Re: Release of Kerio Personal Firewall 4.0.6

Author	All Replies
BlitzenZeus Burnt Out Cynic Premium,MVM join:2000-01-13 Beaverton, OR ·Verizon FIOS ·Verizon Online DSL	reply to Kerio Re: Release of Kerio Personal Firewall 4.0.6 Less secure than before! Serious Security problem! When you give a program permission to launch other programs, those programs are now launched, and automatically allowed to start without user input. So if a trusted program launches a malicious program it will be started by default!!! Now any script ran from a trusted application will be able to run loose on a system! Thanks for making the system security module useless Kerio! Password protection, and Remote admin apparently are part of the paid version, which is not even mentioned in the help file correctly with association with the free version. I've done minor testing so far, but the fact that they crippled the system security module makes this a horrible release. I didn't think it could get any worse... I was wrong... -- My hourly rates: $25 per hour. $35 per hour if you want to watch. $45 per hour if you want to help. $75 per hour if you tried to fix it, and failed. [text was edited by author 2003-10-27 12:56:23]
	to forum · permalink · 2003-10-27 12:06:01 · (locked)
matunga join:2003-07-26	said by BlitzenZeus : Less secure than before! When you give a program permission to launch other programs, those programs are now launched, and automatically allowed to start without user input. it's not right?
matunga join:2003-07-26	to forum · permalink · 2003-10-27 12:30:16 · (locked)
BlitzenZeus Burnt Out Cynic Premium,MVM join:2000-01-13 Beaverton, OR ·Verizon FIOS ·Verizon Online DSL	"Serious Security problem! When you give a program permission to launch other programs, those programs are now launched, and automatically allowed to start without user input. So if a trusted program launches a malicious program it will be started by default!!! Now any script ran from a trusted application will be able to run loose on a system!" 1: You allow explorer.exe to launch other programs. 2: A script tell it to launch malicious.exe, and malicious.exe is set to be allowed to start by default. 3: Malicious.exe is launched without user input. That is what I'm talking about, please read the rest of the paragraph. -- My hourly rates: $25 per hour. $35 per hour if you want to watch. $45 per hour if you want to help. $75 per hour if you tried to fix it, and failed. [text was edited by author 2003-10-27 12:52:35]
	to forum · permalink · 2003-10-27 12:36:42 · (locked)
madirish Premium join:2003-08-04 Cleveland, OH	reply to BlitzenZeus said by BlitzenZues " Password protection, and Remote admin apparently are part of the paid version, which is not even mentioned in the help file correctly with association with the free version." unfortunately I have a paid for version.:(
madirish Premium join:2003-08-04 Cleveland, OH	to forum · permalink · 2003-10-27 13:15:53 · (locked)
Cudni @217.158.x.x	reply to BlitzenZeus "..I've done minor testing so far, but the fact that they crippled the system security module makes this a horrible release. I didn't think it could get any worse... I was wrong..." Thanks for still keeping an eye on this project. I have given up on them as they have ruined a nice prog. Cudni
Cudni @217.158.x.x	to forum · permalink · 2003-10-27 13:16:35 · (locked)


Friday, 27-Nov 20:32:52	Terms of Use \| Privacy Policy \| Hosting by www.nac.net - DSL,Hosting & Co-lo \| feedback \| contact over 10 years online! © 1999-2009 dslreports.com.republican-creole page compression OFF