a firewall. (most of which is due simply to the way windows is built)

    My personall direction as always been to prevent the malware (or whatever) from being able to get in and install/run.

    As with the results shown for bugs etc,... these are checks made within the OS, I still would like to see how such as "Matousec" would be able to gain entry to my system and make use of these bugs to actually disable/crash (whatever) my firewall/security setup.
  17. bellgamin
    Offline

    bellgamin Very Frequent Poster

    Matousec's tests are useful when viewed with common sense. Some folks seem to resent that prerequisite.;)
  18. Dwarden
    Offline

    Dwarden Registered Member

  19. Stem
    Offline

    Stem Firewall Expert

    Well,... maybe just my own thoughts, as I put forward before.:-

    Try and get in my PC to make such exploits

    I can certainly myself, kill a number of security applications (bypass kill protection), but I need to have access to the OS. To do this I would need to download and execute (possibly install).

    No, sorry, this is, for me, just some form of scare tactics.
  20. Dwarden
    Offline

    Dwarden Registered Member

    Stem i get Your point as You mainly interested and testing SPI quality of firewalls
    (as it should be theirs priority base of operations)

    anyway You said You may post some of Your results yet You said it may be issue with TOS of forum ...

    what about to create own website (some blog, wiki or else) and link to it ...

    btw. i take Matousec results with reserve too but IMHO most of these products he flagged with problems i encoutered to be unstable :)
    so guess if nothing it's good indicator of what u may await for problems lol
  21. wat0114
    Offline

    wat0114 Guest

    I've used only a few of the tested products, but I would agree that stability is something I place far more importance on than how vulnerable they might be to exploits. Apparently, SSDT, kernel mode, or ring 3 hooking, or whatever it's called (I'm no expert at all in this) can result in system instability if it's not properly implemented in a given product.
  22. Peter2150
    Offline

    Peter2150 Global Moderator


    I couldn't agree more.

    Pete
  23. Diver
    Offline

    Diver Registered Member

    Matousec is obsessed with leak testing.

    Before this is relevant, you have to be infected with a zero day attack that your AV misses. It must be hidden by a rootikt, so your AV does not pick it up the next day, or it disabled your AV, and this very sophisticated malware somehow did not disable your firewall, so its leak proof logic can tell you your backside is saved. Is that reality?
  24. Peter2150
    Offline

    Peter2150 Global Moderator

    The funny part is now is criticizing, all the hooking techiques which vendors have done to pass his leak test. Geesh.
  25. Doc Serenity
    Offline

    Doc Serenity Registered Member

    I'm wondering how all of this new info will change the overall test results when Matousec publishes next time.
    Will he only score for leak test results or add these in?
    Just curious as to why we are just now hearing about this, too.
    Regards.
    Doc
Thread Status:
Not open for further replies.