SecurityFocus

Apple releases Mac OS X v10.5.1 with Application Firewall security updates Nov 15 2007 07:11PM
Todd Woodward (todd_woodward symantec com) (1 replies)

Application Firewall security updates Nov 15 2007 08:08PM
Radoslav Dejanoviæ (radoslav dejanovic opsus hr) (4 replies)

Re: Application Firewall security updates Nov 21 2007 03:00PM
Dave Piscitello (dave corecom com) (2 replies)

Re: Application Firewall security updates Nov 21 2007 09:27PM
Ansgar -59cobalt- Wiechers (bugtraq planetcobalt net) (3 replies)

Re: Application Firewall security updates Nov 22 2007 06:35PM
Derek Chesterfield (dez mac com)

Re: Application Firewall security updates Nov 22 2007 04:28PM
Bruce Carter (bcarter nd edu)

RE: Application Firewall security updates Nov 21 2007 10:43PM
Todd Woodward (todd_woodward symantec com)

Re: Application Firewall security updates Nov 21 2007 09:02PM
Chris Adams (chris improbable org)

Re: Application Firewall security updates Nov 16 2007 03:58AM
Mike Savory (mike_lists nzbox com)

RE: Application Firewall security updates Nov 15 2007 09:55PM
Todd Woodward (todd_woodward symantec com)

Re: Application Firewall security updates Nov 15 2007 09:51PM
Dave Schroeder (das doit wisc edu) (3 replies)

Re: Application Firewall security updates Nov 15 2007 11:36PM
Mark Senior (senatorfrog gmail com) (3 replies)

Re: Application Firewall security updates Nov 17 2007 02:54PM
Chris Pepper (pepper reppep com) (1 replies)

Re: Application Firewall security updates Nov 19 2007 12:59PM
Sandor Szücs (sszuecs zedat fu-berlin de)

Re: Application Firewall security updates Nov 16 2007 11:03AM
Radoslav Dejanoviæ (radoslav dejanovic opsus hr) (2 replies)

Re: Application Firewall security updates Nov 16 2007 05:30PM
Mark Senior (senatorfrog gmail com)

Re: Application Firewall security updates Nov 16 2007 04:34PM
Derek Chesterfield (dez mac com) (1 replies)

On 16 Nov 2007, at 11:03, Radoslav DejanoviÄ? wrote:

> Mark Senior wrote:
>>
>> But, they've missed the big possibility for improvement here - they
>> have an application-aware firewall - why on earth would they not
>> apply it to outbound connections? No interesting malware requires
>> inbound connections anymore; it's already written to get past home
>> routers that allow all outbound and deny all inbound connections.
>> Ah well.
>>
>
> That's an interesting point, but it's got its own set of problems.
> How would you know what all the different applications need to
> communicate with? You should be aware that mail reader has to have
> access to POP (and|or) IMAP and SMTP, maybe even newsgroups, and
> you have to know that for every single application out there, if you
> do not want to bother user with questions.

I think Mark was thinking along the lines of just allowing an
application wholesale, rather than allowing specific ports. I.e. just
like the application firewall can allow inbound requests to an
application [irrespective of what ports it uses] we could allow or
deny the application to make [any] outbound connections.

[ reply ]

Re: Application Firewall security updates Nov 17 2007 12:30AM
Mark Senior (senatorfrog gmail com)

Re: Application Firewall security updates Nov 16 2007 04:47AM
Derek Chesterfield (dez mac com) (2 replies)

Re: Application Firewall security updates Nov 16 2007 04:08PM
Scott Russell (ScottRussell nd edu)

Fwd: Application Firewall security updates Nov 16 2007 04:55AM
Derek Chesterfield (dez mac com)

Re: Application Firewall security updates Nov 15 2007 10:08PM
Radoslav Dejanoviæ (radoslav dejanovic opsus hr)

Re: Application Firewall security updates Nov 15 2007 10:05PM
Dave Schroeder (das doit wisc edu)