Some wouldn't even call it a firewal. But i see there is some demand.

Shown by quite a few post.

Littele Snitch (http://www.wilderssecurity.com/showthread.php?t=50218&highlight=jammer)

-{ Quote: "Since I use SP2's firewall AND a router firewall, I really don't need another one.

But I do want to have application control. Yea, I know I can install ZoneAlarm and disable everything except said feature, but not only do I feel it's kind of lame, it takes a huge RAM, its installation shoves files into my windows' folder and, in summary, I feel it's not more logical than installing DOS just because I want a command prompt...

Basically, I want a prompt that tells me "application X just tried to make a connection to whatever. Allow or Deny?"

I know there's a little program, which does just that, called Little Snitch, but it's only for the MAC!

Surely there's something similiar for Windows.
I'm sick and tired of all these "overall solution" packages. No, I don't want "pop ups blockers"! I don't want "intrusion alerts"! Is it really so hard to simply prompt me to deny or allow whenever an application tries to call home?!" }-

I had open another topic asking this 2 weeks ago. But it was a bit off topic so i decide to start this one.

I think after searching for nearly 2 month i finally find my perfect Firewall. Jammer. BUT it doesn't work on XP!! >:(

See? A lot of people are already behind Firewall / Routers. And Most of them only need a Simple Application control. Telling them " xxxxx.exe is trying to acces internet." Allow of deny. Simple!. But most firewall comes in All in one soloution and the market is lacking these simple things.

Zonealarm Free 4.5 was very close but it was a resource Hog ( ~15 Mb Ram? ) Compare to WHat i heard 2Mb for Jammer.

I really Hope Agnitum could pick up and resurrect Jammer. ( Although in reality Jammer never died and it is still being sold >_< )

P.S - Just out of a matter of interest, How is interested in such a firewall.?

Armor2Net is an "as good as possible" alternate choice.
But 29$ is too steep I think. [check the new news at their site]
www.armor2net.com

Hi, yes indeed it would be very useful, so that we can use it with firewalls that dones´t have such an option. I have been looking for one like this but I have never found it.
If you ever see something like that post it please.

Yes, that would be highly useful for anyone running VisNetic, 8Signs or CHX-I, all of which have no app control at all. I am really surprised that nobody has created such a program yet.. but then again, most firewalls already have app control.

www.oldversion.com for ZoneAlarm 2.x
www.google.com for ZoneAlarm versions via their own site
www.enigmasoftwaregroup.com/more_info_adorons_firewall.shtml for what was once Enigma Firewall... now no,longer free I guess... can't be sure [~ 300 kb] online installer
http://www.download.com/Enigma-Firewall/3000-10435_4-10284670.html
Older version... the one they recommended [download.com]
link: [~3-4 Megs] http://software-files.download.com/software/10284670/10284669/3/EnigmaFireWall.exe

-{ Quote: "Learns how you use your computer: When new threats are encountered, AlertWall asks you whether to block or allow these potential attacks. For example, you know it's ok to grant Internet access to your browser. When AlertWall asks you, reply YES and check the box to Remember my answer. This way, the next time your browser accesses the Internet, AlertWall personal firewall will remember, and won't bother you agai" }-http://www.alertwall.com/

http://www.stompsoft.com/firewallxtreme.html

http://www.download.com/eXtendia-Firewall-Megapak/3000-10435_4-10335568.html

there's more @ http://www.download.com/sort/3150-10435_4-0-1-4.html?
Have fun gang

And I recommend going thru these with a fine-toothed comb.
http://www.softpedia.com/get/Security/Firewall
Have fun y'all

http://www.softpedia.com/get/Security/Firewall/Emsa-Port-Blocker.shtml
A little something tat is brilliant [and totally off topic] ;)

A usefull tool, and it is difficult to get past a router firewall.. but not impossible.

Jimbob

@no13,

Well i try pretty much all of them. None of them fits in. Even some does, they don't count in as being low resources............><

Tried Armor2Net yet?
Or how about a-wall from x-wall series of Sphinx Soft [sphinx-soft.com/company/x-talk.html]
a-wall is ONLY BASIC app control [mucked up my proxomitron config]
s-,e-,c-wall contain more stuff... the "content filter" is simply a rehashed build of Proxomitron ;) with a poor GUI, and filters are VERY strict.

