Has anyone defeated the PC Flank Leaktest?

Discussion in 'other firewalls' started by truthseeker, Feb 18, 2008.

Thread Status:
Not open for further replies.
  1. truthseeker

    truthseeker Former Poster

    Joined:
    Jan 26, 2008
    Posts:
    977
    I failed the PC Flank Leaktest from:

    http://www.pcflank.com/

    Has anyone found a free firewall that makes this test fail?

    Thanks
     
  2. alex_s

    alex_s Registered Member

    Joined:
    Aug 13, 2007
    Posts:
    1,251
    Online Armor, Comodo
     
  3. Nebulus

    Nebulus Registered Member

    Joined:
    Jan 20, 2007
    Posts:
    1,582
    Location:
    European Union
    I tried with the version of PCFlank downloaded from Matousec, and it told me that my "firewall has failed the test" and that data was send to the internet, even if the computer had no network connection, so I wouldn't put too much trust in PCFlank test....
     
  4. truthseeker

    truthseeker Former Poster

    Joined:
    Jan 26, 2008
    Posts:
    977
    Are both of these FREE?

    If so, which one is the better?
     
  5. truthseeker

    truthseeker Former Poster

    Joined:
    Jan 26, 2008
    Posts:
    977
    Yeah good point. It said I failed the test, and when I clicked on results, the text I typed didn't even show up in the results :p

    Is there a possiblity that PC Flank leak test is a scam? And that they have made a deal with the 2 firewall companies they claim are the only 2 firewalls that stop the leak?
     
  6. Nebulus

    Nebulus Registered Member

    Joined:
    Jan 20, 2007
    Posts:
    1,582
    Location:
    European Union
    I don't think it's a scam... It is possible that they don't evaluate corectly the condition for test fail/success. As for their claim that only 2 firewalls pass the test, this claim is outdated ("PCFlank's Leaktest vs. selected commercial firewalls, as of October 16, 2006").
     
  7. Stem

    Stem Firewall Expert

    Joined:
    Oct 5, 2005
    Posts:
    4,948
    Location:
    UK
    The results can be incorrect, this is mainly due to how the test works.

    PCflank uses OLE (Object Linking and Embedding) control of the browser. If this control is actually blocked, then you will have a "Passed" but if the leak is prevented by other means (such as the interception of data transfer) then is does give a "Fail".
    I agree that the test could be done better, and that actually a conncetion/data transfer should be varified by the leak before it gives the "fail alert"
     
  8. alex_s

    alex_s Registered Member

    Joined:
    Aug 13, 2007
    Posts:
    1,251
    Yes, Comodo is completely free, and Online Armor has free version which has the same security level as paid version, but is limited in advanced setup. I cannot say which is better for you. It depends on your personal prefferences. Comodo has a lot of tuning. OA is more quiet (I'd say intellectual), but its free version is limited in setup. Though, its paid version has some unique features which determinded my choice toward Online Armor paid.
     
  9. Diver

    Diver Registered Member

    Joined:
    Feb 6, 2005
    Posts:
    1,444
    Location:
    Deep Underwater
    The problem with all leak tests is their function is limited to sneaking past the firewall. Real malware has to do other things which make detection far more likely. You might take a look at Sunbelt Software's response to Matousec on his leak test results page .
     
  10. Dieselman

    Dieselman Registered Member

    Joined:
    Jan 6, 2008
    Posts:
    795
    I tested this test with Comodo and Online Armor and they both pass this test with flying colors.
     
  11. truthseeker

    truthseeker Former Poster

    Joined:
    Jan 26, 2008
    Posts:
    977
    I tried the PCFlank Leak test with Vista Firewall Control and Webroot Firewall, and they both failed the test.

    I then installed latest COMODO, and it passed the leak test :)

    I will stick with using COMODO from now on.
     
  12. computer geek

    computer geek Registered Member

    Joined:
    Oct 6, 2007
    Posts:
    776
    If you are behind a router, and do not have a hardware firewall activated in theat, you will fail even with a software firewall. therefore, it does not mean you are going to die if you fail.
     
