"What is it with the Windows Vista Firewall and its refusal to go away? All our PCs are secured behind two firewalls: a hardware firewall and Microsoft ISA Server. The only traffic that gets in is the traffic that we want to get in. Now we can appreciate having the firewall on by default; but after turning it off over 20 times, it's getting to be too much."
To view parent comment, click here.
To read all comments associated with this story, please click here.
Member since:2005-08-17
A Trojan masked by a rootkit that can't disable/bypass your software firewall? I think not.
So your argument is that a software firewall can prevent unauthorised outgoing connections?
I'll give you that preventing unauthorised outgoing connections is a useful thing. But you first have to control everything about what a program is allowed to do otherwise a malicious program can just use another program, that is authorised to make connections, to make the connections it needs.
A firewall is not a replacement for security,
This is very true and is my biggest issue with software firewalls and anti-virus. They add very little in terms of security while costing money, eating computing resources and giving the user a false sense of security.
There is a huge industry built around selling users 'security' software by marketing through fear and aren't solving the problem in the right place.
Member since:2005-07-22
A Trojan masked by a rootkit that can't disable/bypass your software firewall? I think not.
Quite right, hence the reason why I said "a firewall might just save the day.", (Emphasis added).
So your argument is that a software firewall can prevent unauthorised outgoing connections? [/i]
No, my arguement is that whilst a firewall should not be used as the basis of a security implementation, it does compliment properly securing or disabling services. Firewalls (hardware and software) are not infallable, but they should not be overlooked.
There is a huge industry built around selling users 'security' software by marketing through fear and aren't solving the problem in the right place.
Very true, and I'm aware of far too many people that buy into this false sense of security.
Edited 2007-02-19 13:35
Member since:
2005-07-22
A firewall is a device which permits or denies connections. A firewall can be hardware or software based.
Firewalls are routers that have rules to control how or if they route traffic between networks.
A firewall is not a router. Many routers include firewall functionality. You can buy hardware firewalls without any routing functionality.
A firewall serves no purpose on a PC.
A software firewall does serve a purpose on a PC, it permits or denies connections.
If you want to protect your PC from exploitation of network services then just disable those network services.
Close, but wrong. A firewall is not a replacement for security, so disabling services that aren't required is essential, however to state that disabling services is the only action required is wrong. If a trojan creeps in, masked by a root kit and opens a port to allow remote control of your PC, a firewall might just save the day.
You appear to lack an understanding of computer security.
No, _You_ appear to lack an understanding of computer security.
Edited 2007-02-19 10:32