BTW
kerio v2.1.5 is a DAMN good packet filter that supports basic app control [I promise you'll like it]... I used to use it ONLY for basic app control.
Kerio 4 [limited/free version] ALSO has APP CONTROL [incl. spawning control]
only very slightly heavier on resources than v2... content filter and "syslog" available in the PRO version. http://www.kerio.com/kpf_comparison_version.html


Freeware APP control firewalls.
names only. figure out the links for yourself ;)
Bartware firewall v2 [simple, can't be sure how good it is]
Kerio v2
Kerio v4
a-wall [x-wall series]
Omniquad Personal firewall

-{ Quote: "Kerio Personal Firewall 2.1 was discontinued as of November 11, 2003." }-
therefore, no support except in forums.
-{ Quote: "from version 4.2 beta 1 ... - dropped support for Windows 98, ME, NT4. " }-

more freeware app firewalls.

Of course, Jetico
Securepoint Personal Firewall & VPN Client 3.7
Zone Alarm free
Sygate free
Outpost free
Xeon [ads freeware/shareware versions] http://www.econceptsoftware.com/screenshots/xeon1.gif http://www.econceptsoftware.com/xeon.html --> known adware co.... eSellerate/WhenU affiliated.
Alertwall
Primedius firewall lite
Filseclab Personal Firewall
GoldTach free

Have fun.

Nice No13 :thumbsup

Edit link not visible...
so here's update.

Wyvernworks' Firewall 2004: free, app control, blocks certain attacks, poor UI.

Why do people always create polls with pre-constructed responses that aren't mutually exclusive? My answer is "Yes", but of course, I also "Would like to see it first". You may as well have the poll:

Do you like having oxygen available for breathing?

* No
* Yes
* Yes, I need it to live
* Yes, I breathe it

-{ Quote: "Armor2Net is an "as good as possible" alternate choice.
But 29$ is too steep I think. [check the new news at their site]" }-Piece of garbage. I installed it on a clean WinXP machine, and it failed several of the leak tests I tested it against. (I stopped paying attention after the first 6 or so failures.)

has anyone around here used a-wall or Securepoint?

I tried Wyvernworks and it did not pass Shields-Up on multiple ports.

I tried Securepoint and got some weird things going on. When I did a scan at grc.com, it showed everything stealth EXCEPT Port 0 and 1. I could make a rule to block port 1 and then it stealthed it, but if I tried blocking port 0 then nothing would work at all.. i.e., no browsing and so on. Weird... Maybe somebody else understands that one..

Also, when it popped up a box to allow/deny something, after a few times it showed the ports from the previous popup and not the current ports. Rather annoying and useless..

It also didn't work with Avast AV, which I used to use. Avast creates a temporary file when it executes to check for updates, then deletes itself after it's done. So when Securepoint checked for it's existence later, it kept deleting the rule for Avast, thinking that Avast didn't exist anymore. That obviously was annoying, having to ok Avast every 4 hours. No good.

Just a few weird things I remember... :)

k-

Seems like there is no free lunch, except possibly Kerio 2.15. By the way, what AV does the consumate firewall guru use now?

(I assume you have read the latest about Jetico 1.51 and the tray activity indicator) One of these days I will get brave enough to try Tiny 6.

I've been trying all kinds of stuff here lately.. I used Avast for quite some time and liked it a lot, but with recent releases I started noticing error messages in my Event Viewer so I switched to AVG for a while. AVG seems fine, although it uses a fair amount of ram. But I like it.

Believe it or not, for the last few days I've been running NO 3rd party firewall at all. I decided to configure IPSEC as a basic packet filter and use that for a while. I get stealth at grc on all ports. No logging at all. But the only thing bad about using IPSEC this way is that when you allow traffic out and in on remote port 80, then someone could theoretically use a source port of 80 and get into your system to scan ports and so on. I don't worry much about that because I have nothing open here at all on TCP ports. So anyone trying to get in would just get a bunch of closed ports. Interesting to mess with it though. :)

Right now I'm running an old version of ZA, 2.6.362 Pro. No bloat and nothing you don't need, yet a good stateful firewall. Too bad they didn't keep it that way and skip all the useless junk that's been added since then.

