Kerio Firewall.

Discussion in 'other firewalls' started by cibaker, Oct 27, 2004.

Thread Status:
Not open for further replies.
  1. cibaker

    cibaker Registered Member

    Joined:
    Oct 27, 2004
    Posts:
    1
    Hi all, Ive just downloaded Kerio Personal Firewall 4, and ive noticed it doesnt ask me if i want to permit or block applications when i start programs, like Zonealarm and other software firewalls do. I have enabled the option "Use existing system security rules, or ask me" option under "When an application is about to start".

    But it doesnt ask me when i start new applications, it just doesn't feel safe, What if a virus or a dialer trys to connect to the internet, it will let it.

    Any ideas how to fix this?
     
  2. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    57,740
    Location:
    Texas
    cibaker

    It's been awhile since I tested KPF4. If it were me, I would download the manual or check the help file closely.
    It should alert when apps try to open other apps.

    Kerio
     
  3. bigc73542

    bigc73542 Retired Moderator

    Joined:
    Sep 21, 2003
    Posts:
    23,873
    Location:
    SW. Oklahoma
    It absoluty should alert you.
     
  4. Kerodo

    Kerodo Registered Member

    Joined:
    Oct 5, 2004
    Posts:
    7,780
    You might want to consider another firewall. Kerio 4.1x is quite buggy still. I'd give it another 3-6 months before they get things stabilized. I played with several of the beta's before the 4.1 release and there were many bugs. Then they rushed right into release, with many things unfixed.

    Check Kerio's forums for more info and see some of the problems others are having..
     
  5. Amerk_5

    Amerk_5 Registered Member

    Joined:
    May 22, 2003
    Posts:
    78
    Location:
    Dansville, NY
    Kerio v2.1.5 is an excellent choice. I still use it among many people who tried Kerio v4.x and couldn't stand it.
     
  6. Kerodo

    Kerodo Registered Member

    Joined:
    Oct 5, 2004
    Posts:
    7,780
    Kerio 2.1.5 is definitely the best of the two. Doesn't seem like 4.x will survive.
     
  7. no13

    no13 Retired Major Resident Nutcase

    Joined:
    Sep 28, 2004
    Posts:
    1,327
    Location:
    Wouldn't YOU like to know?
    kerio 4.0.x is better and less buggy.
     
  8. Kerodo

    Kerodo Registered Member

    Joined:
    Oct 5, 2004
    Posts:
    7,780
    That's probably true.. 4.0.16 might be ok. 4.1.x is a mess...
     
  9. dlhan

    dlhan Registered Member

    Joined:
    Nov 4, 2004
    Posts:
    6
    Just to make sure (because I forgot to) you did place a checkmark in the "Enable System security Module" at the top of the applications page.
     
  10. Jimbob1989

    Jimbob1989 Registered Member

    Joined:
    Oct 18, 2004
    Posts:
    2,529
    I have heard great things about the firewall however problems can occur with any software.

    Jimbob
     
  11. james2323

    james2323 Guest

    Except kerio 2.1.5 doesnt handle fragmented packets which is very serious
     
  12. no13

    no13 Retired Major Resident Nutcase

    Joined:
    Sep 28, 2004
    Posts:
    1,327
    Location:
    Wouldn't YOU like to know?
    hey james2323... care to explain "fragmented packets" and their mishandling? What kind of hacker would implement THAT attack on a poor home user? Maybe such an attack from usual website is more probable (just as a result of poor programming)
     
  13. Kerodo

    Kerodo Registered Member

    Joined:
    Oct 5, 2004
    Posts:
    7,780
    Yes, this is very true.. I have stopped using 2.1.5 because of this problem. Not only fragmented packets, but it looks like it doesn't handle TCP with certain flags also. A lot of Kerio 2.x users are going to be very unhappy about this. The sad thing is, I'm betting that a lot of people are just going to ignore it too.

    See the thread below for more details:

    http://www.dslreports.com/forum/remark,11787449~mode=flat
     
  14. james232

    james232 Guest

    LOL, it does not take a hacker to craft fragmented packets.

    Altough Kerodo apparantly just discovered it ,it is actually very old news. Search this forum for details.
     
  15. james232r

    james232r Guest


    LOL, sure they will ignore it, they have ignored it for years... Search this forum for instance and you will see it is periodically mentioned.
     
  16. james232r

    james232r Guest

    Here's a tip, most people have no idea at all about TCP/IP at all. SYN, ACK,FIN etc just greek to them.

    To many, a good firewall is something that gives them a stealth rating at grc, and one that blocks leak test :)
     
  17. Kerodo

    Kerodo Registered Member

    Joined:
    Oct 5, 2004
    Posts:
    7,780
    Very true..
     
  18. no13

    no13 Retired Major Resident Nutcase

    Joined:
    Sep 28, 2004
    Posts:
    1,327
    Location:
    Wouldn't YOU like to know?
    hmm... so is it impossible for us to "break into" kerio's "hiden" default rules that show up in the logs but not in the ruleset listing? Kerio 4x IDS may be manipulated (its snort based), but I was told that the rest is encrypted. So can we? Shouldn't a 3rd party program exist for this?
     
Loading...
Thread Status:
Not open for further replies.