4. Check for leaks
Posted on 12 May 2008 at 15:03
One clever way in which a Trojan might hoodwink your firewall is by changing its name to that of one of your trusted applications, so as to gain outbound data communication privileges. A leaktest mimics this behaviour. A whole host of them, along with reams of documentation about the problem, can be found at the Firewall Leak Tester website (www.firewallleaktester.com), as recommended to us by Skyler King, group manager of research and development at ZoneAlarm developers Check Point.
Other recommended leaktesters include Steve Gibson's at GRC (www.grc.com/lt/leaktest.htm), which kickstarted the whole genre, or alternatively the PC Flank Leaktest (www.pcflank.com/pcflankleaktest.htm). Both make an outbound TCP connection from your PC to a remote port 80 web server. Your firewall should prevent this most trivial application-masquerading bypass, and you can test to see if your firewall allows any program with the same name as a trusted application to gain outbound access by simply changing the name from leaktest.exe (in the case of GRC Leaktest) to whatever the application is called. If it's allowed to access the remote server then a Trojan could easily do likewise.
5. Send in the processor probes
Author: Davey Winder
From around the web
For more details about purchasing this feature and/or images for editorial usage, please contact Jasmine Samra on pictures@dennis.co.uk
advertisement
- Mozilla: everyone should learn a little bit of code
- Google mines social network data for semantic search
- Microsoft tweaks multi-monitor support in Windows 8
- Phone sales shrink as consumers await fresh handsets
- Nvidia warns 28nm supply problems continue
- File-fixing tools to improve uptime in Windows 8
- Mozilla: Microsoft blocking rival browsers in Windows RT
- Microsoft developing sound-based gesture control
- Dell working on Ubuntu Ultrabook for developers
- Media Center to be paid-for add-on in Windows 8
- Sony VAIO T Series Ultrabook review: first look
- Revealed: the military standards and robots HP uses to test its laptops
- Windows 8: multi-monitors and double standards?
- Why is TalkTalk's year-old porn filter suddenly big news?
- Why are laptop screens so far behind mobiles?
- HP EliteBook Folio review: first look
- The shoebox-sized all-in-one printer
- Forget the Ultrabook: here comes the HP Sleekbook
- HP Spectre XT review: first look
- Samsung Galaxy S III review: first look
advertisement
