At first i did not believe that there was a personal firewall with only 656 KB because all personal firewall i have tried before have at least of 10MB filesize, and that’s just the setup file before the original program uncompressed

And at last i decided to download and install this small firewall and tested it right away by using online port checking from Gibson Research Corporation website. And i get this result :

Your system has achieved a perfect “TruStealth” rating. Not a single packet — solicited or otherwise — was received from your system as a result of our security probing tests. Your system ignored and refused to reply to repeated Pings (ICMP Echo Requests). From the standpoint of the passing probes of any hacker, this machine does not exist on the Internet. Some questionable personal security systems expose their users by attempting to “counter-probe the prober”, thus revealing themselves. But your system wisely remained silent in every way. Very nice.

But i also get the same result even if i disable Windows Firewall, Ghostwall, or other firewall software. And that’s because my router does the job very fine :D

But since i really interested on testing this program … i tested it by opening a port on my computer that was used by Torrent to accept incoming connection and the results are (windows firewall disabled, beside i don’t use windows firewall) …

1. With Ghostwall Enabled (Torrent Incoming Port Allowed) : There’s no problem at all from other to connect to my computer, and the GRC website also says that the port used by Torrent on my computer is open
2. With Ghostwall Enabled (Torrent Incoming Port Blocked but the port is open) : Ghostwall successfully blocked everything that tries to connect through the open port used by Torrent (including the online port test)

And from the result i can see that this firewall worked as it should … and i tried another test by sending ICMP Echo Request known as Ping with the same condition like above … and yet another success

And the last thing i do is check, how much memory Ghostwall use. And suprisingly this program only use 1 MB of memory (checked via task manager and other similar program like task manager). Beside the highest amount of memory used by this program when i do the above test is only as small as 2.6 MB

So what is the final result ? … well … this personal firewall worked as it should, and it’s not a resource hog … and best of all it is free ! so i’d recommend this program to anyone who’s searching for small personal firewall without any other bloated stuff included

Copyright © Reaper-X Technology – www.reaper-x.com | Permalink | Add a comment

0x87485B96 | Tags : Freeware, Network and Security, Software, Windows

Related posts:

• Firewall Software for SOHO (Small Office or Home Office)
• Recommended Audio Software for your Computer
• How to set up public WoW Server
• Recommended PS2 Tools
• Hostgator Review, a Personal Experience

These releases include fixes for several publicly known minor XSS issues, one major XML-RPC issue, and a proactive full sweep of the WordPress codebase to protect against future problems

And the conclusion is you’d better upgrade your wordpress installation as soon as possible to prevent issue on your wordpress installation

As an addition i’ve upgraded several blogs managed by myself to the latest wordpress version available for download without problem at all :)

Copyright © Reaper-X Technology – www.reaper-x.com | Permalink | 3 comments

0x87485B96 | Tags : Internet, Network and Security, PHP, Software, Wordpress

Related posts:

• Wordpress 2.1.1 and 2.0.9 Released while bbPress going into 0.8.1
• Wordpress 2.2.2 and 2.0.11 Released
• Wordpress 2.2.1 Available for Download
• WordPress 2.0.5 Ronan Released
• WordPress 2.0.6 RC1 Released

And thanks to that annoying popup message, i decided to try another firewall software for my windows xp box from Kerio called Kerio Winroute Firewall / KWF. Suprisingly this firewall get the job very well unlike many other firewall, and it does not disturb me with annoying popup message. And if you ask me what is the main features of KWF that other firewall does not have ?

