firewall??? show me an easy one

Discussion in 'other firewalls' started by tiluid, Mar 7, 2005.

Thread Status:
Not open for further replies.
  1. tiluid
    Offline

    tiluid Registered Member

    An important issue:
    Is there a real need of firewall?

    I have a lot of friends without firewall and they didnt ever have a problem.

    I am not sure if there is a real need of firewall. I think that the firewalls producing companies create fake fear of unreal threat in way that you will buy their products.
    I think that firewalls are the next non-existing need created by our mercantile society.

    But if you succeed in convncing me of the need of getting a firewall, let it be the easiest, something like "install and forget".
    I was using ZoneAlarm but i have problems with the instalation of the last version - i didnt manage to install it because the previous version didnt uninstall properly. So i like another firewall...
    I heard that Kerio 2.1.5 is a good one and now i am using it at the moment but from some posts that i read, i got the impression that the rule based firewalls are not for beginners and are hard to configurate. Tell me can i use it without configurating it? I just permit trusted applications and that's all.

    Many thanks in advance: Tiluid.
  2. Mem
    Offline

    Mem Guest

    Maybe this type of info of 'survival time' being 23 min on a network: http://isc.sans.org//survivalhistory.php and while you are there, check the Handler's diary for today (link at top of page) - New LAND Attack on Windows XP and 2003 Server. A report on Bugtraq late yesterday suggested that a single crafted packet could cause Windows XP SP2 and Windows 2003 Server to become unstable.
  3. se7engreen
    Offline

    se7engreen Registered Member

    The need for a firewall is real. I don't expect that you care to hear technical jargon, but I think no firewall protect would be the equivalent of living in Sacramento, CA and deciding not to install locks on your doors or windows. Granted, a lot of firewall vendors try to sell firewalls with a lot of bells and whistles for a higher cost. The bottom line, the idea of basic firewall protection is necessary, even if it's just enabling the firewall included in WinXP, it's a great step up from nothing.

    As for Kerio, there is a good, downloadable rule set out there but I'm not sure where.
    Edit:
    http://www.dslreports.com/forum/remark,8023708~mode=flat
    Here's a thead with the downloadable rules and it looks like a tutorial from BlitzenZeus, the one who created the ruleset.
    Last edited: Mar 7, 2005
  4. Marja
    Offline

    Marja Honestly, I'm not a bot!!

    Mem,
    I just tried your link, the Windows XP: Surviving the First Day, it downloaded a corrupt .pdf fileo_O Don't know what that was about?

    Triluid,
    If you want a set and forget firewall and are using WinXP2 - use the Windows firewall, it's the easiest one I know, not necessarily a strong one, but if your alternative is to NOT run one, turn that one on!

    Go to your control panel(start>control panel- click open) >go to security center open it >the first box is your Windows firewall, just click "on".

    There are some settings you can use, that's up to you, with a firewall you are not only protecting you and your family but other people who might be infected BY something you pick up traveling the 'net.

    Someone here probably has a link to Kerio's ruleset, it is also on this forum - somewhere!?! ;) But, it is NOT a set and forget even with the rule sets.

    That's a good analogy, from se7engreen, would you leave your house open and unlocked? That's what you are doing with your computer! I wouldn't!

    Cheers!
    Marja:cool:
  5. Mem
    Offline

    Mem Guest

    Hmm, the pdf worked for me but it's from 2003 and not as relevant as the present 'survival time' is 23 min... The one I was really using as an example is the Sans Handler's Diary for today. Here's an exploit that a firewall will prevent - it's been publicly released without any MS patches yet - the reason a firewall is needed (and XPSP2 at that).
  6. kareldjag
    Offline

    kareldjag Registered Member

    Hi,

    Sufing without any firewall is really dangerous (almost if you have sensitive informations like your visa's number).

    Without a firewall, your computer is visible on the web .
    Therefore, your probes/ports appears to be opened.
    An attacker can scan the web (IPs) in order to find vulnerables computers (like your pc).

    And with some well known methods, it will be easy for him to place and hide a backdoor/trojan/rat/rootkit/worm for any target he wants.
    Finally, your computer can be totally controlled and all will appear to be normal.

