Page 6 of Comodo Firewall and Avast 7

Radaghast

Star Group
Comodo's Hero

Offline

Posts: 4032

Re: Comodo Firewall and Avast 7

« Reply #75 on: March 08, 2012, 11:01:41 PM »

Quote from: Doormat on March 08, 2012, 04:36:21 PM

Is he saying they found a security hole and are using it with thier antivirus to fix the issue.

If so, maybe they should've notified microsoft...

I don't believe it's a "security hole" as such, it's more about the change of driver in Avast 7. From what lukor said, Avast have moved from using the TDI to using WFP and he believes that if Comodo is still using the TDI - from what I can see, it does - then this may be the reason we're seeing this. The problem with that hypothesis is, this also affects the Windows 7 firewall, - and others - and the Windows 7 firewall is surely using the Windows Filtering Platform.


	Logged

“Don’t worry if it doesn’t work right. If everything did, you’d be out of a job.”

Radaghast

Star Group
Comodo's Hero

Offline

Posts: 4032

Re: Comodo Firewall and Avast 7

« Reply #76 on: March 08, 2012, 11:51:05 PM »

Bitdefender Internet Security 2012 is also susceptible to this 'leak'. I wonder how many more...


	Logged

“Don’t worry if it doesn’t work right. If everything did, you’d be out of a job.”

John Buchanan

The greatest victory comes from the battle within.
Global Moderator
Comodo's Hero

Offline

Posts: 5419

Personal Dragons can be defeated. Improve yourself

Re: Comodo Firewall and Avast 7

« Reply #77 on: March 09, 2012, 12:07:06 AM »

And as Microsoft is fond of saying... the issue lies with Avast's software. They need to correct it.


	Logged

Please follow Comodo Forum Policy

Chiron

Global Moderator
Comodo's Hero

Offline

Posts: 5567

Re: Comodo Firewall and Avast 7

« Reply #78 on: March 09, 2012, 12:31:48 AM »

Quote from: Radaghast on March 08, 2012, 11:51:05 PM

Bitdefender Internet Security 2012 is also susceptible to this 'leak'. I wonder how many more...

Is it a leak or is this due to these programs trusting Avast in some way and it is thus allowed to 'bypass' all these programs?


	Logged

How To Install Comodo Firewall

How To Stay Safe While Online

Radaghast

Star Group
Comodo's Hero

Offline

Posts: 4032

Re: Comodo Firewall and Avast 7

« Reply #79 on: March 09, 2012, 12:39:06 AM »

Quote from: Chiron on March 09, 2012, 12:31:48 AM

Is it a leak or is this due to these programs trusting Avast in some way and it is thus allowed to 'bypass' all these programs?

It's the same as CIS, Windows 7 Firewall and Private firewall (I haven't personally tested PF), so far. They're simply unable to block connections being made through the Avast transparent HTTP proxy. Call it a leak, call it a failure on behalf of the firewall to block certain connections or call it a problem with the new Avast driver...


	Logged

“Don’t worry if it doesn’t work right. If everything did, you’d be out of a job.”

clockwork

Comodo's Hero

Offline

Posts: 1919

Oxygen requires Chuck Norris to live

Re: Comodo Firewall and Avast 7

« Reply #80 on: March 09, 2012, 06:33:09 AM »

Quote from: John Buchanan on March 09, 2012, 12:07:06 AM

And as Microsoft is fond of saying... the issue lies with Avast's software. They need to correct it.

Again, what would you say to a bad guy? Would it be HIS issue that his program can lead traffic of unrelated programs un-notified by a firewall into the internet? He needs to correct it?

Its an issue for the USERS!


	Logged

"If there is a problem, it`s something interesting. Try to circumvent or fix it.
In the old ages there was no support. That`s why we got the brain we have today.
Otherwise we would only be able to call a number and listen."

tbmaster

Newbie

Offline

Posts: 21

Re: Comodo Firewall and Avast 7

« Reply #81 on: March 09, 2012, 09:39:00 AM »

Quote from: clockwork on March 09, 2012, 06:33:09 AM

That's true, the issue is with Comodo, not with Avast.
90% of firewalls don't have these problems with Avast.

Maybe we have to ask to malware creators to not use comodo's bugs to bypass the firewall. OMG!


	Logged

kail

Mostly Benevolent
Global Moderator
Comodo's Hero

Offline

Posts: 10743

The future is much like the present, only longer.

Re: Comodo Firewall and Avast 7

« Reply #82 on: March 09, 2012, 09:46:37 AM »

Quote from: tbmaster on March 09, 2012, 09:39:00 AM

Since one the 10% is apparently Microsoft's own Windows 7 Firewall, then this should have given you some pause for thought before posting this.


	Logged

System Details: W7x64U with CIS 6, Firefox 20, IceDragon 20 & Becky! 2.65
Forum Policy.
____
I don't know what weapons countries might use to fight World War III, but wars after that will be fought with sticks and stones. Einstein

tbmaster

Newbie

Offline

Posts: 21

Re: Comodo Firewall and Avast 7

« Reply #83 on: March 09, 2012, 11:36:05 AM »

Quote from: kail on March 09, 2012, 09:46:37 AM

Since one the 10% is apparently Microsoft's own Windows 7 Firewall, then this should have given you some pause for thought before posting this.

