Outpost Firewall Free 2009 v6.5 Released

'mate' as I said they were never adressed.
If that makes you laugh good for you.

...meaningless is posting security issues in public forums, when the developing company already knows them.

If you like to have a 'kidengraden talk' find someone else. I have better things to do...

Panagiotis

 

I do not like repeating myself. As I said:
The 'holes' are already addressed to the developer.
And yes 3.9 has them too.
In the links that I posted you will find the tools to test your inbound security.

Panagiotis

 

You are welcome.

Start here http://backtrack.offensive-security.com/index.php/Tools

I am not talking about malware that will penetrate comodo D+.
I am talking about 'spoofing', 'arp poisoning' and 'man in the midle attacks'. For testing you will need a network with at least 2 machines and a router (on 1 machine you must install comodo and you will use the other to perform the attacks).

ps. Comodo vulnerabilities are significant only in networks that are not administrated correctly (for example, public wifi spots or home wifi networks open to everyone).

Panagiotis

 

No, hips cannot help in these kind of attacks.

Sorry, but I will not list them. Wilders is a security forum and not a blackhat place.

Panagiotis

 

Comodos ARP protection isn't enabled *by default

Might be part of the problem

 

Latest outpost 2009 free crashed too, look here:
http://i44.tinypic.com/2eeehs8.png
Not much difference in reality, imho. In contrary Comodo has a good ip blacklist feature that outpost 2009 free lacks.

I always enable the tightest possible setup of a firewall, always maximum security.

5 years are flying away if you are serious with testing, isn´t it...

 

If you say this then it is a serious thing, I suspect who is responsible for that.

This ip-range is on my blacklist.

 

Which firewall can do anything against this? I don´t know any firewall that is able to resist not only mitm but especially that what I call "remotely attached poisoned http packets/traffic" or http-poisoning. This happens everywhere, everyday at least my sniffer proves it.
If you analyzed this the whole discussion about security becomes a farce, a comedy show without purpose, nevertheless to test and experience security (that in reality does not exist) makes fun.

 

No "Protect the ARP cache" does not protect against 'arp poisoning' although it should.

@ssj100
'mate' I gave you some links where you can start learning and testing. I had enough of this BS.

Panagiotis

 

Firewall with good snort rules (IPS) can protect against some of those attacks.
For example 'Yoggie gatekeeper pico' does.

Panagiotis

 

How in the world a simple Outpost Firewall Free 2009 v6.5 Released
thread turned into a Comodo thread...very strange indeedie

 

To all,

This is an Outpost Firewall thread. Let's not randomly drag other products into the discussion.

Blue

 

Bad to think some maturity would be present after my absence.

I will look through these posts now, as I see mention of ARP protection, which I certainly know about.

Stop the childish behavior. This is a security forum, not a playground. I have my own problems without c%^p here.


- SteM

 

Stem, quick question and you can remove this
or pm me?? why is your pm feature turned off? makes for a funny afternoon
when you cannot contact you[moderator of an important section] for help and or advise
thank you sir that is all...Gordon

 

Probably pi%%ed off at the time. PM back on.

I have only limited time. If I answered all PM then I would have no time on forum.

 

thank you sir

 

I am looking to attempt what is going on. However, off topic replies to this thread I will remove.

[Complain to ya mom.]


-Stem

 

OK,

Any comparison etc, then start a new thread.

I will not remove posts, whats the point? We will see similar tomorrow in another thread.

-Stem

 

ssj100, actually if you would have pulled out your
investegative spy glass and polished it off and looked even farther back it started here...
https://www.wilderssecurity.com/showpost.php?p=1478147&postcount=167
and then went this way
https://www.wilderssecurity.com/showpost.php?p=1484614&postcount=176

 

Latest release of Outpost Free is really running well

 

Agree. Why should a mini computer be able to stop something what nobody else can stop, also not Outpost.
I think outpost 2009 free needs a ip-range blacklisting ability to be equal to comodo (free) in relation to restrict http-attacks and http-smuggling. First priority should be to harden HTTP otherwise all efforts are meaningless.

 

Nice to hear that Kees...its pretty cool proggie

 

Well I just need a baseline intrusion prevention (always using policy management to contain risk), what I like is that I can set it to my liking and keep it quiet. Just defending the Windows-NT subsystem (without dll injection) plus registry and keyboard loggers thats it. No single pop-up by the host intrusion prevention since install (while Comodo or Malware Defender configured in the same way would pop-up), so very happy with it.

 

You agree on what? That ssj100 has no clue what I was talking about?
For the record the http attacks that you describe (at least that was my understanding) are called 'http splitting' and 'http smuggling' attacks that target http headers and are very, very difficult to intercept.
I already answered you that a firewall with (deep packet inspection) and snort rules can prevent some of them. Yoggie Gatekeeper Pico was only an example since it has snort IDS/IPS included in it's Linux OS.

Outpost free (or paid) and most of the personal firewalls (at least those that I have tested) cannot handle these http attacks.
If you want to prevent them (some of them) simple install snort on your machine allong with your firewall.

Panagiotis

 

If, after configuring it you set it in 'block most' mode you will never see a popup again.

Panagiotis