Thread: Phones with preinstalled spyware CarrierIQ
View Single Post
reinob is offline reinob
2011-12-01 , 11:45
Posts: 1,808 | Thanked: 4,272 times | Joined on Feb 2011 @ Germany
#24
Originally Posted by ste-phan View Post
Why a user friendly firewall does not exist on Maemo?

Jailbroken iPhone users get to enjoy Firewall IP that will alert you for outgoing connections, Android users at least got DroidWall (ip tables configuration front end) and can start to work with a clean white list.

Sadly even intelligent iPhone/iPad users don't seem to install Firewall IP by default. Well they are getting what they deserve then?
Well, whatever kind of *software* firewall you run can be disabled (or configured) by any program running with euid = 0. I assume a decent manufacturer would let their rootkit run as root , so no firewall will protect you from that.

Look at Windows. It has a good firewall, but basically any program can open whatever ports it needs, without asking you. In Linux this is not common, but perfectly doable.

I guess you could block all outgoing ports using iptables and then check from time to time if anything has messed with your rules.

Plus if the rootkit runs in the kernel it can easily bypass the firewall. Same as decent rootkits running on Windows.
 

The Following 5 Users Say Thank You to reinob For This Useful Post: