DNS Fix Knocks Zone Alarm Users Offline - New Zone Alarm patch should cure what ails you...
Links: home · search · speed test · login · more ·
DNS Fix Knocks Zone Alarm Users Offline
New Zone Alarm patch should cure what ails you...
(old news - 08:37AM Thursday Jul 10 2008)
tags: security · trouble · software
Tipped by winchester73
Users of the Zone Alarm firewall this week experienced an unexpected surprise when they installed the latest Microsoft OS patch and subsequently lost connectivity to the Internet. According to posts in our security forum, KB951748 (a DNS design flaw fix I referenced yesterday) randomizes the source port for udp queries, while the firewall continued to expect DNS queries only from one udp port. Zone Alarm has subsequently fixed the problem, with the latest updates for all versions available here.

Related:
  1. Zone Alarm Pro Free Just For Today
  2. Microsoft Discontinuing OneCare
  3. Using PS3's To Forge Site Certificates
  4. PA Man Charged With Selling Hacked Cable Modems
  5. Wednesday Evening Links
  6. FoxNews.com Serving Up Infected Ads?
  7. Uh, Mom? The Air Force Just Attacked Our PC
  8. T-Mobile Systems Hacked?
Links: New Topic
Forums »

Matt @ 10th Jul 08:41AM:
People still use this?

People still use ZA? Wow. The early versions were great, but it quickly became bloated, and like the Norton/Symantec products, caused more problems than it prevented.
reply
zenafu @ 10th Jul 09:05AM:
Re: People still use this?

I was surprised too, 'people still use this app?' I said outloud just now. But apparently, yep. I used to use it back when I was on Win '98 and it was light and very effective but from what I hear it's pretty bloated now.
reply
Madtown @ 10th Jul 09:16AM:
Re: People still use this?

I used ZA up until Tuesday afternoon, well last night I decided to switch over to Comodo and try that out for a while.
reply
spewak @ 10th Jul 09:35AM:
Re: People still use this?

Well, yes. I do anyhow. It did prevent me from getting online until I turned off the firewall and was able to go to the website and promptly download the updated version.
Familiarity breeds contempt I guess.
--
The weekend is here, grab a can of beer!
reply
Cudni @ 10th Jul 10:11AM:
Zone Alarm has subsequently fixed the problem

and yet looking at thread, the carnage continues with people removing the MS update, removing ZA, reducing security in ZA

Cudni
--
"Mercifully, he hit him with the soft end of the pistol."
Help yourself so God can help you.
Microsoft MVP, 2006 - 2008
reply
moopenguin32 @ 10th Jul 10:49AM:
No problems aside from this

I've been using it for about a month with no problems (aside from this which was quickly fixed). I tried Comodo, but it would prompt me for the silliest things, like saving a file from Firefox or IE.

Aside from this issue, I never experienced any problems nor has it slowed down my system.
reply
evilghost @ 10th Jul 11:14AM:
Update the rule?

If the issue is caused by DNS source-port randomization why not simply create a rule to allow egress UDP with SRC PORT 'any' to UDP dport 53, or is ZA so luser friendly that this cannot be done?
reply
DataDoc @ 10th Jul 11:29AM:
Re: Update the rule?

95% of users don't know what you just said.
reply
ebubman @ 10th Jul 12:29PM:
Re: Update the rule?

said by DataDoc :

95% of users don't know what you just said.
LOL. agree. have been a computer user since way back in the days of the prototypical ibm pc xt & at & i don't have a clue what he/she said.......bub
reply
XBL2009 @ 10th Jul 12:57PM:
Re: Update the rule?

said by evilghost :

If the issue is caused by DNS source-port randomization why not simply create a rule to allow egress UDP with SRC PORT 'any' to UDP dport 53, or is ZA so luser friendly that this cannot be done?
That can be done quite easily.
reply
voipdabbler @ 10th Jul 01:02PM:
Re: People still use this?

LOL, yes. I run 2 software-based firewalls (one is ZA), plus the router and a good anti-virus program that is set to scan my full system daily. You can never be too careful using the Internet. View it as a big door to a room containing your most valuable possessions. Put good locks + multiple deadbolts on it. Then keep in mind that you're still not safe. :-)
reply
beatsnpieces @ 10th Jul 01:22PM:
A pain in the arse!

We got flooded with calls here at the Cogeco Cable call centre yesterday due to this. Seems everyone with ZoneAlarm was affected but changing the security level slider to medium fixed it for everyone I spoke to. I'm glad to hear they got a patch out already.
--
2.66 Core2 Quad | Asus P5W-DH Deluxe | Creative X-Fi Xtreme Gamer | BFGTech GeForce 8800Ultra 768 | 2GB Corsair 800Mhz DDR2 | ThermalTake Tough Power 850W | ThermalTake V1 'Butterfly' Heatpipe | ThermalTake Tsunami chassis | 150GB WD Raptor X |
reply
gower2352 @ 10th Jul 04:30PM:
zone alarm free rocks

Every computer that I have put Zone Alarm on has ran great with no problems. I do wish the updates weren't so big as they were never as big as they are now. They used to be like 10-15 MB and now they are like 45 mb.
reply
VerizonCynic @ 10th Jul 04:31PM:
Re: People still use this?

works fine for me. free version only. the patch worked fine
reply
B @ 10th Jul 06:10PM:
Re: People still use this?

The early versions are STILL great. I continue to use ZoneAlarm Free 2.6.362 all day, every day, on multiple XP computers. Never a problem. Different software, service packs, different VPNs, sleeping laptops, roaming networks; it just works.

-- B
--
In a realm outside causality and function
reply
anon @ 10th Jul 06:52PM:
Zonealarm works fine.

It bugged up because it noticed some windows files didn't pass crc check anymore (which is probably good, because if it wasn't MS that did it, it would of meant they were compromised).

They released a fix withing 36 hours, thats not too shabby.

I'll keep using Zonealarm.
reply
demoniacs @ 10th Jul 07:01PM:
OMG

i put the blame on those jokers who wants to destroy the world by their programs/softwares or whatever the hell they use that we still need to buy AV and FW (or atleast download those to be safe).

great work jokers.
--
Study hard. Play harder. Girls hardest!
reply
caffeinator @ 11th Jul 06:33AM:
Re: Update the rule?

Yup, I've had that nearly that same rule for my 8signs for a long time now. Both Windows (XPpro, win2k) boxes use it, and the rest are Linux and don't need it. :)

I updated using the MS patch, and thanks to 8signs and some common sense..everything is just peachy.

I liked ZA back in v. 2.6 I think it was..then I learned how to use rules-based FW's and never looked back.

Simple is good.
reply
rhexis @ 11th Jul 06:53AM:
za

zone alarm is worthless and all it does is slow down your box.
reply
anon @ 11th Jul 07:27PM:
Re: People still use this?

Free version is not bloated. Works fine. Microsoft is the problem. Get linux. Industrial strength firewall, easy easy to configure - most DSL transceivers (modems) have this firewall installed (IP Tables). Tivo works real good too, right? Linux inside!!
reply
KaziSmith @ 12th Jul 04:41AM:
Re: People still use this?

Well, using your analogy, you can put as many deadbolts as you like on a "door" but the lock is only as good as the frame and door holding the two in place. The door/frame can fail with the lock being in perfect condition.

But as you stated,

said by voipdabbler :

Then keep in mind that you're still not safe. :-)

reply

Thank you for using lo-fi dslreports.com - report bugs
© 99-2009 silver matrix LLC