  13. Stijnson

    Stijnson Registered Member

    Joined:
    Nov 7, 2007
    Posts:
    533
    Location:
    Paranoia Heaven
    Why is that? I mean, why would you fail even with a software firewall?
    I have a router with firewall enabled, but I'm still looking for a software firewall to complement it.
     
  14. Nebulus

    Nebulus Registered Member

    Joined:
    Jan 20, 2007
    Posts:
    1,582
    Location:
    European Union
    I will rephrase what Stem said above: PCFlank attempts to control Internet Explorer using OLE. If it manages to do that without being stopped by a security application, it considers that your security application fails the test. It doesn't bother to check if the data it tried to send to the internet was actually sent.
     
  15. Stijnson

    Stijnson Registered Member

    Joined:
    Nov 7, 2007
    Posts:
    533
    Location:
    Paranoia Heaven
    So it has nothing to do with the firewall in your router being broken or anything?
     
  16. Nebulus

    Nebulus Registered Member

    Joined:
    Jan 20, 2007
    Posts:
    1,582
    Location:
    European Union
    Exactly. Absoloutely nothing to do with it.
     
  17. Kerodo

    Kerodo Registered Member

    Joined:
    Oct 5, 2004
    Posts:
    7,786
    I have never ever gotten reliable results on the PC Flank tests... I simply don't trust it at all. I don't think it's a scam or anything, but it's not right either....
     
  18. Dieselman

    Dieselman Registered Member

    Joined:
    Jan 6, 2008
    Posts:
    795
    I got Comodo and Online Armor to pass the PC Flank test with ease. Something to keep in mind about the reliabilty of this test and that site. When I was using ZAAS it would block me from even going to that site cause its a known spy site in there eyes.
     
  19. truthseeker

    truthseeker Former Poster

    Joined:
    Jan 26, 2008
    Posts:
    977
    Or ZAAS knows they will fail the tests there, hence their reason to block the PC Flank website :p
     
  20. Stem

    Stem Firewall Expert

    Joined:
    Oct 5, 2005
    Posts:
    4,948
    Location:
    UK
    Your firewall/HIPS must intercept and block the OLE control for a pass:-


    passed.jpg
     
  21. Franklin

    Franklin Registered Member

    Joined:
    May 12, 2005
    Posts:
    2,517
    Location:
    West Aussie
    Running the test through Sandboxie configured for only your browser to connect seems to pass with no submitted data showing even though the results show a fail.
     
  22. Stem

    Stem Firewall Expert

    Joined:
    Oct 5, 2005
    Posts:
    4,948
    Location:
    UK
    Then you need to check with Vendor if OLE control is intercepted and blocked.

    I dont know how clearer I can make this.

    If your firewall/HIPS correctly intercepts and can block OLE control then your firewall/HIPS will be given a passed.

    I have just installed OA onto VM (due to ongoing thread by Escalader), I ran the PCflank test, this was intercepted correctly:-

    OA_PCflank.jpg

    When this is blocked, then the popup (post 20) shows that the leak as failed (firewall passed the test).
    (In post 20, I was using HIPS (PS))
     
  23. Dieselman

    Dieselman Registered Member

    Joined:
    Jan 6, 2008
    Posts:
    795
    Thank you Stem. Thats the same results I got using Comodo, ZAAS and Online Armor.
     
  24. LoneWolf

    LoneWolf Registered Member

    Joined:
    Jan 2, 2006
    Posts:
    3,408

    Agreed.
    I ran this sanboxed inside SandBoxie configuated to not allow any programs in the sandbox internet access except my browser.
    Said I failed.
    Tried it again this time the same setup as well as disconected from the internet using the quick disconnect of AlphiaShield and the results said I failed. How was this sent with no connection?
    It was not. This test is not reliable at all.
     
  25. Stem

    Stem Firewall Expert

    Joined:
    Oct 5, 2005
    Posts:
    4,948
    Location:
    UK
    The actual test is reliable. It is only the result that is confusing.

    As I have mentioned, the actual test is the ability of the firewall/hips to intercept OLE.

    Come on, this is getting irritating trying to explain this.
     
Loading...
Similar Threads
  1. jadinolf
    Replies:
    19
    Views:
    1,138
Thread Status:
Not open for further replies.