Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Focus-Microsoft
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: How can this happen with Windows Vista?

from [Thomas D.] Network Security [Permanent Link]
Subject: RE: How can this happen with Windows Vista?
Date: Fri, 29 Sep 2006 01:48:27 +0200 
Hello Gerrit,

why do you think, Vista should react on a different way?
You describe how to write an application.

In your case, an application with features like
* IRC Connect
* IRC Command
* HTTP Load...
* ...

Features other application may use in "legal" (normal) terms.


I understand that you might get a little bit afraid. But you cannot check
"Oh, this program use this function on a legal way... this program use this
function to do bad things.

Only, after you detect such a program, you can say "Program with
signature... -> bad!"


Note: If you will use the "clients" for sending spam mails, you will run
into connection problems (only 10 connections are allowed...). Well, you can
manage this problem, send only 8 and wait - right.
=> This is the problem, you cannot prevent.

But this is a "security" feature... (like in XP SP2)


You said that the firewall won't block the program. Vista didn't even
prompt. I don't know, but I mention that vista should check incoming and
outgoing traffic. So the question should be: Why did the program pass the
firewall.

Have you tested the same application using RC1?


-- 
Whistl0r




---------------------------------------------------------------------------
---------------------------------------------------------------------------
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  How can this happen with Windows Vista?, gerrit . lehr
Next by Date:  RE: How can this happen with Windows Vista?, Laura A. Robinson
Previous by Thread:  How can this happen with Windows Vista?, gerrit . lehr
Next by Thread:  RE: How can this happen with Windows Vista?, Laura A. Robinson
Indexes:  [Date] [Thread] [Top] [All Lists]