?_?

Microsoft windows 7 firewall si a simple basic firewall, not an advanced one.
If you advertise your firewall as the best of all, you can't compare it with windows firewall.
Using windows firewall is like not having a firewall.

EDIT:
If you are saying that, thinking that this is a windows bug, I have to think that comodo is based on windows firewall and this is no good.


« Last Edit: March 09, 2012, 11:53:21 AM by tbmaster »	Logged

HeffeD

Global Moderator
Comodo's Hero

Offline

Posts: 6567

Re: Comodo Firewall and Avast 7

« Reply #84 on: March 09, 2012, 01:35:28 PM »

Quote from: tbmaster on March 09, 2012, 11:36:05 AM

I think what he's is saying is that the Windows firewall has the widest user base of any software firewall...

In other words, whatever Avast has done with their updated web shield has negated millions of users firewalls.


	Logged

Please read the Forum Policy!

Breast Cancer Awareness
American Cancer Society

clockwork

Comodo's Hero

Offline

Posts: 1919

Oxygen requires Chuck Norris to live

Re: Comodo Firewall and Avast 7

« Reply #85 on: March 09, 2012, 02:04:48 PM »

Quote from: HeffeD on March 09, 2012, 01:35:28 PM

In other words, whatever Avast has done with their updated web shield has negated millions of users firewalls.

A security feature became a proof of concept


« Last Edit: March 09, 2012, 02:07:37 PM by clockwork »	Logged

languy99

Global Moderator
Comodo's Hero

Offline

Posts: 3943

Re: Comodo Firewall and Avast 7

« Reply #86 on: March 09, 2012, 02:14:16 PM »

my issue is that the driver avast is using is doing this because it is trusted by comodo and allowing an install. If the driver was not trusted I highly doubt that it would be able to do any of this. Of course this is just theory and can't be tested unless avast provides and unsiged driver so that we can see what comodo does with it when trying to run it.


	Logged

http://www.youtube.com/languy99

Software Reviews for all.

Follow me on Twitter http://twitter.com/#!/languy99

Radaghast

Star Group
Comodo's Hero

Offline

Posts: 4032

Re: Comodo Firewall and Avast 7

« Reply #87 on: March 09, 2012, 02:54:47 PM »

Quote from: tbmaster on March 09, 2012, 11:36:05 AM

It's staggering how many people still cling to the ridiculous notion that the firewall in Windows 7/Server 2008 is "simple" when it's anything but! It's also frustrating to see people pointing fingers at Comodo, when we know the problem is much wider than that.

The bottom line here, supposedly, Avast made a change to a single driver in Avast 7, that change appears to have rendered several firewalls, including CIS, vulnerable.


	Logged

“Don’t worry if it doesn’t work right. If everything did, you’d be out of a job.”

Radaghast

Star Group
Comodo's Hero

Offline

Posts: 4032

Re: Comodo Firewall and Avast 7

« Reply #88 on: March 09, 2012, 03:00:46 PM »

Quote from: languy99 on March 09, 2012, 02:14:16 PM

It's an interesting idea and may well be applicable to CIS but it doesn't really explain the vulnerability in Windows firewall. For Private Firewall and Bitdefender - possibly others - we'd need to see if they have anything similar to the TVL/Trusted file/Safe list and how the interaction of such, with the firewall, causes the failure.

I also have a small problem with the idea that if something is 'Trusted' then all attempts to block connections in the firewall are subject to fail - which clearly isn't happening. By that logic, there wouldn't be any point having a firewall

What's basically being suggested, is that because D+ allows AvastSvc access to AFD, no amount of rule creation in the firewall, will have any impact and that really doesn't sound right.


« Last Edit: March 09, 2012, 07:09:28 PM by Radaghast »	Logged

“Don’t worry if it doesn’t work right. If everything did, you’d be out of a job.”

Chiron

Global Moderator
Comodo's Hero

Offline

Posts: 5567

Re: Comodo Firewall and Avast 7

« Reply #89 on: March 09, 2012, 03:07:49 PM »

Quote from: languy99 on March 09, 2012, 02:14:16 PM

I would guess that it's either this or Avast has stumbled on a new way of bypassing many of the firewalls out there. Either way it's definitely worth it for Comodo to look into, at least to make sure that malware couldn't do this.

My best guess would be that it wouldn't happen if Avast weren't trusted, but I'm not sure. I'd like to hear from Comodo about this.


	Logged

How To Install Comodo Firewall

How To Stay Safe While Online

Tags:

Pages: 1 ... 4 5 [6] 7 8 ... 18

« previous next »

Jump to:

SSL Certificate

Free Virus Removal

Firewall

Page created in 0.056 seconds with 22 queries.

Design by 7dana.com