Re: 2 questions to Sygate firewall users

In article <43a1c084@news.uni-ulm.de>, bumens@dingens.org says...
> Casey Klc <casey@notspecified.net> wrote:
> > > SPG <zamowienia3@o2.pl> wrote:
> > > > Sygate offers strong security as a firewall for most users.
> > > No.
> > > Sygate does install system services which open Windows.
> > Hi again Volker,
> > Can you give some details on this? What does it mean?
>
> Please read http://support.microsoft.com/default.aspx?scid=kb;en-us;327618
>
> Microsoft writes here:
>
> ------------------------------------- snip ---------------------------------
> "Important: We strongly recommend that services do not run as interactive
> services if the services run in an elevated security context such as SYSTEM.
>
> For the Windows user interface, the desktop is the security boundary. Any
> application that is running on the interactive desktop can interact with any
> window that is on the interactive desktop, even if that window is not
> displayed on the desktop. This behavior is true for every application,
> regardless of the security context of the application that creates the
> window and regardless of the security context of the application that is
> running on the desktop. The Windows message system does not allow an
> application to determine the source of a window message.
> ------------------------------------- snap ---------------------------------
>
> Exactly this misbihaviour you can see with Sygate and with Outpost,
> for example.
>
> > What OS?
>
> Windows OSes, the NT based ones (Windows NT, Windows 2000, Windows XP,
> Windows 2003).
>
> > What services?
>
> The SYSTEM services, the "Personal Firewalls" are installing themselves.
>
> > Are there any workarounds?
>
> Yes. You don't need a "Personal Firewall". Just use the Windows-Firewall.
>
> Yours,
> VB.
>
Thank you both.
Casey
Received on Fri Dec 23 20:07:58 2005