Well here’s the main features of KWF with my own explaination about it :

1. Built-in Content filtering : If you need to block specific site from displaying ads, or control which site can be accessed from your network this feature really useful for you. Other than that you can also deny web pages that contains forbidden words such as sex, porn from being loaded. Another good example is you can block Streaming files from being loaded automatically by defining it’s mime type (i’m using this to save my monthly internet usage)
2. Has Transparent or Non Transparent Proxy Server / Cache Proxy Server : This feature could be useful to you if you want to speed up your browsing experience, but if it’s for me, i use it in conjunction with Squid Proxy server installed on my machine to make it even more useful. But if you don’t run Squid cache proxy on your machine, you can also use the built in features of KWF to cache pages
3. Antivirus Scanning to scan HTTP Traffic : With the integrated McAfee Antivirus scanning engine built into KWF, it’ll scan everypage for harmful objects. But if you don’t feel like using the integrated McAfee scan engine you can also use other supported antivirus software
4. Built-in VPN : If you want to set up VPN access to your machine, you can do it easily using KWF
5. Blocking P2P Network : Let’s say, you run an internet cafe business and you don’t want your client / users to use P2P program. You can enable this feature to block all P2P network from being used
6. Sharing Internet Connection : You can share internet access within your network easily with KWF, even you can limit the bandwidth used for your client
7. DNS Forwarder, Configuring Users and more

What’s Kerio Interface Looks like ?

HTTP Policy

Traffic Policy

Filters Log

So what are the actual differences between KWF and other Firewall software ?

By default Kerio Winroute Firewall block all traffic unlike many other firewall, which means you can’t access the internet without configuring it first (of course this is the most safest way). And if there’s an application requesting access to the internet (in most case it’s going to be Online Games or MMORPG Games), you’ll need to know which port those games used to access the internet before it can access the net

And as i said before, that KWF is different from other firewal because it did not show you any popup message prompting you to insert new internet access rules

Wow .. it’s sound difficult for me to configure KWF ?

Actually it’s easy (depending on your computer technical experience), by looking at the Filters log, you can see which address and which port are used from your games easily :) But as you can see that this firewall is intended to those who run Small to Medium sized business

If it’s for business class that means KWF is a little bit expensive ?

That’s true. The KWF version with McAfee Scan Engine included cost for about $499 for 10 users and KWF without McAfee cost for about $399. But to those who are running small business, i’m pretty sure the KWF price is quite normal. For more detail you can read more from KWF Pricing page

And that’s all about it ;)

Copyright © Reaper-X Technology – www.reaper-x.com | Permalink | One comment

0x87485B96 | Tags : Network and Security, Security Tools, Shareware, Software, Windows

Related posts:

• Recommended Software – Ghostwall Personal Firewall
• Blocklist for your web content filtering software
• Agloco Release it’s Viewbar Software
• Error Code 0×80072EFF from Windows Live Messenger
• Google Earth locate my home

Firekeeper is an Intrusion Detection and Prevention System for Firefox. It is able to detect, block and warn the user about malicious sites. Firekeeper uses flexible rules similar to Snort ones to describe browser based attack attempts. Rules can also be used to effectively filter different kinds of unwanted content

Other features of Firekeeper :

• Ability to scan incoming Firefox traffic – HTTP(S) response headers, body and URL and to cancel processing of suspicious responses
• HTTPS and compressed responses are scanned after decryption/decompression
• Very fast pattern matching algorithm (taken directly from Snort)
• Interactive alerts that give an ability to choose a response to detected attack attempt
• Ability to use any number of files with rules and to automatically load files from remote locations

As a note, the currently available Firekeeper release is still in Alpha stage, which main purpose is to get feedback from users about Firekeeper’s functionality and to test if Firekeeper works well on various different systems. Currently Firekeeper support Linux based OS and Windows based OS

Related Link : Firekeeper Project Page – Firekeeper Weblog

Copyright © Reaper-X Technology – www.reaper-x.com | Permalink | Add a comment

0x87485B96 | Tags : Browsers, Freeware, Internet, Mozilla, Network and Security, Open Source, Software

Related posts:

• List of Useful Extension for Firefox 2.0
• Just installed Mozilla Firefox 2 .. and ..
• SEO (Search Engine Optimization) Extension for Firefox
• Firefox 2 Crash Script
• Firefox Shortcut Key for URL Completion

This morning we received a note to our security mailing address about unusual and highly exploitable code in WordPress. The issue was investigated, and it appeared that the 2.1.1 download had been modified from its original code. We took the website down immediately to investigate what happened.

