HIPS vs Pure Firewall

Discussion in 'other firewalls' started by JerryM, Aug 4, 2010.

Thread Status:
Not open for further replies.
  1. JerryM

    JerryM Registered Member

    Joined:
    Aug 31, 2003
    Posts:
    4,221
    Although I have addressed it in various threads I have never receoved an answer that I can understand.

    Firewalls such as LooknStop are called pure firewalls evidently. I take that to mean no HIPS. Online Armor on the other hand is a HIPS firewall.

    I have used both without problems or slowdowns as far as I can determine.

    So why would not one always go with a HIPS firewall if it did not cause problems with his system. Would not the HIPS firewall add to overall security?
    Thanks.

    Regards,
    Jerry
     
  2. King Grub

    King Grub Registered Member

    Joined:
    Sep 12, 2006
    Posts:
    814
    It does, but it can also mean that the user has to be prepared to take more time configure the HIPS program, and in many cases it can mean dealing with decisions regarding what application is allowed to do what, something the average user might not be capable of or interested in doing.

    If I installed a HIPS on my mom's computer and it asked her if application X was allowed to load the MSICPL.sys driver, would she be able to determine if it should or shouldn't be allowed to do so?
     
  3. kjdemuth

    kjdemuth Registered Member

    Joined:
    Jul 29, 2005
    Posts:
    2,960
    Location:
    Boston, MA
    Useability is one of the greatest concerns with HIPS firewalls. A lot of people don't want to answer 2-3 prompts for a program to run. Some other folks already have a resident BB or HIPS and only need a firewall. Its all a matter of configuring a setup that works for you.
     
  4. bellgamin

    bellgamin Very Frequent Poster

    Joined:
    Aug 1, 2002
    Posts:
    5,648
    Location:
    Hawaii
    Also, some folks prefer separate apps -- a pure FW (Look'n'Stop for example) plus a classic HIPS (Malware Defender for example).

    Other possibilities include:
    1- Pure FW plus *Specialized Security App* (SpyShelter, for example -- a powerful antikeylogger plus pretty good system protection along the lines of a specialized HIPS)

    2- Pure FW plus Behavior Blocker (Mamutu for example)

    3- Pure FW plus antiexec-type app (PE Guard for example)

    4- Pure FW plus isolationist-type app (App Guard for example)
    ~~~~~~~~~~~~~~~~~~~~~~~~~

    Which of the above combos is best...
    + for a skilled computer geek who loves to tinker?
    + for my maiden aunt who has NO idea about computer security?
    + for a fairly skilled computer user who wants good security but without a whole bunch of bother?
    +For use in a classroom or kiosk situation?

    I have perfect knowledge of all the necessary information (provided, of course, that no one asks me any questions.) :ninja: :cautious: ;)
     
  5. JerryM

    JerryM Registered Member

    Joined:
    Aug 31, 2003
    Posts:
    4,221
    Thanks, All. That helps a lot.
    Regards,
    Jerry
     
  6. lonelywolf

    lonelywolf Registered Member

    Joined:
    Jun 10, 2009
    Posts:
    73
    Kerio Personal Firewall 2.1 ( free ) with some hips, for instance defensewall 2.56
    Very light.
    ;)
     
  7. dcrowe0050

    dcrowe0050 Registered Member

    Joined:
    Sep 1, 2009
    Posts:
    378
    Location:
    NC
    I think a lot of people would rather use separate stand alone apps like was said above. I also know that there are some, even if they are few, that do not believe in HIPS components, or do not need them due to their location or setup, whether they are on a laptop and travel around a lot, etc. And of course the majority of people just install what they are told to install and do not question it much at all.
     
Loading...
Thread Status:
Not open for further replies.