Phant0m's rule-set and SecuritySpace.com NoRisk Audit

I've just finished the SecuritySpace.com NoRisk audit (it's free to do the basic test, although you have to register, and it takes about 3 hours to complete) of my machine which has LnS 2.05p3 beta coupled with Phant0m's rule-set, and it only had two minor vulnerabilities:

1) Misc.: Traceroute (Low Risk Vulnerability)
2) General : Reverse DNS Lookup (Other Items to be Considered)

Below is a quote of what they mean:

Can these be fixed with a new/updated rule ?

I know they're only minor, but I enjoy the satisfaction of passing all tests I aim at my system

 

Hi Defenestration

Did you download the rule-set from official location?
And have you made any changes to the rule-set?

 

Hi Phant0m,

The rule-set was download from an official location several months ago (V6 I believe). Have you released the updated rule-set you were promising ?

If so, then I was not using this very latest version.

The only change made to the rule-set was to modify the DNS-Allowed-1 rule as per instructions.

 

Sorry when can download this ruleset officially? Thanks

 

Hi Defenestration,

Thanks for the test and this report.

By default, normally Look 'n' Stop is already configured for "filtering ICMP Destination Unreachable (Code 3) and ICMP Time Exceeded (Code 11) messages", so it is strange there is an issue there. Did you check "if the route shown above is revealing sensitive IP addresses internal to your network" ?

Not sure what is really the vulnerability there are testing for "Reverse DNS Lookup". If it is simply the possibility to retrieve a name based on an IP, I don't see the point.

Frederic