Volunteers needed to test existing personal firewalls against new CPIL3 !

[Guest]

[kail]

I agree with streetwolf, knowing your internal IP addy will not help anybody trying to gain access to your system. AFAIK they can't reference it in the way owner can anyway. After all, there are probably hundreds of thousands, if not millions, of systems with the very same internal IP address.

[panic]

Tested CPIL3 with the following settings :

Default Browser : AMBrowser (IE wrapper - like Maxthon)
CPF Version : 2.3.1.20
Component Monitor : ON

Result : Firewall dialogue popped up allowing me to block it, but if I delayed in responding an IE window opened to the Comodo site saying the firewall had failed. It displayed the test I entered in the CPIL3 window, minus the first character. This "minus the first character" trait is repeatable.

If the above settings were used withComponent Monitor set to "Learning", it failed without a dialogue.

Rgds,
Ewen :-)

[egemen]

Melih please check this link

http://www.auditmypc.com/free-spyware-removal.asp

It reveals my internal IP. How come this happens?
---------

http://serversniff.net/browser_header.php
It has to do with java but how can I fix it?

Egemen do you know if it can be fixed. I have not found any tweaks at the java panel that fixes it. Is it possible to block such data of the browser header with CPF or with the router?

Hi guys,

Those sites harvest data from browser headers. There are many headers that a browser can send while you browse the internet. HOST, REFERER, etc. Those header can be used to learn about your browsing habits like "How you are referred to a site" etc. So it is about privacy. No direct security risk or breach.

[egemen]

Has anybody tested other firewalls?If so, from now on we can talk about it.

Thx,
Egemen

[panic]

Has anybody tested other firewalls?If so, from now on we can talk about it.

Thx,
Egemen

checkpoints firewall1 hardware firewall fails. ill have the firmware revision and update level on  monday for you

agnitum outlook fails
wyveryworks personal firewall 2004 fails

ewen -)


ewen

[pandlouk]

Egemen. I don't have the time. Today I'm returning home for vacations. I will check it there from my sisters pc. But I'll do it on monday. I'm going to check NIS 2006, outpost and zonealarm (after updating them) 

[pandlouk]

Hi Egemen. I tested the CPIL3, and here are the results:

1. Outpost does not recognise the dll but sees that explorer.exe is doing something suspicious; "the process is trying to transmit suspicious parameters through the command line" is the warning to the user. I considerate that succeded passing the test at 75% because it did not identified the dll.

2. Zonealarm pro -> FAILS

3. NIS 2006 -> FAILS

All 3 of them were updated to the latest versions before performing the tests

Release it the leaktest. 

[AJohn]

Melih please check this link

http://www.auditmypc.com/free-spyware-removal.asp

It reveals my internal IP. How come this happens?
---------

http://serversniff.net/browser_header.php
It has to do with java but how can I fix it?

Egemen do you know if it can be fixed. I have not found any tweaks at the java panel that fixes it. Is it possible to block such data of the browser header with CPF or with the router?

Sorry this is off-topic, but you can download free utilities that will take care of this issue.  I made a thread in the appropriate place: http://forums.comodo.com/index.php/topic,1419.0.html

[jessica]

I just loaded a copy of XP Pro with SP2.  Never had it connected to the internet, mind you...ran a scan on it and all kinds of goodies came up. 
Name:Shell
Actual File:C:\WINDOWS\Explorer.exe  <telnet connection

Working Folder:C:\WINDOWS\ 
Name:MSConfig
Actual File:C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe
Working Folder:C:\WINDOWS\PCHealth\HelpCtr\Binaries\<any msconfig entry goes to user temp file, the same with regedit, mspaint notepad and wordpad...


[Network Settings]
  [Hosts File Path] :HKLM DataBasePath=%SystemRoot%\System32\drivers\etc
  [Hosts File Contents] :HKLM 127.0.0.1       localhost
  [Domain Name] :HKLM Domain=""
  [Name Server] {E05EF56E-33C7-4071-AC34-9C00878B770D}=192.168.10.1 <not my user accounts connection<

 ### ScCertProp Common DLL to receive Winlogon notifications Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
  [Winlogon Notification] :HKLM Schedule=wlnotify.dll
  ### Schedule Common DLL to receive Winlogon notifications Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180 <PHONE HOME<

GOTTA LOVE MICROSOFT
  [Winlogon Notification] :HKLM sclgntfy=sclgntfy.dll

[pandlouk]

Sorry this is off-topic, but you can download free utilities that will take care of this issue.  I made a thread in the appropriate place: http://forums.comodo.com/index.php/topic,1419.0.html

Thanks AJohn

[bfjonas]

Zone Alarm Pro passed the first test, failed the second and third.

I posted these results to another thread -- sorry about the double-posting.

My subscription to ZA Pro expires in a couple days -- looks like it's time to switch to Comodo!

[Tags:]