Manual Outpost Firewall Versie 4.0 (page 98 of 100) (English)

46516

Zoom out

Zoom in

1/100

Appendix C: Penetration Techniques

the legitimate actions. However, in those command-line parameters some piece of private

or critical data may be contained, along with the host name as a target recipient of

thereof. The example of using such technique is Wallbreaker leaktest

(

http://www.firewallleaktester.com/leaktest11.htm).

Outpost Firewall Pro provides the restricted list of processes that are allowed to start

default browser with command line parameters protecting your browser against tampering.

Beyond traditional browsers, command-line launch control applies to all network-enabled

applications which are present in the configuration.

Critical registry entry modification

Malicious processes can modify registry to get network access on behalf of other

application, for example, Windows Explorer. The example of using this technique is

Jumper leaktest (

http://www.firewallleaktester.com/leaktest17.htm).

These attempts are controlled by Outpost Firewall Pro . This proactive capability offers to

select whether you want to allow embedding an object into a certain area of the registry.

OLE application control

A relatively new technique to control applications' activity through the OLE mechanism (a

short form of Object Linking and Embedding command) - a Windows' mechanism which

allows one program to manage the behavior of another program on the computer. It uses

the technique of OLE intercommunication to exchange data and commands between

applications, for example, to manage activity of the Internet Explorer web browser so that

it can send user-specified data to the remote location. The example of using this technique

is PCFlank leaktest (

http://www.pcflank.com/PCFlankLeaktest.exe).

Outpost Firewall Pro detects an OLE communication and prompts a user whether it is

normal for the application to control other application's activity.

Process memory modification

Several Trojan horses and viruses use sophisticated techniques that let them alter the code

of trusted applications running in memory and thereby bypass the system security

perimeter and perform their malicious activities. This is also known as code injection or

copycat vulnerability. The examples of using this technique are Thermite and Copycat

leaktests (

http://www.firewallleaktester.com/leaktest8.htm,

http://www.firewallleaktester.com/leaktest9.htm).

Outpost Firewall Pro enables you to control the functions that can be used to write

malicious code into trusted application address space and so prevent a rogue process from

injecting their code into trusted processes. The entire memory space used by any active

application on a computer is scrutinized by Outpost Firewall Pro (not just that of a

network-enabled application). In case of malware trying to modify any legitimate

Report abuse

Libble takes abuse of its services very seriously. We're committed to dealing with such abuse according to the laws in your country of residence. When you submit a report, we'll investigate it and take the appropriate action. We'll get back to you only if we require additional details or have more information to share.

Product:

Forumrules

To achieve meaningful questions, we apply the following rules:

First, read the manual;
Check if your question has been asked previously;
Try to ask your question as clearly as possible;
Did you already try to solve the problem? Please mention this;
Is your problem solved by a visitor then let him/her know in this forum;
To give a response to a question or answer, do not use this form but click on the button 'reply to this question';
Your question will be posted here and emailed to our subscribers. Therefore, avoid filling in personal details.

new questions and answers
new manuals

You will receive an email to register for one or both of the options.

Get your user manual by e-mail

Enter your email address to receive the manual of Outpost Firewall Versie 4.0 in the language / languages: English as an attachment in your email.

The manual is 2,59 mb in size.

You will receive the manual in your email within minutes. If you have not received an email, then probably have entered the wrong email address or your mailbox is too full. In addition, it may be that your ISP may have a maximum size for emails to receive.

The manual is sent by email. Check your email

If you have not received an email with the manual within fifteen minutes, it may be that you have a entered a wrong email address or that your ISP has set a maximum size to receive email that is smaller than the size of the manual.

The email address you have provided is not correct.

Please check the email address and correct it.

Your question is posted on this page

Would you like to receive an email when new answers and questions are posted? Please enter your email address.

Info

Outpost Firewall Versie 4.0 Manual

Product: