firewall??? show me an easy one

Discussion in 'other firewalls' started by tiluid, Mar 7, 2005.

Thread Status:
Not open for further replies.
  1. tiluid

    tiluid Registered Member

    Joined:
    Nov 9, 2004
    Posts:
    41
    Location:
    Bulgaria -> Sofia
    An important issue:
    Is there a real need of firewall?

    I have a lot of friends without firewall and they didnt ever have a problem.

    I am not sure if there is a real need of firewall. I think that the firewalls producing companies create fake fear of unreal threat in way that you will buy their products.
    I think that firewalls are the next non-existing need created by our mercantile society.

    But if you succeed in convncing me of the need of getting a firewall, let it be the easiest, something like "install and forget".
    I was using ZoneAlarm but i have problems with the instalation of the last version - i didnt manage to install it because the previous version didnt uninstall properly. So i like another firewall...
    I heard that Kerio 2.1.5 is a good one and now i am using it at the moment but from some posts that i read, i got the impression that the rule based firewalls are not for beginners and are hard to configurate. Tell me can i use it without configurating it? I just permit trusted applications and that's all.

    Many thanks in advance: Tiluid.
     
  2. Mem

    Mem Guest

    Maybe this type of info of 'survival time' being 23 min on a network: http://isc.sans.org//survivalhistory.php and while you are there, check the Handler's diary for today (link at top of page) - New LAND Attack on Windows XP and 2003 Server. A report on Bugtraq late yesterday suggested that a single crafted packet could cause Windows XP SP2 and Windows 2003 Server to become unstable.
     
  3. se7engreen

    se7engreen Registered Member

    Joined:
    Feb 6, 2004
    Posts:
    369
    Location:
    USA
    The need for a firewall is real. I don't expect that you care to hear technical jargon, but I think no firewall protect would be the equivalent of living in Sacramento, CA and deciding not to install locks on your doors or windows. Granted, a lot of firewall vendors try to sell firewalls with a lot of bells and whistles for a higher cost. The bottom line, the idea of basic firewall protection is necessary, even if it's just enabling the firewall included in WinXP, it's a great step up from nothing.

    As for Kerio, there is a good, downloadable rule set out there but I'm not sure where.
    Edit:
    http://www.dslreports.com/forum/remark,8023708~mode=flat
    Here's a thead with the downloadable rules and it looks like a tutorial from BlitzenZeus, the one who created the ruleset.
     
    Last edited: Mar 7, 2005
  4. Marja

    Marja Honestly, I'm not a bot!!

    Joined:
    Mar 8, 2004
    Posts:
    4,553
    Location:
    In the Vast Fields of My Mind
    Mem,
    I just tried your link, the Windows XP: Surviving the First Day, it downloaded a corrupt .pdf fileo_O Don't know what that was about?

    Triluid,
    If you want a set and forget firewall and are using WinXP2 - use the Windows firewall, it's the easiest one I know, not necessarily a strong one, but if your alternative is to NOT run one, turn that one on!

    Go to your control panel(start>control panel- click open) >go to security center open it >the first box is your Windows firewall, just click "on".

    There are some settings you can use, that's up to you, with a firewall you are not only protecting you and your family but other people who might be infected BY something you pick up traveling the 'net.

    Someone here probably has a link to Kerio's ruleset, it is also on this forum - somewhere!?! ;) But, it is NOT a set and forget even with the rule sets.

    That's a good analogy, from se7engreen, would you leave your house open and unlocked? That's what you are doing with your computer! I wouldn't!

    Cheers!
    Marja:cool:
     
  5. Mem

    Mem Guest

    Hmm, the pdf worked for me but it's from 2003 and not as relevant as the present 'survival time' is 23 min... The one I was really using as an example is the Sans Handler's Diary for today. Here's an exploit that a firewall will prevent - it's been publicly released without any MS patches yet - the reason a firewall is needed (and XPSP2 at that).
     
  6. kareldjag

    kareldjag Registered Member

    Joined:
    Nov 13, 2004
    Posts:
    622
    Location:
    PARIS AND ITS SUBURBS
    Hi,

    Sufing without any firewall is really dangerous (almost if you have sensitive informations like your visa's number).

    Without a firewall, your computer is visible on the web .
    Therefore, your probes/ports appears to be opened.
    An attacker can scan the web (IPs) in order to find vulnerables computers (like your pc).

    And with some well known methods, it will be easy for him to place and hide a backdoor/trojan/rat/rootkit/worm for any target he wants.
    Finally, your computer can be totally controlled and all will appear to be normal.

    For beginners, the next link can be interesting to elaborate a classical line defense.
    "7 step security plan" ( the fist step concerns firewall and that means it's really important):

    http://cybercoyote.org/security/plan.shtml

    This firewall section is also full of informations.

    Hope this helps.

    Regards
     
  7. Mem

    Mem Guest

    @Marja

    I was on a 'test' box when I tried accessing the pdf that worked - another PC wouldn't download, looks like due to my protection settings somewhere blocking scripts, Java, cookies and popups but haven't identified where yet. Strange.
     
  8. Marja

    Marja Honestly, I'm not a bot!!

    Joined:
    Mar 8, 2004
    Posts:
    4,553
    Location:
    In the Vast Fields of My Mind
    I will try it again, maybe it's mine! :)
     
  9. Marja

    Marja Honestly, I'm not a bot!!

    Joined:
    Mar 8, 2004
    Posts:
    4,553
    Location:
    In the Vast Fields of My Mind
    I don't know what it is either, it starts out fine, then the Adobe file disappears and a second SANS window shows up and just hangs there blank - like my ideas, right now?!?

    Never seen a .pdf file just blink out like that, though. Agree, Strange.

    Adobe says "this file is corrupted and can not be opened."
    That help? :D


    Hope we have convinced you to turn on a firewall, Tiluid!:)
     
    Last edited: Mar 7, 2005
  10. tiluid

    tiluid Registered Member

    Joined:
    Nov 9, 2004
    Posts:
    41
    Location:
    Bulgaria -> Sofia
    Thanks for all replies!
    Thank you mem, se7engreen and kareldjag for the links.

    I also tried the link: "Windows XP: Surviving the First Day". But dont know with which program to open the *.pdf file.
     
  11. tiluid

    tiluid Registered Member

    Joined:
    Nov 9, 2004
    Posts:
    41
    Location:
    Bulgaria -> Sofia
    Yes, i'll run a firewall(Kerio 2.1.5) but it is going to be a hard work learning how to use it.
     
  12. claire

    claire Guest

  13. Mem

    Mem Registered Member

    Joined:
    Mar 7, 2005
    Posts:
    292
    Last edited: Mar 7, 2005
  14. tiluid

    tiluid Registered Member

    Joined:
    Nov 9, 2004
    Posts:
    41
    Location:
    Bulgaria -> Sofia
    Mem, tell me can I open this file with another program,... not Adobe Acrobat, because I dont have it.
     
  15. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    53,608
    Location:
    Texas
  16. Mem

    Mem Registered Member

    Joined:
    Mar 7, 2005
    Posts:
    292
  17. Arup

    Arup Guest

    www.filescab.com has Filescab which is a free firewall, it is pretty light on resources, supports ICS and is rule based like Kerio but comes with a well built set of rules which even a novice can use right out of the box. Passed Sheilds Up and other tests at PC Flank and also passed all the Sygate Scan. The only reason that I dont see it around is that it comes from China and English language support can be a problem.
     
  18. BlackSwan

    BlackSwan Registered Member

    Joined:
    Jul 13, 2003
    Posts:
    104
    Um... The Filescab link doesn't seem to work, and Google is unfortunately no help... An alternate link for this firewall, perhaps? I'd be interested in taking a look. :)
     
  19. Arup

    Arup Guest

    Sorry BlackSwan,

    Here is the link, the name is quite tough to remember.

    www.filseclab.com
     
  20. Kec Velaskec

    Kec Velaskec Registered Member

    Joined:
    Jul 13, 2004
    Posts:
    32
    http://www.wilderssecurity.com/showthread.php?t=64921&page=3
     
  21. BlackSwan

    BlackSwan Registered Member

    Joined:
    Jul 13, 2003
    Posts:
    104
    That's it! Thank you so much. :)

    BS
     
  22. Arup

    Arup Guest

    Welcome BlackSwan, if you use it, do give the feedback
     
  23. ghost16825

    ghost16825 Registered Member

    Joined:
    Feb 1, 2005
    Posts:
    84
    Has anyone actually read their webpage (real one)?

    I guess that takes care of all my problems. No need to test it, look at silly AV reviews or check the support contract - they're said it's my best choice and they must be right.

    And did anyone check the prices for buying full firewall source code?
    Pffft, I haven't even used the product and I doubt it's even worth downloading.
     
  24. BlackSwan

    BlackSwan Registered Member

    Joined:
    Jul 13, 2003
    Posts:
    104
    Downloading it right now. I'll install it on my test machine and return with news ASAP.

    Thanks again. :)

    BS
     
    Last edited: Mar 8, 2005
  25. Arup

    Arup Guest


    The company is based in China so the English translation is quite funky, wether that makes it a poor product remains to be seen, many say that Kerio 2;15 fails Leak Tests, does that make it a bad product?
     
Thread Status:
Not open for further replies.