It was determined that a cracker had gained user-level access to one of the servers that powers wordpress.org, and had used that access to modify the download file. We have locked down that server for further forensics, but at this time it appears that the 2.1.1 download was the only thing touched by the attack. They modified two files in WP to include code that would allow for remote PHP execution. – Full Story

As always .. if there’s a wordpress update. I always check the Mark Jaquith site first to see if he is already released the small upgrade pack files for wordpress or not (this is really handy to those who’s using slow connection like myself for an example) .. but this time .. he’s not releasing the small upgrade pack :P (by the look of this post) ..

Anyway if you’re using Wordpress 2.1.1 whether you get it from the first release of 2.1.1 or not .. you should upgrade your wordpress installation into 2.1.2 because it’s already contain another fix for the recent XSS vulnerabilities on WP 2.1.1 (Ticket #3789) and some other fix as well (Ticket #3759)

Copyright © Reaper-X Technology – www.reaper-x.com | Permalink | One comment

0x87485B96 | Tags : Internet, Network and Security, PHP, Website, Wordpress

Related posts:

• Another Wordpress Upgrade time
• 4 things you should know to simplify your Wordpress Upgrade process
• Wordpress 2.1.1 and 2.0.9 Released while bbPress going into 0.8.1
• Wordpress 2.2.1 Available for Download
• Wordpress 2.1.3 and 2.0.10 has been released

Samenspender has discovered a vulnerability in WordPress, which can be exploited by malicious people to conduct cross-site scripting attacks.

Input passed to the “post” parameter in wp-admin/post.php (when “action” is set to “delete”) is not properly sanitised before being returned to a user. This can be exploited to execute arbitrary HTML and script code in a user’s browser session in context of an affected site.

Successful exploitation requires that the target user is logged in as administrator.

The vulnerability is confirmed in version 2.1.1. Other versions may also be affected.

And today, i read another possible script injection attack on wordpress <= 2.1.1 based blogging platform discovered by Stefan Friedli – Link

The only solution i’ve found so far to prevent / reduce the damage of this attack is by protecting your wordpress admin directory using .htaccess or you can also use mod_security if it’s installed on your webserver

Copyright © Reaper-X Technology – www.reaper-x.com | Permalink | 3 comments

0x87485B96 | Tags : Network and Security, PHP, Website, Wordpress

Related posts:

• Wordpress HTML Injection Vulnerability
• So you just installed Wordpress .. what’s next ?
• Waiting for Wordpress 2.0.5 Release
• Wordpress Vulnerabilities
• Wordpress 2.1.1 and 2.0.9 Released while bbPress going into 0.8.1

Webmaster tools notifications

Now instead of simply informing webmasters that their sites have been flagged and suggesting next steps, we’re also showing example URLs that we’ve determined to be dangerous. This can be helpful when the malicious content is hard to find. For example, a common occurrence with compromised sites is the insertion of a 1-pixel iframe causing the automatic download of badware from another site. By providing example URLs, webmasters are one step closer to diagnosing the problem and ultimately re-securing their sites.

Email notifications

In addition to notifying webmaster tools users, we’ve also begun sending email notifications to some of the webmasters of sites that we flag for badware. We don’t have a perfect process for determining a webmaster’s email address, so for now we’re sending the notifications to likely webmaster aliases for the domain in question (e.g., webmaster@, admin@, etc). We considered using whois records, but these often contain contact information for the hosting provider or registrar, and you can guess what might happen if a web host learned that one of its client sites was distributing badware. We’re planning to allow webmasters to provide a preferred email address for notifications through webmaster tools, so look for this change in the future.