I still like Jetico a lot and am keeping an eye on it. But just when I get one firewall that works pretty well and am happy with it, I start to play with another one. I think it must be a disease or something... ;D

Tiny is really cool, but I couldn't figure out how the firewall rules worked. I attempted to disable DNS completely while I was playing with it, but I couldn't. No matter what rules I deleted relating to Services.Exe and DNS and so on, DNS always seemed to work. I wonder if it's hard coded into Tiny or something? Very weird anyway. There's a new Tiny 6.5 about ready to be released with a new interface. I might try that again when it's released.

Honestly i have TRY ALL the firewall listed in softpedia, webattack, and all those no13 listed. none of them fits in. Most of them would be too high resource.

I honestly want Jammer back.

Dreaming of Jammer 3.

What kind of resource usage would you be satisfied with?

-{ Quote: "Piece of garbage. I installed it on a clean WinXP machine, and it failed several of the leak tests I tested it against. (I stopped paying attention after the first 6 or so failures.)" }-The recent conversations DEMAND ONLY simple app control... if you wanna pass ALL leaktests... get TPF.
@ Diver
http://www.wilderssecurity.com/showpost.php?p=348399&postcount=65&hl=securepoint
both a-wall and securepoint are BASIC app control... nothing lese... securepoint has SPI based packet filtering too, I think
-{ Quote: "I tried Securepoint and got some weird things going on. When I did a scan at grc.com, it showed everything stealth EXCEPT Port 0 and 1. I could make a rule to block port 1 and then it stealthed it, but if I tried blocking port 0 then nothing would work at all.. i.e., no browsing and so on. Weird... Maybe somebody else understands that one.." }-Maybe like Kerio 4, it needs 127.0.0.1:0 to be available for its personal use all the time?
-{ Quote: "I honestly want Jammer back. " }-I don't remember jammer as well. But if you can explain what all it did... maybe I can suggest a combo?

-{ Quote: "Tif you wanna pass ALL leaktests... get TPF." }-No thanks--I can do that for free, and with great support--with JPF.

And Jetico doesn't spam me like Tiny Software did for months on end, due to refusing to remove me from their mailing list, until I finally reported them to SpamCop.net.

I would like to remind members that although you are pretty safe behind a router, it is not impssible for attacks to get through, just unlikely and in the future it may be a lot easier for hackers / crackers to get past routers and their firewalls if they have one.

Jimbob

-{ Quote: "I would like to remind members that although you are pretty safe behind a router, it is not impssible for attacks to get through, just unlikely and in the future it may be a lot easier for hackers / crackers to get past routers and their firewalls if they have one." }-
All you'd need to hack a router is its manual, a list of default passwords, and a decent trojan.
Any opinion to the contrary?

Hi,

I'm afraid it will not be enough with a serious admin. ;)
It will be more difficult with a strong protection (IDS, authentication, reverse proxy...).

Just a question:how could find which firewall (hardware or not) and which system (server, os etc) are in use?

How could you find security holes to choose and to prepare your attack?

You'll need more than a manual, default passwords or trojan (worms are more in used by advanced hackers):social engineering, network scanners(vulnerability, ports, sniffers, brute force attacks and so on)...

We know that a pc behind an hardware firewall could be hacked.
But we also know that advanced attackers (from Saint-Petersbourg, Lituania etc) are not interesting in Home PC (or just to "zombified" them).

If NO13 try to hack Jimbob1989, so Jimbob1989 could ;D ;) :

***Find his IP,
***Make a tracert,
***Use TcpDump, Snort, or other analyzer protocol :
* *to record and analyze the attack's packets,
* *to find the kind of attack (with MAC address you could find the "spoofed" machine for instance)...
***Scan locals ports,
***analyze your logs etc, etc.....
But i think we're out the subject and bosses will not enjoy that at all. ;)

Regards

I can use anon proxies to that end, and then cause a router reset, or something more malicious ;)
Anyway... let's get back on track, shall we?

Hi,

There's some network managers who have lost their job because of their certitudes and "dabblerness" and there's some hackers who hava been easily captured because they thought they're safe behind anonymous proxies...

As i said, the more i learn about security, the more i loose my certitudes.
And in any cases, i like to share my knowledge, but with a little bit modesty and respect for each others.

Last but last:For me, a firewall has to have only firewall functions.

Regards