Firewall with HIPS?

Discussion in 'other firewalls' started by bellgamin, May 30, 2018.

  1. bellgamin

    bellgamin Very Frequent Poster

    Joined:
    Aug 1, 2002
    Posts:
    7,378
    Location:
    Hawaii
    The ZA HIPS is non-tweakable, as I recall. Right or wrong?
     
  2. EASTER

    EASTER Registered Member

    Joined:
    Jul 28, 2007
    Posts:
    9,770
    Location:
    U.S.A. (South)
    Yes they are. Dying breed that is. In fact long since pretty much toast as you concluded.

    Would've been nice to seen them both (and others) further developed to become compatible with the newer releases of O/S etc. without chop shop jobs done on them and worse, abandoned entirely. But so went they as x64 bit computing took over the show and nudged many developers of once well fashioned security apps (and their creations) into the trash heap of history :(
     
  3. lucd

    lucd Registered Member

    Joined:
    Jan 30, 2018
    Posts:
    686
    Location:
    Island of Woman
    I personally used this in the past so my memory is blurry,
    it is tweakable but clunky, GUi is old from two decades ago

    it has the annoying default rules right from the beginning that u need to change (allow system and so on), the rules are spammed (duplicates of duplicates) and ZA doesn't remember some changes so you decide on stuff that was already asked to you, but will eventually go quiet. I just used to click on first row (there is the first general row and then 4 rows for inbound and outbound) and click deny all connections, unless its something important (browser, AV, svhost). Definitely doable in few minutes but the organization of the rules will always be so-so (a wall of text, with same process under different names so u end up blocking same program five times and fairly hard to recognize what is it blocking). I believe this is not a typical HIPS, it will not block changes to exe (virut infection, if AV is off) but deny connections\some dangerous system changes, it is more tied to connections rather than change or at least it seams to me so.

    ZA has the ability to determine the "state" of program access. They even advertised that even if virus gets in ZA will block all the outbound but it sounds like bs from logical point of view.

    It seams solid. Used permantenly on vista not patched to this day on my parents pc and they never got visibly infected . Not using it myself since its hard to combine it, ERP doesn't work with it on vista and other problems, like heavy with other free AV if a tandem is opted
     
    Last edited: Feb 27, 2019
  4. NormanF

    NormanF Registered Member

    Joined:
    Feb 20, 2009
    Posts:
    2,742
    Huorong has HIPS and I think an IPS firewall. Plays nicely with TinyWall. Its AV isn't the best but I run Kaspersky Free as my primary AV protection. The price is free. Thread on it on MT is extensive.

    HIPS can be configured with antiattack 4.04 and 4.24 custom rules and verdict cache. No pop ups.

    They do sell a commercial enterprise product so that's why their personal suite is free. As I said on the AV forum here, I got it for the HIPS.
     
  5. bellgamin

    bellgamin Very Frequent Poster

    Joined:
    Aug 1, 2002
    Posts:
    7,378
    Location:
    Hawaii
    You mean THIS ONE?
     
  6. NormanF

    NormanF Registered Member

    Joined:
    Feb 20, 2009
    Posts:
    2,742
    Yes. That one.
     
  7. Behold Eck

    Behold Eck Registered Member

    Joined:
    Aug 23, 2013
    Posts:
    562
    Location:
    The Outer Limits
    Works on XP 500mb ram no problem.

    Strict outbound monitoring can be enabled.

    Regards Eck:)
     
  8. NormanF

    NormanF Registered Member

    Joined:
    Feb 20, 2009
    Posts:
    2,742
    Comodo isn't the only HIPS firewall out there. Symantec Endpoint 14.0 unmanaged client offers a standalone HIPS module with Intrusion Prevention, Memory Mitigation and an HIPS firewall.

    It comes with a world class AV module but you can just install the aforementioned HIPS module and have that be the only SEP feature on your PC. You can turn its settings on and off and that's about it. Its a set it and forget it solution.

    bellgamin prefers an HIPS married to a firewall. SEP is light, stable and secure for he wants. There's also a managed version but its expensive, meant for servers and has a ten year license.

