<< 12th April: the XP SP2 Forcing! | Home | Update for Background Intelligent Transfer Service (BITS) 2.0 >>

Windows Firewall Has A Backdoor

I've always said that the built-in Windows Firewall is not a good firewall, expecially if you have a computer that could be often exposed under attacks, and today I had another confirmation.

According to this report, seems that by adding a new key to the Windows Registry in  HKEY_LOCAL_MACHINE/SYSTEM/Services/SharedAccess/Parameters/FirewallPolicy
/StandardProfile/AuthorizedApplications/List
you can circumvent the whole purpose of the firewall with out the users interaction or knowledge.

So, stay tuned with you're using Wndows Firewall and remember always that these backdoors could only be opened if you're running as Administrator.

Print | posted on Tuesday, February 22, 2005 9:10 PM

Comments on this post

# re: Windows Firewall Has A Backdoor

Requesting Gravatar...
Considerring that this is HKLM (administrators writable only) I don't see it as a loophole.
If you run code as administrator, then you're doomed anyway.

Beside, here is a better way to do it if you're administrator:
netsh firewall add allowedprogram program=%windir%\system32\wbem\unsecapp.exe name=UNSECAPP
Left by Ayende Rahien on Feb 22, 2005 8:13 PM

Your comment:

 (will show your gravatar)
 
Please add 8 and 5 and type the answer here: