I’m in the process of trying them all with CPF 2.3 and I will post my results later when I’m done.
Before I get to far, I’d like to mention that CPF did not pass the test from tooleaky. This either
means I have CPF configured wrong or CPF’s outbound filtering is not that great. Setting the
CPF level to block all is reflected by tooleaky1.jpg and tooleaky2.jpg if the level is set to custom.
The second snapshot says my firewall is a cruel joke and useless
My understanding is that having your firewall “trust” internet explorer is not always a good idea. but
sometimes I need IE to browse websites when Mozilla doesn’t render them correctly. So how does
one configure IE to be the least pain and still have CPF protect me against leaks?
In the application Control Rules. IE is set to (any any TCP/UDP in/out Allow)
Another app I’m not sure about how to configure is explorer. I would like to make sure
CPF is configured correctly before proceeding.
Tooleaky is one of the simplest tests that CPF is passing starting from its first version:)
I am sure you have something wrong It is also not related to Auto approve safe applications. Make sure in the applicaton monitor, you dont have iexplore.exe rule with “Skip Invisibility check” and “Skip parent check” options enabled.
Yes, that is why I was surprised that CPF failed. Anyway, here are some snapshots. Looks okay to me. FYI I’m talking about the beta … maybe a bug slipped in somewhere… I do not have auto approve
safe applications active.
Something is not working the way it should. After logging off/on again, I did get an explorer popup (not IE) running the leaktest. This is not consistent though. The last time I logged off/on, I did not get a pop-up. running leaktest. I also rebooted – similar results with OSMODE=3. Also, it seems that permit or deny is remembered for the entire FW session instead of a only a single time. Is this WAD?
“Remember my decision” should create a rule, which I understand. If I do not select this, I should get a pop-up each time I run the leaktest right?
Another thing that bothers me is that selecting allow/deny for a pop-up doesn’t show up in the log. I have no record of what I’ve done. There should definitely be an option to log all pop-up alerts and the answers. selected.
I have XP Pro with SP2 and most of the updates that have been offered by windows update service. Norton AV Enterprise 9.0, Spybot Search and Destroy, LAVASOFT Ad-Aware SE Plus. I have a feeling CPF can’t deal with IE