How to prevent outgoing internet calls from prgms over browser call?

Discussion in 'LnS English Forum' started by mattad, Sep 2, 2009.

Thread Status:
Not open for further replies.
  1. mattad

    mattad Registered Member

    Joined:
    Mar 1, 2006
    Posts:
    66
    It appears sometimes that I install some programs on my local computer. At the end of the installation process the computer calls IntExp 7/8 under WinXP+SP3 and tells the browser to open a particular web page (=their home page). On this web pages the company congratulates me for a successful installation.

    I don't want to be congratulated (this way)!

    It seems to be a security hole. As a bypass some internal data could be sent to the companys server as well.

    How do I prevent such a connect for ALL programs as long as I did not allow it explicitely ?

    For the program I just installed for example I got NO popup prompt from LnS which let me allow to allow/deny such IE browser calls.

    This is bad.

    How can I setup a rule otherwise?

    Matt
     
  2. Thomas M

    Thomas M Registered Member

    Joined:
    Jan 12, 2003
    Posts:
    355
    Interesting! This never happened to me.

    1.) I do not allow IE to connect to the Internet
    2.) I allow svhost.exe only minimal connections
    3.) I do not allow the install.exe file to connect to the internet
    4.) I do not allow msiexec.exe to connect to the internet.

    This is my "full-paranoia" mode ;)

    But, as we all know, there is always a way to bypass firewalls (even LnS) :(
    And actually, why do I install and run software that I do not trust? ;)

    Thomas :)
     
  3. wrathchild

    wrathchild Registered Member

    Joined:
    Feb 7, 2008
    Posts:
    170
    Location:
    Neoplantesis
    Probably you're allowed installer (msiexec.exe) to connect to the internet (maybe earlier when installing some other applications) and he is started InternetExplorer at the end of installation.

    In Application Filtering tab (when LnS is in advanced mode) you can specify which application can start other applications which connects to internet...see help for explanation.
     
  4. daniel952

    daniel952 Registered Member

    Joined:
    Jul 30, 2004
    Posts:
    71
    That is probably what happened. Check your application rules for msiexec.exe and the ports used.
     
  5. mattad

    mattad Registered Member

    Joined:
    Mar 1, 2006
    Posts:
    66
     
  6. Frederic

    Frederic LnS Developer

    Joined:
    Jan 9, 2003
    Posts:
    4,354
    Location:
    France
    The problem could also comes from IE8 which starts a new IE8 process to do the connections to the web.
    So currently you have to allow IE8 as a parent application, and the initial parent which started the 1st IE8 process is not detected.

    This case should be solved in a new 2.07 version.

    Regards,

    Frederic
     
Thread Status:
Not open for further replies.