Firewall termination test page

Discussion in 'LnS English Forum' started by Thomas M, Oct 10, 2006.

Thread Status:
Not open for further replies.
  1. Thomas M

    Thomas M Registered Member

    Joined:
    Jan 12, 2003
    Posts:
    355
    Dear LnS users,

    Recently "gkweb" has published the results of a new test called "firewall termination test":
    http://www.firewallleaktester.com/termination_overview.php

    He tested the possibility to terminate software firewalls by different techniques. The results are presented, when you click the "VIEW RESULTS" button on the bottom of the page.

    According to this page LnS failed almost all of the tests :( ,
    whereas 3 out of 13 competitors passed.

    So, bad news for the fraction of LnS users :\

    Thomas :(
     
  2. Climenole

    Climenole Look 'n' Stop Expert

    Joined:
    Jun 3, 2005
    Posts:
    1,640
    Hi Thomas M :)

    Sounds interesting...

    But we have to look at it carefully:

    1- Terminate a process must be possible including a firewall process
    2- At first glance these tests supposed that some malware may used
    one of these technics to kill a firewall.
    a) I agree that a FW must be protected against this
    b) a FW must be ONE of our security layer, not the only one...

    Remember that we're talking about M$ Windows...

    These tests are using the unbelievable lack of security of all M$ stuff:
    Did a FW must fix this ?

    This can't be done on any BSD Unix and possibly on Linux.

    The main problem is the misconception of all M$ O.S. since the beginning.
    Did Vista will fixed this? Let me be very skeptical.

    All security problems we have to deal with the M$ O.S.
    was resolved in ... 1970 with Unix.

    Instead of basing their O.S. on this, M$ and the Billou's BoyZ reinvented the wheel with the scandalous results we know...

    There are 2 kind of O.S.:

    1-
    The ones based on Unix with a simple but powerfull organization of rights and priviledges + a system based on each tool do is job and nothing else and may cooperate with the others.

    2- M$ stuff: a "spaghetti" O.S. : everythings is mixed in a stupid "stew" such as the infamous InterNUT Expl'horror embedded in their O.S. such as a cancer tumor...

    Did I have to say more about thet MS stuff?
    Did they learn somethings since the beginning? Absolutly not.
    They pretend to resolve all of this with Vista. Oh yeah ?
    Have fun !

    This is my humble opinion.

    :)
     
  3. Phant0m

    Phant0m Registered Member

    Joined:
    Jun 7, 2003
    Posts:
    3,684
    Location:
    Canada
    Microsoft being at fault for everything probably will be at fault for nuclear explosions too…

    Yes Microsoft Windows is poorly designed but doesn’t stop the majority of those who faults Microsoft … from using it.

    Microsoft should make specifically some sort of termination shield to conveniently be used by developers of security software, however they probably wont and instead of crying over it the developers of security software has to at-least ‘try’ to work with what they do have. There’s a very common saying, ‘work with what you have’ and this is exactly what is being done by few developers today of security software and shown for 3 out of 13 firewall competitors.

    As for separate security layers … well I don’t believe we should be paying out for a full blown additional security software suite just to secure our OTHER security products drivers and processes.

    I already have seen fair share of malware attacking security software running drivers and processes, and now with all the hype and demonstration utilities for terminating with various methods, you can count on this benefiting the malware coders long before security software developers…
     
  4. Frederic

    Frederic LnS Developer

    Joined:
    Jan 9, 2003
    Posts:
    4,354
    Location:
    France
    Hi Phant0m,

    Do you know if simply adding a feature to let the application filtering enabled even if the Look 'n' Stop application has stopped (like for the internet filtering) would be sufficient against a majority of termination mechanisms ?

    Thanks,

    Frederic
     
  5. Phant0m

    Phant0m Registered Member

    Joined:
    Jun 7, 2003
    Posts:
    3,684
    Location:
    Canada
    It’ll be a great start; I think people would benefit from this feature.
     
Thread Status:
Not open for further replies.