Strange TCP Rule

Printable View

Show 40 post(s) from this thread on one page

August 12th, 2004, 04:06 PM
Tiger Shark

DjM:

Ok.... Let me see if I get the reasoning of the rocket scientists at Symantec.

Quote:

Symantec would never open a hole like that (they would be out of business pretty quick).

BUT......

Quote:

your firewall would have prompted you to create a rule to let the check run.

coupled with.....

Quote:

It is safe for you to delete the rule, but if your run another online security check, it will be recreated.

But not deleted at the end of the scan.......

Ergo.... Symantec would never open a hole like this upon installation of their product because they would be put out of business. However, if you run another of their products they will open up the very same hole and forget to close it..... That, of course, will have no effect on their business.....

Or am I missing something in their logic?????
August 12th, 2004, 04:09 PM
ByTeWrangler

Well I do find your source's reply worth thinking into but then i am 100% sure that i didnt have that rule when i checked online on symantec for security exposeure. but anyway i am sure this rule was not there before and after the security check. this one appeared only after Liveupdate and one more thing i am not doing a security check every 2-3 minutes but then why is it trying to connect to my messanger and most of all my explorer. see if you can get that from your source. but anyway got to hand it to your source. like you say CHEERS. :D
August 12th, 2004, 04:17 PM
DjM

Agreed Tiger. deleting the rule (or advising the user to delete the rule) would be the smart thing to do, but Symantec can't be singled out here. Running anything from any Web site will prompt you create a rule which may not be required after (leaving a hole). The user is ultimately responsible for how their firewall is configured. I believe ByTeWrangle is a little smarter than most users, at least he reviews his rules and asks questions, most would just leave things alone and over a period of time, have a firewall which more closely resembled Swiss cheese. :D
August 12th, 2004, 04:27 PM
ByTeWrangler

hey guys but this just like windows update once i say I AGREE to microsoft's contents they have access to my computer. but i am seriously trying to ask why is it again and again trying to establish connection with messanger, i dont think symantec's policy says that. and moreover what happened to their "TAMPERPROOF" technology. i hope my question is not dumb.
August 12th, 2004, 04:31 PM
Tiger Shark

DjM:

So the upshot is, (bearing in mind that 99% of all the owners of Symantec's firewall were sold it out of FUD and have no idea what a firewall rule is), that almost every owner of this product that ever thought to test it through Symantec has a potential security hole left on their computer......

Personal Firewalls 0 Hardware Firewalls 1

/me hugging my Linksys with the default password and IP changed....... :D
August 12th, 2004, 04:52 PM
DjM

Quote:

Originally posted here by ByTeWrangler
hey guys but this just like windows update once i say I AGREE to microsoft's contents they have access to my computer. but i am seriously trying to ask why is it again and again trying to establish connection with messanger, i dont think symantec's policy says that. and moreover what happened to their "TAMPERPROOF" technology. i hope my question is not dumb.

Well that question is still a mystery. I suggest you give Symantec support a call and see if they can shed some light on it.

/edit

Tiger, lets bear in mind, most software firewalls function like this, not just Symantec. ZA, Outpost, Sysgate all pop up a message to the user asking if they want to allow/deny access from whatever system/service.

Personal Firewalls 0 Hardware Firewalls 10000000

Give your Linksys another hug. :D
August 13th, 2004, 05:32 PM
ByTeWrangler

hi guys i have some update but i dont think it matters now anymore there are 8 more new rules created all "STOPING" my "OWN" IP to connect to MY OWN IP again. i have not created them and have been created automatically again. they are to stop my own IP to stop connect to my own IP (is it something like LOOPBACK). they stop connection of only TCP protocol and only on certain ports like DAYTIME, HTTP, finger, 13119 (unassign.) now i dont want "negateive" points but please tell me if i change the rule so that no computer connects to such ports... will that hamper my connection or something.
August 13th, 2004, 06:15 PM
Tiger Shark

Are you sure you aren't creating these rules by saying deny when you get a popup warning?
August 13th, 2004, 07:31 PM
ByTeWrangler

Yes tiger shark i have 100% not created them. I am not so dumb as to creat a rule denying connection to these specific ports after i have created the 1st rule when i installed norton security some 2 months back denying any computer direct connection to my computer. i mean no computer own its own try to send me a syn packet until i have sent a syn packet to him. i hope my technical words are correct. these rules just came up I DIDN'TCREAT THEM. AND NO I NEVER GOT A POP UP FOR THESE BECAUSE ITS NOT CONF. TO SHOW THEM.
August 13th, 2004, 07:39 PM
Tiger Shark

Byte: I don't know you from a hole in the ground. I don't know what you have done to your computer, how you have it configured nor how good you are at using it. Some people have no idea how certain things work on their computer but for me to be of assistance to you I have to ask questions..... Some of them may seem like dumb questions to you but I have tried before with others to ask more complex questions only to find out in the end that it was something very very simple. The whole process takes both your time and, more importantly, mine. If I can minimize the amount of time I have to spend helping you by asking what you think are dumb questions then I will. The least you can do is maintain a civil attitude when you come asking for help from people.....

Quote:

now i dont want "negateive" points

The tone of your response was a really good way to invite a whole lot of them......

Please think before you snap at people you are asking a favor from!!!!!!!!
August 13th, 2004, 07:49 PM
ByTeWrangler

hey man where did i snap at anyone many. i swear shark i did not snap what made you think that. ??? why would anyone snap at some one when the other person is helping him, sorry if you felt that way.
August 13th, 2004, 07:56 PM
Tiger Shark

Quote:

I am not so dumb as to creat a rule denying connection to these specific ports

Quote:

these rules just came up I DIDN'TCREAT THEM. AND NO I NEVER GOT A POP UP FOR THESE BECAUSE ITS NOT CONF. TO SHOW THEM.

Thos two statements _appear_ that you are in a bad mood. The second one specifically because writing in all upper case implies that you are raising your voice. This is not an easy media to communicate in because you can't see the other person nor hear the inflections in their voice so you need to take care how you put things to avoid others seeing it the wrong way.

I apologise if I misinterpreted your intent.

Show 40 post(s) from this thread on one page