    For beginners, the next link can be interesting to elaborate a classical line defense.
    "7 step security plan" ( the fist step concerns firewall and that means it's really important):

    http://cybercoyote.org/security/plan.shtml

    This firewall section is also full of informations.

    Hope this helps.

    Regards
  7. Mem
    Offline

    Mem Guest

    @Marja

    I was on a 'test' box when I tried accessing the pdf that worked - another PC wouldn't download, looks like due to my protection settings somewhere blocking scripts, Java, cookies and popups but haven't identified where yet. Strange.
  8. Marja
    Offline

    Marja Honestly, I'm not a bot!!

    I will try it again, maybe it's mine! :)
  9. Marja
    Offline

    Marja Honestly, I'm not a bot!!

    I don't know what it is either, it starts out fine, then the Adobe file disappears and a second SANS window shows up and just hangs there blank - like my ideas, right now?!?

    Never seen a .pdf file just blink out like that, though. Agree, Strange.

    Adobe says "this file is corrupted and can not be opened."
    That help? :D


    Hope we have convinced you to turn on a firewall, Tiluid!:)
    Last edited: Mar 7, 2005
  10. tiluid
    Offline

    tiluid Registered Member

    Thanks for all replies!
    Thank you mem, se7engreen and kareldjag for the links.

    I also tried the link: "Windows XP: Surviving the First Day". But dont know with which program to open the *.pdf file.
  11. tiluid
    Offline

    tiluid Registered Member

    Yes, i'll run a firewall(Kerio 2.1.5) but it is going to be a hard work learning how to use it.
  12. claire
    Offline

    claire Guest

  13. Mem
    Offline

    Mem Registered Member

    Last edited: Mar 7, 2005
  14. tiluid
    Offline

    tiluid Registered Member

    Mem, tell me can I open this file with another program,... not Adobe Acrobat, because I dont have it.
  15. ronjor
    Offline

    ronjor Global Moderator

  16. Mem
    Offline

    Mem Registered Member

  17. Arup
    Offline

    Arup Guest

    www.filescab.com has Filescab which is a free firewall, it is pretty light on resources, supports ICS and is rule based like Kerio but comes with a well built set of rules which even a novice can use right out of the box. Passed Sheilds Up and other tests at PC Flank and also passed all the Sygate Scan. The only reason that I dont see it around is that it comes from China and English language support can be a problem.
  18. BlackSwan
    Offline

    BlackSwan Registered Member

    Um... The Filescab link doesn't seem to work, and Google is unfortunately no help... An alternate link for this firewall, perhaps? I'd be interested in taking a look. :)
  19. Arup
    Offline

    Arup Guest

    Sorry BlackSwan,

    Here is the link, the name is quite tough to remember.

    www.filseclab.com
  20. Kec Velaskec
    Offline

    Kec Velaskec Registered Member

    http://www.wilderssecurity.com/showthread.php?t=64921&page=3
  21. BlackSwan
    Offline

    BlackSwan Registered Member

    That's it! Thank you so much. :)

    BS
  22. Arup
    Offline

    Arup Guest

    Welcome BlackSwan, if you use it, do give the feedback
  23. ghost16825
    Offline

    ghost16825 Registered Member

    Has anyone actually read their webpage (real one)?

    I guess that takes care of all my problems. No need to test it, look at silly AV reviews or check the support contract - they're said it's my best choice and they must be right.

    And did anyone check the prices for buying full firewall source code?
    Pffft, I haven't even used the product and I doubt it's even worth downloading.
  24. BlackSwan
    Offline

    BlackSwan Registered Member

    Downloading it right now. I'll install it on my test machine and return with news ASAP.

    Thanks again. :)

    BS
    Last edited: Mar 8, 2005
  25. Arup
    Offline

    Arup Guest


    The company is based in China so the English translation is quite funky, wether that makes it a poor product remains to be seen, many say that Kerio 2;15 fails Leak Tests, does that make it a bad product?
Thread Status:
Not open for further replies.