Comodo and PC Flank

William1955 · March 4, 2010, 4:51pm

I made a two tests.
Both are made on test computer with fresh Windows XP fully updated.
(I made a system partition copy using Acronis software and before each test, system partition is restored)

First test - I installed CIS 3.14.130099.587
After dtarting Firefox 3.6, I go to PC Flank page and made stealth test
results are below"
TCP “ping” stealthed
TCP NULL stealthed
TCP FIN stealthed
TCP XMAS stealthed
UDP stealthed
other tests on PC Flank page are also succesfull

Second test - I installed CIS 4.0.135239.742
After dtarting Firefox 3.6, I go to PC Flank page and made stealth test
results are below"
TCP “ping” stealthed
TCP NULL non-stealthed
TCP FIN non-stealthed
TCP XMAS non-stealthed
UDP stealthed
other tests on PC Flank page are also succesfull

So, it seems CIS 4 has some vulnerability problems.
Any comments ?

Best regards
William

APACHE · March 4, 2010, 7:33pm

PC FLANKS IS NOT A GOOD WEBSITE TO BE TESTING A FIREWALL ON.
I have seen the same firewall test on that website give positive results one day and negative results the next day on the same PC and firewall.
I think the PC Flanks website’s sole purpose is to help push Agnitum Outpost Firewall.
It is recommended after every test.

panic · March 4, 2010, 8:09pm

Download the test but disconnect your LAN connection before running it. It will still report that it was able to leak.

Ewen

William1955 · March 4, 2010, 11:42pm

I agree, that PC Flank offer Outpost Firewall, but please consider one important problem:
- Outpost Firewall Free pass PC Flank perfectly (you can tell, because of “special” relationship
  with PC Flank)
  but also
- PrivateFirewall pass PC Flank perfectly
- Online Armor ++ pass PC Flank perfectly
- Online Armor Premium pass PC Flank perfectly
- Online Armor Free pass PC Flank perfectly
- PC Tools Firewall pass PC Flank perfectly
  and last, but not least Comodo 3.14 pass PC Flank perfectly.
  Only CIS 4.0 has problem.
I made experiment as adviced.
When testing in progress, i remove my ADSL RJ connector from wall socket.
Test report error and can’t be continued.
Sorry, “slightly” different behaviour, than in previous post.

Best regards
William

panic · March 5, 2010, 1:10am

Can you try changing CIS4’s configuration to Proactive and retesting with the PCFlank test?

William1955 · March 5, 2010, 1:14am

I will check “Proactive” tomorrow or latest at weekend
Result, I report, of course.

Best regards
William

wolfmei · March 5, 2010, 2:18am

i tested the pc flank with sandbox disable and preference is to use Proactive，and i passed the test.

[attachment deleted by admin]

William1955 · March 5, 2010, 12:44pm

After activating Proactive Security via Configuration —> Manage my Configuration,
CIS 4 passed all PC Flank tests flawlessy.
So, everything working OK now ( at least as good as in 3.14 )

I thinkm thread can be closed.

Best regards
William

Shaoran · March 5, 2010, 1:41pm

Hi,

Do just a test, try this soft with wireshark running.
To prevent detection of cheated result, it delete itself and you can’t download the soft again without use a proxy (i tried it twice)