Why you don't need a firewall (article)

Are you using EMET, or have you used EMET? It might be something that would work well with your preferred security approach.

 

I looked into it, but it is too bothersome to set up, even DEP at max caused many games to fail without actually giving a supposed message, that it was due to DEP.

 

I tried using EMET in the past, and it interfered with, "Type Accents" which is software I use to type in multiple languages. I wasn't sure how to tweak the settings to eliminate the conflict, and I didn't really need it since I already use Appguard so I didn't look into it.

 

BTW, I see, that you are trying to help, I appreciate it, but I am install and forget guy. I focus my security triangle on usability and comfortability rather then security.

 

The security setup that I use most often is Online Armor, NOD 32, and Appguard. If I don't use Appguard then I replace it with VoodooShield. I have other applications listed in my signature, but I manage other peoples computers as well. I do have Shadow Defender installed on all my machines, but I use it on-demand. Shadow Defender is probably the best application you can have if you let anyone else use your computer.

 

If we are behind a router/modem firewall there may not be a need for a software firewall unless we need outbound filtering. I still need a software firewall as I connect my USB modem directly to my system.

Many years ago after I installed windows xp sp1 I forgot to enable firewall and within seconds of connecting to internet I got a worm and my computer started to restart continuously. I still fear that situation and I cannot use my system without a software firewall

 

Why would Anyone not want Outbound Filtering too ?

 

By default on Windows 7 there are quite few open ports. One example: https://www.wilderssecurity.com/showthread.php?t=302044
You might not get owned since there is not much worms floating around. Hackers know that most users have at least default OS built-in FW enabled, so they don't bother with creating malware that would target those ports. If we all disable all kinds of FWs, this would change quickly. I also don't see any good reason to disable firewall in my router and built-in FW. They don't make any problems and use virtually no resources.

hqsec

 

So how was your laptop accessing the Internet? My guess is a router. Sounds like you had a hardware firewall the whole time.

In fact, that's a big difference between now and 10 years ago. A whole lot more routers providing an extra layer of protection that didn't always exist in the past.

 

Yeah, if he was using a router then he most likely had a hardware firewall without knowing it.

 

Have you bothered to read my post ,never said seconds.

A pppoe connection with no modem ,never used one , fully connected to internet with no firewall is suicidal.

Once you start using your PC with something that connects ,stuff will start to arrive and in a matter of minutes or hours your antivirus will start popping virus alerts for known worms ,God knows how many unknown will enter.It s a compromised machine.Seen this on my REAL(not virtual) machine many times ,when i was ignoring security all together ,never cared though at that time.
What to say about hack attempts from within the local network that is also created with a pppoe.

Stop spreading such illusions that with Windows and no firewall you are protected.

How can you spread such info on a security forum is beyond my understanding.

A firewall IS needed an antivirus NOT ,simple as that.

 

Because most people on this forum understand, that a difference between closed and stealth ports is zero.

No I am not a moron, I have no router, though I am behind one, since I have a shared IP, but I used no firewall when I had XP with a public IP, no viruses back then either.

Disabling NETBIOS, shared services like SSPD and so on is considered the basic, even with a firewall in place.

 

I believe that this is not basic for 99% of Windows users nor possible for a lot of them. Some kind of file and printer sharing is present almost in every company. After all, we do live in 21th century

hqsec

 

This are story tales ,but if you consider it s ok for YOU to have no firewall is really your problem.
PPPoE people should not try what you are saying as they will get owned in a matter of hours.

 

Well this forum is obviously not for common folk. I would never advice anyone not to use AV nor firewall. I am just sick of hearing, that once you plugin an unprotected computer to the internet, it will get infected by itself within seconds, 7 or 8 are far from XP. My "normal" friend does not use AV, it interferes with warez, he likes porn and when I check his PC time to time, it is always clean. I just used some of my settings on his PC, so I guess, that if it works on him, I should not get worried either.

 

Roger Grimes is just looking to bring attention to himself (kind of like Miley Cyrus ~ Snipped as per TOS ~), and it pays big time when people come and comment to this nonsense (See I did it) .
Who knows, maybe he is being paid off by Black Hat Crackers or something similar?

 

"The 34-page guide Harris released Thursday advises smaller businesses to encrypt data, use a secure browser connection, install firewalls, protect passwords and prepare an emergency response plan if a cyberattack is suspected, among other steps. It was developed at no cost to the state in cooperation with the California Chamber of Commerce and security experts at Lookout, a San Francisco-based mobile security firm."

 

It does make you question the motives behind some of these articles, as well as some of the similar posts found here.

Resistance is futile! We can bypass your firewalls so why have one? You probably didn't configure it right anyway. You have been assimilated since we've already compromised your system.

Who writes this trash, NSA sock puppets? It reminds me of posts I've seen here regarding classic HIPS. "If you know how to use one, you probably don't need it."

 

It s about keeping your PC healthy and clean.
With no firewall you are simply wide open that s all.
The warez may install stuff to be used at a later time as for a botnet or may allow remote jobs when needed.

 

What Do Firewalls Protect? An Empirical Study of Firewalls, Vulnerabilities, and Attacks (2010)

 

Two thoughts:

1] How can a computer disallow un-authorised outbound traffic without some mechanism to do so and

2] When it comes to security imagine this scenario....Some worker has their large and heavy toolbox at work and it has a good padlock on it. A thief comes along and sees the unattended toolbox but discovers a strong padlock on it and moves on looking for an unsecured toolbox to pilfer. Another day some other thief comes along and sees the toolbox and tries to use a bolt cutter to open the padlock. The thief may be successful and maybe not depending on the bolt cutter and padlock. On yet another day a third thief comes along and sees the toolbox and decides to try to steal it. The thief might gt away with and perhaps not.

This illustration is meant to demonstrate various levels of attempt to make an intrusion. In the computer world there are various levels of thieves and their success rate for stealing depends on both their intent level and the level of security the computer and network have. Thieves with different levels of thievery are all around all the time so that leaves just one question: Exactly how secure would you like your computer/network to be?

 

I read an article some time ago, that the more security applications you have, the higher risk of being hacked though their vulnerabilities, since they are running with system privileges. If a hacker gain control over them, it is much worse than just some virus with admin privileges. I saw some nice working POC of popular firewalls and AVs back then.

 

reading two pages of av+fw+etc vs none at all, is always refreshing

I believe many ppl here will survive without av or software fw.
but many are just addicted to have one or two (or twelve if you want )

 

I think it's more like some of us know how to use a firewall and utilize it to their benefit.

 

I recall using firewall beyond limits, I was very close to allow only IPs of webpages I visited, so everything else would be blocked and then I realized, I was getting too insane.
I am not IT guy, I am just a newbie, who wants to have PC as secure as possible without actually doing anything, setup and forget is my rule and hope for the best.
I had my share of experiences trying to have as secure PC as possible until I have figured out, that I have spent more time securing PC, than actually enjoying/using it.
I visit Wilders to read about new treats, to see, if I need to change my no security philosophy, so far I have find no POC, that would persuade me, not even Cryptolocker.