This proves an essential point, often overlooked:: in order to attack, your
box will be more vulnerable. Of course, the relationship with norton and
being more or less vulnerable will elude many people as it does me ;-).
----- Original Message -----
From: "Alexander Hristov" <joffer@gmail.com>
To: <full-disclosure@lists.grok.org.uk>; <full-disclosure@netsys.com>
Sent: Sunday, February 26, 2006 4:13 AM
Subject: [Full-disclosure] Norton Monitoring system funny problems
Norton Internet monitoring tools issues
Versions Affected : *
Fix : No
What im writing about is how to stop the internet of some user that is
using the norton tools and IRC / any other chat at the same time.
By default norton monitor checks for words like "keylogger" , "start
keylogger" , "key logger" and etc.etc.
Example for irc :
Start a mIRC or any other IRC client that u like and connect to some
server.
Type down /ctcp yournick start keylogger . By default norton monitors
your mIRC Process and your logs of it so it sees "star keylogger" and
automaticly blocks mIRC.exe from starting and automaticly blocks port
6667 or whatever port ure using to connect to IRC. Nice eh ?
Best Regards,
Aleksander Hristov < root at securitydot.net > < http://securitydot.net >
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
