The following information is directly quoted from the GRC.com website:
NetworkICE's BlackICE Defender Update Apparently Designed to Mislead its Users
"Eleven Months after the release of our first, simple, but effective and popular (7,891,272 downloads) LeakTest firewall testing utility, BlackICE Defender (BID) continues to "leak" ? as defined by LeakTest. But a recent update to BID (version 2.9cai) was hiding this fact from its users by effectively cheating the LeakTest.
Rather than enhancing BlackICE Defender by adding the sort of application-level controls that are available even from many completely free personal firewalls, BID's publisher, NetworkICE, apparently chose to prevent LeakTest's intended operation by adding specific awareness to BID of LeakTest's remote testing IP."
"This IP address-specific blocking could have falsely lead BID's users into believing that their updated BID firewall was now providing the sort of outbound blocking, protection, and awareness that LeakTest was designed to detect, test, and report. (And which all effective personal firewalls provide.)
Although we would celebrate the addition of true outbound application-aware control and blocking to BID, achieving that sort of protection is significantly more difficult ? and certainly far more valuable to its users ? than blocking a single IP address at Gibson Research Corp. in order to falsely appear to be doing more than they are."
LeakTest Version 1.1:
"Shortly after we learned of and confirmed this unfortunate decision on the part of NetworkICE's developers, we updated the original LeakTest v1.0 to version 1.1 by simply changing LeakTest's remote connection IP and port number. With that small (two byte) change, LeakTest was again able to communicate out through BlackICE Defender's complete lack of defenses, as it always has ? and as any other malicious hackerware or spyware presumably also could."
A recent BlackICE purchaser wrote to us:
"As someone who has recently purchased blackice defender, I was understandably worried by Steve's derogatory remarks about the program and it's functioning. So I mailed them [ISS/NetworkICE] and asked for comment. I paste it here un-altered, for whoever may wish to read it."
For those who are interested, here is the reply this BID user reportedly received from the anonymous "Trish M." at BlackICE Technical Support in reply to his concerns, followed by the reply I sent back to him (non-anonymously):
formatting link
- (Follow this link to read the reply)