I ditched Zonealarm a while back, and I use Windows XP SP2 built-in firewall instead. Are there any serious loopholes that this doesn't cover? I have already used the Exceptions tab to configure the obvious ones (Remote Assistance, Remote desktop and UPnP turned off). TIA,

It doesn't filter any outgoing info.

One thing to keep in mind:

{QUOTE-> "The Windows Firewall API makes it possible to programmatically manage the features of Windows Firewall (formerly known as Internet Connection Firewall) by allowing applications to create, enable, and disable firewall exceptions." MSDN
What this means in relation to system security is that applications (must be run in an Administrator account) can now add themselves to and change exceptions in the Windows Firewall without a user prompt. So be sure to follow best practices and do not run or install unknown/untrusted applications and routinely check your exceptions list and remove anything that does not need to be there. <-QUOTE}
http://www.wilderssecurity.com/showthread.php?p=274382

Regards,

CrazyM

Yeah at the risk of spreading FUD, I seem to recall reading enough weaknesses in the windows firewall some to do with inbound protection, some outbound to rule it out unless you have no choice.

Don't ask me for details, since I'm spreading FUD, posting details and links would spoil it. ;D

Glad to see you finally joined Devil's Advocate :thumb: .

Graphic Equalizer, if you are planning on using an inbound firewall only, why don't you check out Ghostwall? It is better than the window's firewall, and avoids many of its shortcomings. It is also free, light, easy to use, and best of all, the official support forum is here at Wilders. If you want ot have a two way firewall, I recommend Sunbelt Kerio's (its weird gettings used to the name since the aquisition) firewall or ZoneAlarm's firewall. Best of luck

Alphalutra1

Thanks for the advice : I'll give Ghostwall a try.

Enjoy :D