On 5 Mar 2006 13:47:54 -0800, Joshua Reed wrote:
> The average user with insecure
> browser settings in IE, who visits certain sites, is actually using the
> number one vector for remote exploit, the IE browser. So, once the
> browser allows something to be installed on the system or remotely
> exploits something in the browser that allows the system to be
> controlled, a bidirectional firewall would actually alert such a user
> that outbound connections are being made, connections that they
> wouldn't otherwise be aware of with a inbound-only packet filter.
Isn't it more likely that IE itself would just be used as the conduit for
the exploit on port 80, in which case, the firewall would be useless?
--
Kerodo