    Unmanaged is for now free and unlimited and is the way to go for home users.
     
  9. B-boy/StyLe/

    B-boy/StyLe/ Registered Member

    Joined:
    Sep 19, 2012
    Posts:
    309
    Location:
    Bulgaria
    Comodo is great and currently on my PC, but I really miss OnlineArmor, OSSS and Malware Defender too. :)
     
  10. imdb

    imdb Registered Member

    Joined:
    Nov 2, 2011
    Posts:
    3,285
    you mean opss? the russian fw & av suite?
     
  11. NormanF

    NormanF Registered Member

    Joined:
    Feb 20, 2009
    Posts:
    2,742
    Long obsoleted. Your only choices are Comodo Free Firewall or Symantec Endpoint 14.0 if you just want a Windows 10-11 compatible HIPS firewall. Or in software, Huorong Internet Security or SpyShelter 12.

    Sadly, the days of standalone HIPS applications are long behind us. I loved Online Armor when I ran it in Windows 7 before it was discontinued by Emisoft.
     
  12. B-boy/StyLe/

    B-boy/StyLe/ Registered Member

    Joined:
    Sep 19, 2012
    Posts:
    309
    Location:
    Bulgaria
  13. NormanF

    NormanF Registered Member

    Joined:
    Feb 20, 2009
    Posts:
    2,742
  14. B-boy/StyLe/

    B-boy/StyLe/ Registered Member

    Joined:
    Sep 19, 2012
    Posts:
    309
    Location:
    Bulgaria
    For ARK tools as well. PCHunter is no longer working on latest Windows 10 builds. Windows-Kernel-Explorer as well, but the author promised an update soon. PowerTool and GMER are still working, but they are no longer supported and not powerful enough for my taste nowadays. Aswmbr is also left in the dust. I am glad that at least TDSSKiller and MBAR are still working. :)
     
  15. B-boy/StyLe/

    B-boy/StyLe/ Registered Member

    Joined:
    Sep 19, 2012
    Posts:
    309
    Location:
    Bulgaria
    I know. That's why I said I am missing them! Nostalgia...
     
  16. NormanF

    NormanF Registered Member

    Joined:
    Feb 20, 2009
    Posts:
    2,742
    Same here. Good software is expensive to maintain and update and developers move on. Its a fact of life.
     
  17. imdb

    imdb Registered Member

    Joined:
    Nov 2, 2011
    Posts:
    3,285
  18. NormanF

    NormanF Registered Member

    Joined:
    Feb 20, 2009
    Posts:
    2,742
    Yup. Like Agnitum's Outpost firewall.
     
  19. imdb

    imdb Registered Member

    Joined:
    Nov 2, 2011
    Posts:
    3,285
    i see. :thumb: i loved outpost. it was rock solid.
     
  20. NormanF

    NormanF Registered Member

    Joined:
    Feb 20, 2009
    Posts:
    2,742
    The SEP HIPS firewall is rock solid. If you don't have an AV, the AV module is world class. Only reason I didn't install it is KFA is already on my system.

    The former plays nicely with it and my other security software and its not heavy on resources. Its the successor to Outpost.
     
  21. imdb

    imdb Registered Member

    Joined:
    Nov 2, 2011
    Posts:
    3,285
    umm, i read some unpleasant things about symantec on the forum recently, that it's been acquired by some shady company. so i'd avoid symantec's products.
     
  22. NormanF

    NormanF Registered Member

    Joined:
    Feb 20, 2009
    Posts:
    2,742
    Broadcom which acquired Symantec, spun off its cybersecurity portfolio. In Internet time, these things are far from new, unexpected or cause for alarm.

    People will differ about the acquisition and what it means for the future but that's a topic for another day.
     
  23. blacknight

    blacknight Registered Member

    Joined:
    Sep 25, 2007
    Posts:
    3,092
    Location:
    Europe, UE citizen

    SEP is so granular as OSSS was ?
     
  24. NormanF

    NormanF Registered Member

    Joined:
    Feb 20, 2009
    Posts:
    2,742
    No. Its simpler and I agree with it and on that front I don't really miss all the pop ups.
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.