Here's a tidbit that you might find worthwhile . . .
BlackIce Defender and BlackIce Agent personal Internet firewall programs are vulnerable to a denial-of-service attack that could render many home users defenseless against further assaults, the product's manufacturer said today. Internet Security Systems, which acquired the Network ICE security suite last year, issued an alert on Tuesday stating that all current versions of BlackIce running on Windows XP and Windows 2000 can be crashed using a modified ping-flood attack. Ping-flood attacks can overwhelm a computer by causing it to respond to an inordinate number of "are you there?" requests from other machines. ISS said the risk of the vulnerability to corporate BlackIce users is minimal, as most corporate firewalls already block ping requests from external Internet addresses. ISS is currently developing and testing a fix for the security hole. Until it is released, users can implement the interim workaround as described at: http://www.iss.net/security_center/alerts/advise109.php |--------+------------------------> | | <iping00@bells| | | outh.net> | | | | | | 02/06/2002 | | | 09:52 AM | | | | |--------+------------------------> >-----------------------------------------------------------------------------------------------------------------------| | | | To: <[EMAIL PROTECTED]>, "garren" <[EMAIL PROTECTED]>, <[EMAIL PROTECTED]> | | cc: | | Subject: Re: Feedback on BlackICE... | >-----------------------------------------------------------------------------------------------------------------------| I sometimes feel the same way about blkICE. and it wont shut down my NetBIOS port when I set it to. ----- Original Message ----- From: "Shripal" <[EMAIL PROTECTED]> To: "garren" <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]> Sent: Tuesday, February 05, 2002 8:36 PM Subject: RE: Feedback on BlackICE... > [shrip] BlackICE has caused crashes on our WindowsNT Machines. > > |-----Original Message----- > |From: garren [mailto:[EMAIL PROTECTED]] > |Sent: Tuesday, January 29, 2002 12:11 PM > |To: [EMAIL PROTECTED] > |Subject: Feedback on BlackICE... > | > | > |Hi all, > | > | I am looking at BlackICE and wondering if anyone has > |good/bad feedback on > |the tool. Do you think it does a good job of the combined Firewall/IDS/etc > |security that it claims it does? I have it installed and running and it has > |caught a few port scans and a DoS on my system but that could be > |just window > |dressing. > | > | Feedback is a good think... looking forward to yours. > | > |Cheers... > | > | >
