Originally posted by: corkyg
I bought Comodo - but uninstalled it because it had no activity icon in the tray. I then tried Sunbelt Kerio Personal Firewall, and it has been great. I got rid of ZA Pro (bought) after 2 years - just too bloated - slowed the system down too much and delayed Windows loading.
Originally posted by: corkyg
I bought Comodo - but uninstalled it because it had no activity icon in the tray. I then tried Sunbelt Kerio Personal Firewall, and it has been great. I got rid of ZA Pro (bought) after 2 years - just too bloated - slowed the system down too much and delayed Windows loading.
Originally posted by: corkyg
I bought Comodo - but uninstalled it because it had no activity icon in the tray. I then tried Sunbelt Kerio Personal Firewall, and it has been great. I got rid of ZA Pro (bought) after 2 years - just too bloated - slowed the system down too much and delayed Windows loading.
Most of the software firewall market depends on people buying into this "security". This is why we have gotten to the point where people derive security value in a software firewall that filters outbound traffic.Somehow its implied that watching some activity icon in the firewall makes you secure?
Care to list some? I haven't seen many. Most sites dismiss firewalls as crap if they don't have outbound filtering, which is hardly objective.Quite a few security web sites objectively rate firewalls.
Originally posted by: buzz12
i used kaspersky internet security and just recently added sygate personal firewall.
sygate is something amazing.. give it a try!
Originally posted by: stash
Most of the software firewall market depends on people buying into this "security". This is why we have gotten to the point where people derive security value in a software firewall that filters outbound traffic.Somehow its implied that watching some activity icon in the firewall makes you secure?
Care to list some? I haven't seen many. Most sites dismiss firewalls as crap if they don't have outbound filtering, which is hardly objective.Quite a few security web sites objectively rate firewalls.
Originally posted by: Lemon law
Originally posted by: stash
Most of the software firewall market depends on people buying into this "security". This is why we have gotten to the point where people derive security value in a software firewall that filters outbound traffic.Somehow its implied that watching some activity icon in the firewall makes you secure?
Care to list some? I haven't seen many. Most sites dismiss firewalls as crap if they don't have outbound filtering, which is hardly objective.Quite a few security web sites objectively rate firewalls.
In terms of listing some sites that rate firewalls.
Try---------http://www.spywarewarrior.com/index.php
or--------www.castlecops.com/
And there are quite a few others but those will do for a start.
But the philosophy behind having a two way firewall is basically in prevention. If you have a computer that has become infected with some sort of malware, a firewall that filters outgoing traffic may prevent said malware from opening ports to send your sensitive data
back out to some rascal who can and will use it to damage you. Basically, breaking into Ft. Knox is only half the job, breaking in does no good if you can't get the gold out. And because the SP2 firewall lacks that outbound filtering, its just one of many strikes against using the SP2 firewall. Basically microsoft sending less than a boy to do a man's job.
The one two virtues of the microsoft SP2 firewall in win XP are. (1) Its free. (2) Its better than nothing. And for perhaps 2/3 of computer users, better than nothing in an ignorance is bliss world is huge.
But in Vista, microsoft does provide a free 2 way firewall.
Originally posted by: Lemon law
Originally posted by: Lemon law
Originally posted by: stash
Most of the software firewall market depends on people buying into this "security". This is why we have gotten to the point where people derive security value in a software firewall that filters outbound traffic.Somehow its implied that watching some activity icon in the firewall makes you secure?
Care to list some? I haven't seen many. Most sites dismiss firewalls as crap if they don't have outbound filtering, which is hardly objective.Quite a few security web sites objectively rate firewalls.
In terms of listing some sites that rate firewalls.
Try---------http://www.spywarewarrior.com/index.php
or--------www.castlecops.com/
And there are quite a few others but those will do for a start. But no one should ignore the real gem on the security forum of Anand tech which is the security resource thread at top by Schadenfroh. An EXCELLENT overview of all aspects of computer security.
