On each level there are many tests. Some of Matousec’s tests show damage to the computer in these tests. I realize the tests must be extreme compared to real world safe surfing and not opening email attachments or following links that might lead to a site which would inject your computer with a lot of bad stuff.
Could you put the results in average user terms and how we should set up CIS for maximum protection.
Take into consideration that the failed tests refer to version 3.0.22.349… an old version (now we are at 3.5.54375.427)
Level 1
[b]PerfTCP[/b]
Test type: Performance test
Scoring: This test has been removed from the challenge. [s]The performance reduction is crucial for the score of this test. The product scores 100% if the network performance was not reduced below 90% of the original performance. This means that the test "tolerates" 10% performance consumption. If the performance is less than 90% of the original performance then the score is computed proportionally (e.g. 50% test score means that the performance was reduced to 45%). [/s]
Description: This test has been removed from the challenge. [s]This test measures the network throughput. The TCP protocol is used. The products are tested on a 100 Mbit/s network. The test is launched three times on the testing machine before the installation of the tested product and three times after its installation and configuration. The final result times are averages of all three measurements. The final result time measured after the installation of the tested product is then compared with the final result time measured on the clean machine. [/s]
PerfUDP
Test type: Performance test
Scoring: This test has been removed from the challenge. The performance reduction is crucial for the score of this test. The product scores 100% if the network performance was not reduced below 90% of the original performance. This means that the test “tolerates” 10% performance consumption. If the performance is less than 90% of the original performance then the score is computed proportionally (e.g. 50% test score means that the performance was reduced to 45%).
Description: This test has been removed from the challenge. This test measures the network throughput. The UDP protocol is used. The products are tested on a 100 Mbit/s network. The test is launched three times on the testing machine before the installation of the tested product and three times after its installation and configuration. The final result times are averages of all three measurements. The final result time measured after the installation of the tested product is then compared with the final result time measured on the clean machine.
Level 4
[b]SSS[/b]
Test type: General bypassing test
Scoring: Failure – 0%; An unwanted user logoff or a system shutdown were not prevented – 50%; Success – 100%.
Description: SSS finds out whether your firewall can be terminated by initiating a user logout.
Level 8
[b]SockSnif[/b]
Test type: Spying test
Scoring: Failure – 0%; Success – 100%.
Description: SockSnif binds to a local network interface and enables promiscuous mode on it. This allows SockSnif to spy on all the network traffic that goes through the given interface.
SSS4
Test type: General bypassing test
Scoring: Failure – 0%; Success – 100%.
Description: SSS4 waits for a system shutdown and then it checks whether your firewall protects your system until all untrusted applications are terminated.
I’m asking too… have the three (at that time) failed tests been fixed?
CIS 3.5 is safe against them?