Hi all, just wondering how many prefer their HIPS stand alone or part of their firewall,personily I think I prefer mine as a stand alone but everyone has an opinion.
Its okay to put them together today we have a much more complex situation then in earlier times, actually we need to combine hips with firewalls to get better protection against firewall tunneling.
I prefer standalone HIPS and standalone firewall so I can choose "best of breed" for each, or choose not to use HIPS at all.
All I want from a firewall is a solid in-bound packet filter. The choice of HIPS is mine alone. I won't use a FW that includes HIPS, or a HIPS that includes a FW, even if you can turn it off. Limits the field, but that's ok.
It's the same choice as having a suite (FW + AV +AS) or everything standalone. Standalone is logical always better, because you can choose the best of its kind.
I prefer stand-alone solutions. A software that is designed to solve many tasks is also been potential to have a higher amount of bugs/exploits (in theory if not well designed). But for a novice an easy-managed suite is maybe a better solution. /C.
Since I use LnS I obvously dont care for "bloated" firewalls. If I werent using windows in a restricted account I might need/want a HIPS but then I would want it to be standalone.
Better if HIPS is integrated in a Firewall so as to make things more "neater", no conflicts, and maybe....a lesser pop-ups...etc, etc.... More so to make it lighter, faster and...of course cheaper in price.
I stay with separate applications. When separate, the HIPS can defend the firewall against termination attacks while the firewall prevents any potential attacks on the HIPS from the internet. Quality components for each can be obtained as freeware such as SSM free and Kerio 2.1.5. Show me a free suite with as much configurability and coverage or one that's any lighter.
It doesn't matter to me. I use OA free. If I wasn't using OA I would probably go with separate programs.
Integrated FW resources: AV, HIPS, ARP Spoofing, Outbound Flood Attack, Password on Self-Protect USB/CD/DVD/Network and still use less system resources. This is how it should be.. Running so many applications for security is pointless. Extra clean-up and spot checks you can run manually in safe mode once a week or once a month to make sure everything is secured.
HIPS with some outbound protection sounds nice. OT, I hope Defensewall integrates outbound protection soon.
As long as both components do their job correctly, I don't know why they shouldn't be integrated. But I don't use any software firewall, since my router has a SPI capable firewall.
My router has all 3 and wireless access point as all 3 NAT, SPI and Intrusion Detection. So does the software firewall RIS, but it as outbound flood attack sensor. Router alone can't protect your PC still need add protection. Again you don't have to load everything out there but streamline. Some MOBO has Boot Sector Virus Protection. Have you guys check to see if that's enabled? Or you could run added software filter based like SNORT NIPS (network intrusion prevention system) and network intrusion detection system (NIDS) on Windows 32-bit.. What is SNORT http://www.snort.org/ Win32 version of SNORT OpenSource http://www.snort.org/dl/binaries/win32/