But the philosophy behind having a two way firewall is basically in prevention. If you have a computer that has become infected with some sort of malware, a firewall that filters outgoing traffic may prevent said malware from opening ports to send your sensitive data
back out to some rascal who can and will use it to damage you. Basically, breaking into Ft. Knox is only half the job, breaking in does no good if you can't get the gold out. And because the SP2 firewall lacks that outbound filtering, its just one of many strikes against using the SP2 firewall. Basically microsoft sending less than a boy to do a man's job.
The one two virtues of the microsoft SP2 firewall in win XP are. (1) Its free. (2) Its better than nothing. And for perhaps 2/3 of computer users, better than nothing in an ignorance is bliss world is huge.
But in Vista, microsoft does provide a free 2 way firewall.
Originally posted by: madh83
I reinstalled my OS and used to use the older kerio too. It was a great firewall, but now I can't find the older one, the link above doesnot seem to work for me= (
I tried comodo, which seems to do a good job, but it takes up considerable cpu cycles on my p43.0ghz. It averages only around 3-4% but at some points it jumps to 20%! This causes some skipping when I'm watching movies which is a huge detraction.
That great, but the philosophy is fundementally flawed. The most obvious flaw is that all the malware needs to do is use your browser to send the data. What box doesn't allow port 80 outbound?But the philosophy behind having a two way firewall is basically in prevention. If you have a computer that has become infected with some sort of malware, a firewall that filters outgoing traffic may prevent said malware from opening ports to send your sensitive data back out to some rascal who can and will use it to damage you
This is not a strike (see above). What are some of the other many strikes?And because the SP2 firewall lacks that outbound filtering, its just one of many strikes against using the SP2 firewall.
Yes, and it is not billed as preventing malware from doing shit you don't want. Well it might be by some of the marketing droids, but you'll never hear anyone technical at MS say that.But in Vista, microsoft does provide a free 2 way firewall.
Originally posted by: stash
That great, but the philosophy is fundementally flawed. The most obvious flaw is that all the malware needs to do is use your browser to send the data. What box doesn't allow port 80 outbound?But the philosophy behind having a two way firewall is basically in prevention. If you have a computer that has become infected with some sort of malware, a firewall that filters outgoing traffic may prevent said malware from opening ports to send your sensitive data back out to some rascal who can and will use it to damage you
But the real flaw is expecting code running in the context of a user to be able to stop other code--running in the same context--from doing anything. Think about it. On XP, you have the ability to open ports outbound on the firewall software of your choice. How are you going to stop any malicious code (which is running in your user context) from doing the same exact thing? (You can't).
Even if you require administrator rights to open a port, you're still stuck with ports that are already open. It's ridiculously easy for malware (running as you) to lauch a browser and send its payload. The main point is this: there is no isolation between applications running the same user context. As long as that remains true (and it will unless Windows is fundementally redesigned), outbound firewalls are worthless for preventing anything.
This is not a strike (see above). What are some of the other many strikes?And because the SP2 firewall lacks that outbound filtering, its just one of many strikes against using the SP2 firewall.
Yes, and it is not billed as preventing malware from doing shit you don't want. Well it might be by some of the marketing droids, but you'll never hear anyone technical at MS say that.But in Vista, microsoft does provide a free 2 way firewall.
Unless you use a firewall on a dedicated machine running a different OS???But the real flaw is expecting code running in the context of a user to be able to stop other code--running in the same context--from doing anything.
Sure, a dedicated machine helps separate user contexts. The OS that you use is irrelevant. But a dedicated firewall still won't stop malware from sending payloads over port 80 or any other open port. Unless you block port 80, which not many networks do.Unless you use a firewall on a dedicated machine running a different OS???
:thumbsup::thumbsup::thumbsup:Originally posted by: stash
Sure, a dedicated machine helps separate user contexts. The OS that you use is irrelevant. But a dedicated firewall still won't stop malware from sending payloads over port 80 or any other open port. Unless you block port 80, which not many networks do.Unless you use a firewall on a dedicated machine running a different OS???
Outbound filtering, whether with a host-based firewall or a dedicated device is more about management than security. If you don't want users on your computer or network running instant messaging, you block it with a firewall. But if you're trying to use it to stop the spread of a malware outbreak on a computer or your network, you are wasting resources fighting a battle you've already lost.