Cerca nel blog

2004/07/06

Slashdot: debolezza intrinseca dei firewall software

Un'interessante riflessione sui firewall software


"Out of curiousity, what stops the malware/spyware from clicking the "Yes, let this program access the Internet." button when it pops up?"

Nothing whatsoever. It's a security problem inherent to ANY software firewall.

I wrote a little trojan a while back, and I knew that the guy I wanted to send it to was using zonealarm. I just grabbed that version of ZA, used Spy++ to find the right hWnds for the "Accept" and "Always repeat this choice" buttons, sent it a WM_CLICK event, and ZA was worthless.

Hmmmm.....

Nessun commento: