Norton InternetSecutity 2012 Fail with Grc Firewall Leaktest

Eyal_Oren · ‎12-19-2011

Hello Guys,

I test norton with the Grc Firewall leaktest and it Fail - Firewall Penetrated !

Thisis a New Software that i run in the first time So:

1.why norton didn`t Ask me About it ,like the Avg is 2012 ?

2.why norton fail this test ?

Bombastus · ‎11-16-2009

Because it's a well-known safe file connecting to a well-known safe server, so there are no security reasons for blocking it. It's just leak-test games; it doesn't say anything about security or how well Norton protects against real malware. There simply is no reason for Smart Firewall not to let it connect. Norton blocks malware and recognized real network attacks, not safe test files just for the sake of doing so.

You need to disable Smart Firewall to get pop-ups asking what to do. Note that this will not increase security, and it is not recommended for the average user.

Eyal_Oren · ‎12-19-2011

Hi Bombastus,

Thank you very much for your Explanation & Have a Nice Day

bleeper24 · ‎04-13-2011

Hi Eyal

Quite a few prople visit the "Shields Up " site and subsequently carry out the test and have a "bit of a panic " when they see the screen that you saw

Thanks to Bombastus who clarified the issue for you...I can also confirm that Norton will be protecting you ....and you have no cause for any worries in respect to your security status .................

Cheers .....Ed

Windows7 SP1....Norton NIS 2012 ...4Gb RAM ..Momentus XT SolidState HybridHD

Docendo discimus ( Teach in order to learn)

ellisonwales · ‎12-18-2010

I understand the explanations ,but why then does NIS bother to give a warning about eicar test file ,as thats a harmless file too?

SendOfJive · ‎02-07-2009

Hi Eyal_Oren,

Just to clarify a bit more, when running in the default Automatic Program Control mode, the firewall does not block leak tests because they are not malicious - in fact, they are known safe. Malware using techniques demonstated by leak tests will be blocked. When running a leak test, you need to turn off Automatic Program Control and enable Advanced Events Monitoring. You will then see the alerts that you were expecting. Be sure to turn off AEM and re-enable the Automatic Program Control after testing.

Eyal_Oren · ‎12-19-2011

Hi,

Thank you very much for your lovely Explanation,i am very happy from this Forum :-)

BTW,I am a fan of Antivirus & Internet Security,They Are 2 Things that i Don`t like at Symantec:

1.you have Only 10 Activation Per 1 Pc (it is Only at Symantec)

2.There isn`t a way to buy Nis for Only 1 Pc,But ! with the Nav there is,why I Need to pay 70$ if i use Only 1 Pc ??

I Hope you can Understand me ;-)

I gave you a Kudos,i don`t know about it,i am new as you see,Good Luck & Thank`a Again,you need 5 not one ;-)

dickevans · ‎04-08-2008

Eyal_Oren wrote:
Hi,

Thank you very much for your lovely Explanation,i am very happy from this Forum :-)
BTW,I am a fan of Antivirus & Internet Security,They Are 2 Things that i Don`t like at Symantec:

1.you have Only 10 Activation Per 1 Pc (it is Only at Symantec)
2.There isn`t a way to buy Nis for Only 1 Pc,But ! with the Nav there is,why I Need to pay 70$ if i use Only 1 Pc ??

I Hope you can Understand me ;-)
I gave you a Kudos,i don`t know about it,i am new as you see,Good Luck & Thank`a Again,you need 5 not one ;-)

Hi,

1.you have Only 10 Activation Per 1 Pc (it is Only at Symantec)

If it becomes necessary for you to reinstall and activate your copy of NIS more than ten times before your subscription expires please contact customer support here: http://us.norton.com/support/contact/contact.jsp?pvid=cs and they will assist you.

2.There isn`t a way to buy Nis for Only 1 Pc,But ! with the Nav there is,why I Need to pay 70$ if i use Only 1 Pc ??

I don't understand your question. Single computer copies of NIS are available both online and from authorized resellers.

Stay well and surf safe

Dick
Win7x64 SP1 current NIS V20

Bombastus · ‎11-16-2009

The Eicar test file is a semi-official test file recognized by the entire industry that you can use to make sure your antivirus is working properly. Various leak-tests that people release on their own aren't very interesting in this regard; I am sure the makers of them think that "my test is super important and should be the industry standard", but they really aren't. Most of them are just that - harmless test files that a security product has no real reason to block except to look good on paper.

The ability to block a leak test file shows just that: the ability to block a harmless test file. It doesn't show how well real malware will be blocked. And the purpose of the Eicar test file is more to test that the antivirus is working than to show any particularly great detection rate.