OSNews

A firewall is a device which permits or denies connections. A firewall can be hardware or software based.

Firewalls are routers that have rules to control how or if they route traffic between networks.

A firewall is not a router. Many routers include firewall functionality. You can buy hardware firewalls without any routing functionality.

A firewall serves no purpose on a PC.

A software firewall does serve a purpose on a PC, it permits or denies connections.

If you want to protect your PC from exploitation of network services then just disable those network services.

Close, but wrong. A firewall is not a replacement for security, so disabling services that aren't required is essential, however to state that disabling services is the only action required is wrong. If a trojan creeps in, masked by a root kit and opens a port to allow remote control of your PC, a firewall might just save the day.

You appear to lack an understanding of computer security.

No, _You_ appear to lack an understanding of computer security.

Edited 2007-02-19 10:32

A Trojan masked by a rootkit that can't disable/bypass your software firewall? I think not.

So your argument is that a software firewall can prevent unauthorised outgoing connections?

I'll give you that preventing unauthorised outgoing connections is a useful thing. But you first have to control everything about what a program is allowed to do otherwise a malicious program can just use another program, that is authorised to make connections, to make the connections it needs.

A firewall is not a replacement for security,
This is very true and is my biggest issue with software firewalls and anti-virus. They add very little in terms of security while costing money, eating computing resources and giving the user a false sense of security.

There is a huge industry built around selling users 'security' software by marketing through fear and aren't solving the problem in the right place.