Discussion in 'other firewalls' started by bellgamin, May 30, 2018.
The ZA HIPS is non-tweakable, as I recall. Right or wrong?
Yes they are. Dying breed that is. In fact long since pretty much toast as you concluded.
Would've been nice to seen them both (and others) further developed to become compatible with the newer releases of O/S etc. without chop shop jobs done on them and worse, abandoned entirely. But so went they as x64 bit computing took over the show and nudged many developers of once well fashioned security apps (and their creations) into the trash heap of history
I personally used this in the past so my memory is blurry,
it is tweakable but clunky, GUi is old from two decades ago
it has the annoying default rules right from the beginning that u need to change (allow system and so on), the rules are spammed (duplicates of duplicates) and ZA doesn't remember some changes so you decide on stuff that was already asked to you, but will eventually go quiet. I just used to click on first row (there is the first general row and then 4 rows for inbound and outbound) and click deny all connections, unless its something important (browser, AV, svhost). Definitely doable in few minutes but the organization of the rules will always be so-so (a wall of text, with same process under different names so u end up blocking same program five times and fairly hard to recognize what is it blocking). I believe this is not a typical HIPS, it will not block changes to exe (virut infection, if AV is off) but deny connections\some dangerous system changes, it is more tied to connections rather than change or at least it seams to me so.
ZA has the ability to determine the "state" of program access. They even advertised that even if virus gets in ZA will block all the outbound but it sounds like bs from logical point of view.
It seams solid. Used permantenly on vista not patched to this day on my parents pc and they never got visibly infected . Not using it myself since its hard to combine it, ERP doesn't work with it on vista and other problems, like heavy with other free AV if a tandem is opted
Huorong has HIPS and I think an IPS firewall. Plays nicely with TinyWall. Its AV isn't the best but I run Kaspersky Free as my primary AV protection. The price is free. Thread on it on MT is extensive.
HIPS can be configured with antiattack 4.04 and 4.24 custom rules and verdict cache. No pop ups.
They do sell a commercial enterprise product so that's why their personal suite is free. As I said on the AV forum here, I got it for the HIPS.
You mean THIS ONE?
Yes. That one.
Works on XP 500mb ram no problem.
Strict outbound monitoring can be enabled.
Comodo isn't the only HIPS firewall out there. Symantec Endpoint 14.0 unmanaged client offers a standalone HIPS module with Intrusion Prevention, Memory Mitigation and an HIPS firewall.
It comes with a world class AV module but you can just install the aforementioned HIPS module and have that be the only SEP feature on your PC. You can turn its settings on and off and that's about it. Its a set it and forget it solution.
bellgamin prefers an HIPS married to a firewall. SEP is light, stable and secure for he wants. There's also a managed version but its expensive, meant for servers and has a ten year license.
Unmanaged is for now free and unlimited and is the way to go for home users.
Comodo is great and currently on my PC, but I really miss OnlineArmor, OSSS and Malware Defender too.
you mean opss? the russian fw & av suite?
Long obsoleted. Your only choices are Comodo Free Firewall or Symantec Endpoint 14.0 if you just want a Windows 10-11 compatible HIPS firewall. Or in software, Huorong Internet Security or SpyShelter 12.
Sadly, the days of standalone HIPS applications are long behind us. I loved Online Armor when I ran it in Windows 7 before it was discontinued by Emisoft.
No. OSSS - Online Solutions Security Suite
A decade ago! SEP has all the same features and its currently being maintained. OSSS is abandonware.
For ARK tools as well. PCHunter is no longer working on latest Windows 10 builds. Windows-Kernel-Explorer as well, but the author promised an update soon. PowerTool and GMER are still working, but they are no longer supported and not powerful enough for my taste nowadays. Aswmbr is also left in the dust. I am glad that at least TDSSKiller and MBAR are still working.
I know. That's why I said I am missing them! Nostalgia...
Same here. Good software is expensive to maintain and update and developers move on. Its a fact of life.
never heard of it. thought you were referring to agnitum's outpost ss.
so it was another russian gem of a fw suite, huh?
Yup. Like Agnitum's Outpost firewall.
i see. i loved outpost. it was rock solid.
The SEP HIPS firewall is rock solid. If you don't have an AV, the AV module is world class. Only reason I didn't install it is KFA is already on my system.
The former plays nicely with it and my other security software and its not heavy on resources. Its the successor to Outpost.
umm, i read some unpleasant things about symantec on the forum recently, that it's been acquired by some shady company. so i'd avoid symantec's products.
Broadcom which acquired Symantec, spun off its cybersecurity portfolio. In Internet time, these things are far from new, unexpected or cause for alarm.
People will differ about the acquisition and what it means for the future but that's a topic for another day.
SEP is so granular as OSSS was ?
No. Its simpler and I agree with it and on that front I don't really miss all the pop ups.
Separate names with a comma.