I need opinion on Windows Firewall with MS Antispyware real time monitor

Discussion in 'other firewalls' started by c0ltran3, Jun 27, 2005.

Thread Status:
Not open for further replies.
  1. c0ltran3

    c0ltran3 Registered Member

    Joined:
    Nov 8, 2003
    Posts:
    172
    Could you give me your opinion about Windows Firewall?
    In particular I'd like to know if I could erases Windows Firewall's weakness using it together with MS Antispyware real time monitor.
    Thanks in advance.
     
  2. Syncman9

    Syncman9 Registered Member

    Joined:
    Jul 28, 2004
    Posts:
    113
    Location:
    UK
    To be honest, I would start by saying ditch windows firewall altogether.

    It's not a very good firewall, and only blocks incoming connections and not very well at that.

    I would recommend get something like the free version of zone alarm or sygate or kerio.
     
  3. richrf

    richrf Registered Member

    Joined:
    Dec 11, 2003
    Posts:
    1,907
    Concur. Free version of any the aboved mentioned is highly desirable (I have paid version of ZA in order to keep my firewall current).

    MS Anti-spyware provides some protection - but it is really hit or miss. I would start with a top-rated anti-virus that has excellent anti-virus/anti-spyware protection (I use Kaspersky). If you are concerned about keyloggers, then either use a progam like Snoopfree (free version available) or even better look at ProcessGuard and RegDefend which will stop spyware (e.g. rootkits and keyloggers) from installing in the first place. I would personally place a good anti-malware product like Ewido ahead of MS AS. Some good anti-spyware that is available for free is Ad-aware and Spybot.

    Rich
     
  4. marceli7

    marceli7 Registered Member

    Joined:
    May 6, 2005
    Posts:
    33
    AFAIK it blocks incoming very well. Am I wrong?
     
  5. Syncman9

    Syncman9 Registered Member

    Joined:
    Jul 28, 2004
    Posts:
    113
    Location:
    UK
    If you consider how flawed MS Windows is in the first place, would you really want to rely on it's firewall?

    Actually it's a very poor firewall, it's very basic, and can be easily bypassed.

    Zone alarm has a good free version, with far better controls and it's much more secure, so what have you got to lose? it's free :)
     
  6. Kerodo

    Kerodo Registered Member

    Joined:
    Oct 5, 2004
    Posts:
    7,780
    I would agree, and it gives you that outbound control. ZA would be better.
     
  7. marceli7

    marceli7 Registered Member

    Joined:
    May 6, 2005
    Posts:
    33
    Syncman9! Have U any information about
    I found your opinion rather strange. AFAIK it blocks incoming. Period.
    Again... Am I wrong?
     
  8. Syncman9

    Syncman9 Registered Member

    Joined:
    Jul 28, 2004
    Posts:
    113
    Location:
    UK
    marceli7,

    The windows XP firewall is a very poor excuse for a firewall, and your argument that it blocks incoming connections well, is also not correct.

    For example, if you enable file and print sharing, it makes this service avaliable for all to see. It means the ports are visable to the internet, and any traffic inbound or outbound can access these ports. A good firewall would prevent any traffic which is not within the network subnet.

    This is but one of many flaws.

    This thread asked for opinions on the windows firewall, and I've given mine.
     
  9. CrazyM

    CrazyM Firewall Expert

    Joined:
    Feb 9, 2002
    Posts:
    2,428
    Location:
    BC, Canada
    No you are not wrong, the Windows Firewalls does a good job of blocking unsolicited inbound packets.

    Regards,

    CrazyM
     
  10. CrazyM

    CrazyM Firewall Expert

    Joined:
    Feb 9, 2002
    Posts:
    2,428
    Location:
    BC, Canada
    If you permit the default exceptions for file and print sharing on a LAN system the scope is limited to the subnet. How does that expose the shares to the Internet? Not to mention that such a system would be behind a router or ICS system and these shares would not be visible to the Internet to begin with.

    If you are saying the Windows Firewall could be misconfigured, then yes it could, as could any firewall.

    General comments like this do not help discussions. Perhaps you could be more specific.

    Regards,

    CrazyM
     
  11. RejZoR

    RejZoR Registered Member

    Joined:
    May 31, 2004
    Posts:
    6,426
    Windows XP SP2 firewall is certanly not flawed. It does its job and it does it very well when it comes to inbound. It never failed a single incoming test on any testing site like GRC. On the other hand,Kerio failed me several times without any logical reason. I agree, it has a limited outbound protection,limited to server like apps only. It should stop any Blaster like malware and backdoors with server like activity. Biggest pro is a very small memory usage.
    If you know the security stuff,Windows XP SP2 firewall can serve you very well.
    Especially if you love to use your eMule :)
     
  12. AvianFlux

    AvianFlux Registered Member

    Joined:
    Dec 7, 2004
    Posts:
    237
    If MS Antispyware stops the spyware from installing and sending outbound packets - yes.

    I use Windows SP2 firewall, with ALL permissions denied except for a couple of apps I trust. No real time spyware monitors are activated, relying instead on preventative spyware killers, and a HOSTS file. No anti-virus app either. All unnecessary services are disabled or set to manual per Black Viper's XP Service Guide.
     
  13. Syncman9

    Syncman9 Registered Member

    Joined:
    Jul 28, 2004
    Posts:
    113
    Location:
    UK
    Crazy M, from what I understand the fault is much more serious, it doesn't limit the connections to just the subnet, it allows anything though and allow the file and print sharing services to be fully visable to the internet.

    Yes, if your behind a router then it would be a different matter, but then if your behind a good router which probably has decent firewall, then you'd probably want to control outbound connections and use some decent application control software.

    I kinda of feel I've touched a nerve, and that was never my intention, so sorry for that.
     
  14. CrazyM

    CrazyM Firewall Expert

    Joined:
    Feb 9, 2002
    Posts:
    2,428
    Location:
    BC, Canada
    There was an issue with dial-up adapters and file/printer shares, but that has since been patched. Unless you are aware of something else you could point us to.

    Nerves are fine, just looking for clarification on your comments ;)

    Regards,

    CrazyM
     
  15. marceli7

    marceli7 Registered Member

    Joined:
    May 6, 2005
    Posts:
    33
    Thank U CrazyM!
     
Loading...
Thread Status:
Not open for further replies.