[14680] in bugtraq
Re: ZoneAlarm
daemon@ATHENA.MIT.EDU (Alfred Huger)
Wed Apr 26 03:43:21 2000
Mime-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Message-Id: <Pine.GSO.4.21.0004241321400.844-100000@mail>
Date: Mon, 24 Apr 2000 13:23:15 -0700
Reply-To: Alfred Huger <ah@SECURITYFOCUS.COM>
From: Alfred Huger <ah@SECURITYFOCUS.COM>
X-To: Gary Buckmaster <gary@bwapr.com>
To: BUGTRAQ@SECURITYFOCUS.COM
>Additionally, using nmap's -f flag allows you to send traffic past
>ZoneAlarm without any alerts.
I set up a copy on a local machine here and while I found that source port
scans from 67 slipped past the firewall -f seemed to be alerted on just
fine. Can anyone else comment to this?
Alfred Huger
VP of Engineering
SecurityFocus.com
