Search:  

 
theme to white backgroundlet page decide theme
HomeFind ServiceReviewsISP NewsFAQsForumsToolsDatabaseAbout 
 
   All ForumsHot TopicsGallery






how-to block ads


 
Forums » Up and Running » Security » Security » Kerio Personal Firewall v2.1.5 & KB951748? Kerio forum?
Share Topic:
RSS topic:
toggle:
flat / full
normal / watch
Posting:
Post a:
Post a:
Links: ·Hijack This logs? ·Panda Free Tools ·Vundo Removal
Security Software Updates - 17 July 2008 »
« IP Anonymizer For 3rd Party Apps.  
redrebel

join:2001-12-06
Oxnard, CA

1 edit

Re: Kerio Personall Firewall v2.1.5 & KB951748? Kerio forum?

I'm one of the minority that still uses KPF v2.1.5 (desktop and laptop) and yes when I installed the dreaded KB951748 it knocked out IE and Firefox for me. Looking at my logs it was using highports for DNS resolution. I had it specifically set to only use the range of 1024-5000. Made the change to allow highports (1024-65535) and it works fine (desktop only).
On the laptop I said forget it and uninstalled the patch and will wait to figure out what happens next.
permalink · 2008-07-11 14:13:25 · Reply to this

antdude
A Ninja Ant
Premium,VIP
join:2001-03-25

1 edit

Re: Kerio Personall Firewall v2.1.5 & KB951748? Kerio forum?

said by redrebel See Profile :

I'm one of the minority that still uses KPF v2.1.5 (desktop and laptop) and yes when I installed the dreaded KB951748 it knocked out IE and Firefox for me. Looking at my logs it was using highports for DNS resolution. I had it specifically set to only use the range of 1024-5000. Made the change to allow highports (1024-65535) and it works fine (desktop only).
On the laptop I said forget it and uninstalled the patch and will wait to figure out what happens next.
Hmm, DNS? I wonder if Explorer is calling out even though I use hosts and my old Netgear RT311 router (firmware from 2002 or so). I do use LAN file sharing with a Linux/Debian box (Samba). What's the rule called for this DNS resolution?
--
Ant @ »antfarm.ma.cx and »aqfl.net. Please do not IM/e-mail me for technical support. Use the forum! Disclaimer: The views expressed in this posting are mine, and do not necessarily reflect the views of my employer
permalink · 2008-07-11 16:08:51 · Print · Reply to this
Curiosity

join:2001-10-01
Dawson Creek, BC
said by redrebel See Profile :

I'm one of the minority that still uses KPF v2.1.5 (desktop and laptop) and yes when I installed the dreaded KB951748 it knocked out IE and Firefox for me. Looking at my logs it was using highports for DNS resolution. I had it specifically set to only use the range of 1024-5000. Made the change to allow highports (1024-65535) and it works fine (desktop only).
Why is changing the local port range going to make DNS more secure? What is the idea behind that?
permalink · 2008-07-13 17:16:28 · Print · Reply to this

NetFixer
Freedom is NOT Free
Premium
join:2004-06-24
Murfreesboro, TN
·Vonage
·AT&T Southeast
·Cingular Wireless
·AT&T CallVantage

Re: Kerio Personall Firewall v2.1.5 & KB951748? Kerio forum?

said by Curiosity See Profile :

Why is changing the local port range going to make DNS more secure? What is the idea behind that?
Try doing a Google or Yahoo! search for DNS spoofing and you will find a lot of answers to your question. Here is a sample link from such a search, I hope some of the results you get will match your technical knowledge level, since I don't know exactly how high or low to shoot.

From SANS Internet Storm Center: Multiple Vendors DNS Spoofing Vulnerability
--
We can never have enough of nature.
We need to witness our own limits transgressed, and some life pasturing freely where we never wander.
Test your firewall.
permalink · 2008-07-13 18:04:17 · Print · Reply to this

lilhurricane
Crunchin' For Cures
Premium,Mod
join:2003-01-11
Purple Zone
clubs:
·Comcast

Host:
TV over IP
Software
RCN
Inside Insight
Team Discovery
said by redrebel See Profile :

I'm one of the minority that still uses KPF v2.1.5 (desktop and laptop)
You aren't the "only" one

This plus BlitzenZeus See Profile's ruleset work well for me..multiple browsers..

No issues as yet
--
~Safe Hex~ Team Discovery ~ Project Hope ~ Like A Hurricane~
permalink · 2008-07-13 20:37:33 · Print · Reply to this
Forums » Up and Running » Security » SecuritySecurity Software Updates - 17 July 2008 »
« IP Anonymizer For 3rd Party Apps.  

Wednesday, 02-Dec 08:41:11 Terms of Use | Privacy Policy | Hosting by www.nac.net - DSL,Hosting & Co-lo | feedback | contact
over 10 years online! © 1999-2009 dslreports.com.
page compression OFF
Most commented news this week
· [153] Comcast Releasing Promised Usage Meter
· [69] Baltimore To Ban Lazy Cable Installs
· [60] Latest Consumer Reports Survey Not Kind To AT&T
· [56] Broadband Killed The Game Console
· [52] Rogers Unveils The ISP Dream Model
· [45] ACTA: Global Three Strikes
· [41] Rural Carriers Quickly Embracing Fiber
· [35] Charter Exits Chapter 11
· [33] AT&T Top Lobbyist Cicconi Has His Feelings Hurt
· [26] Vivendi Agrees, Comcast/NBC Deal Soon
Most people now reading
· [Phish] email from CDC "personal vaccination profile" [Spam, Scam and Phishbusters]
· Windows 7 boot manager editing questions [Microsoft Help]
· Furnace starts, then shuts off. [Home Repair & Improvement]
· IMG 1.7 (IMG Updates and Discussion) [Verizon FIOS TV]
· [Newsgroups] Newzleech down? [Filesharing Software]
· UBB round 2 at the CRTC [Canadian Broadband]
· Am I the only one that loves to work in IT? [No, I Will Not Fix Your #@$!! Computer]
· Data Usage Meter Launched [Comcast HSI]
· [WIN7] Outlook express under Windows 7? [Microsoft Help]
· Prevx says MS Nov 10 patches causing BSOD problems [Security]