So far i haven’t received any of the notification about badware problems on my site (hopefully i wont receive an email message saying that mysite has been infected by badware problems or distributing badware), so i can not give you a more detailed explanation about this. Fortunately Matt Cutts already wrote about this badware problems before, so it’d be best for you to read it on his blog

Copyright © Reaper-X Technology – www.reaper-x.com | Permalink | Add a comment

0x87485B96 | Tags : Google, Network and Security, Webmaster Tools, Website, Website Monitoring

Related posts:

• Live Search Webmaster Portal from Microsoft
• Finding External Links using Google Webmaster Tools
• Google Webmaster Tools Now Reporting Anchor Text Phrases
• No More Supplemental Results Label from Google ?
• Message from Google Adsense Optimization Team

So if you get the same email message like below, just ignore it ;)

 ———- Forwarded message ———-
From: Website Welcome Inc.
Date: Feb 13, 2007 5:56 AM
Subject: Hosting Regular Security Maintenance
To:

Dear Website Welcome Inc. valued Members

Regarding our new security regulations, as a part of our yearly maintenance
we have provided a security guard script in the attachment.

So, to secure your websites, please use the attached file and (for
UNIX/Linux Based servers) upload the file “webguard.php” in: “./public_html”
or (for Windows Based servers) in: “./wwwroot” in your site.

If you do not know how to use it, you can use the following instruction:

For Unix/Linux or Windows based websites that use PHP/CGI/PERL/ASP:
1) Download the attachment named “webguard.php”
2) Login to your site Control panel.
3) Open “File Manager” window.
4) Go through “Public_html” or “htdocs” (for UNIX/Linux Based servers), but
for Windows Based server, please Go through “wwwroot” directory.
5) Choose “Upload Files”
6) Upload the file “webguard.php”
7) Check its URL too “yoursite.com/webguard.php”, if it is ok

Thank you for using our services and products. We look forward to providing
you with a unique and high quality service.

Best Regards

Website Welcome Inc.

websitewelcome.com

Copyright © Reaper-X Technology – www.reaper-x.com | Permalink | One comment

0x87485B96 | Tags : Hacking, Network and Security, Personal, Web Servers, Website

Related posts:

• 4 Things you should know, before moving into VPS
• Mon.itor.us another free website monitoring
• 4 Things to do after creating your first Website / Blog ever
• SSH Access and WGET on Hostgator
• Arachnid Website Extraction Program

And what makes this interesting, because this problem only occur at Mozilla Firefox browser (with Adobe Reader 7 and below), and Internet Explorer 6 and 7 isn’t affected by this vulnerability issue as noted by Symantec :

This problem appears to be limited to the Firefox browser, which has a relatively large user base.

Although some other people are getting different results (look at the comments), and if it’s for me .. i already tried this with Firefox 2.0.0.1 installed on Windows XP SP1 .. and i don’t find any problem with it .. and that’s because i already disabled the PDF / Adobe Reader Plugin for Firefox browser since a long time ago because of another reason (actually i don’t really like opening files directly from the web especially PDF because it can cause a big slowdown to my system)

As a note, if you’re using Firefox you might try reading the Symantec weblog about this issue to find the quick fix for this problem

Copyright © Reaper-X Technology – www.reaper-x.com | Permalink | 3 comments

0x87485B96 | Tags : Browsers, Computer Security, Hacking, Internet, Mozilla, Network and Security

Related posts:

• Mozilla Firefox 1.5.0.7 Released
• Mozilla Firefox Bon Echo
• Just installed Mozilla Firefox 2 .. and ..
• Opera and Firefox Logo added
• Truth about Firefox Browser

Fortunately there is already a fix for this problem and you can do it by applying the latest patch from Wordpress Trac into the templates.php file in your wp-admin directory

As as a note, if you want to see a proof of concept regarding this wordpress issue, you can go to David Kierznowski homepage and see it by yourself

And yet another note, Wordpress 2.0.6 RC2 has been released (from the WP-Testers Mailing Lists) and this new release candidate already include a fix for this problem

Copyright © Reaper-X Technology – www.reaper-x.com | Permalink | 9 comments

0x87485B96 | Tags : Computer Security, Freeware, Network and Security, Open Source, PHP, Software, Wordpress

Related posts:

• Wordpress 2.0.5 Site got hacked using c99shell ?
• Waiting for Wordpress 2.0.5 Release
• WordPress 2.0.6 RC1 Released
• Wordpress 2.1.3 and 2.0.10 has been released
• Upgrade your Wordpress 2.1.1 into 2.1.2 ASAP