SSM + CHX-I + sensiveguard

Discussion in 'other anti-malware software' started by ogodei, Jan 7, 2007.

Thread Status:
Not open for further replies.
  1. ogodei

    ogodei Registered Member

    Joined:
    Jan 5, 2007
    Posts:
    18
    I'm now using the combo SSM + kerio 2.1.5 (I'm in the learning curve of the former and have been a long time user of the later).

    Do anyone here have tried / is using SSM + CHX-I + sensiveguard?
    Do they work smoothly together?
    Are sensiveguard's issues solved?
     
  2. KDNeese

    KDNeese Registered Member

    Joined:
    Dec 16, 2005
    Posts:
    236
    I have not tried Sensiveguard but have tried CHX-I with SSM & Kerio 2.1.5. I don't believe there are any conflicts with SSM, but I have read of there being some issues between Kerio & CHX-I. I know the combination did not work for me at all. CHX-I was always going nuts, giving me error messages, needing to close, etc. Also, if you are concerned about the fragmented packets issue with Kerio (which, I assume, is the reason you are considering running 2.1.5 and CHX-I together), there are other free firewalls out there that have proven themselves and which I feel would be better choices than Sensiveguard (such as Comodo, ZA free, Jetico 1).
     
  3. Jarmo P

    Jarmo P Registered Member

    Joined:
    Aug 27, 2005
    Posts:
    1,184
    Last edited: Jan 10, 2007
  4. ogodei

    ogodei Registered Member

    Joined:
    Jan 5, 2007
    Posts:
    18
    @ KDNeese

    Thanks KDNeese, but I have read this post and I'm not so sure about that. I think that Harden-It 1.2 (free) is doing this registry teak, so it will let go outbound fragmented packets without reassembling them and kerio wouldn't notice them.

    @ Jarmo P

    Thanks Jarmo P. I see you are using Sygate 5.5 free. I also heard that syagate is very light on resouces, so why didn't you have mentioned sygate? Do sygate have any issues?

    @ everyone

    I've read this post @ castlecops. Do anyone have tried A-wall? What is your opinion?
     
  5. Jarmo P

    Jarmo P Registered Member

    Joined:
    Aug 27, 2005
    Posts:
    1,184
    I have run kerio 2.1.5 on my system for 1.5 years.

    Sygate is an easy learned, light, stable firewall, that should NOT be used if you run local proxy software. Proxomitron is such and some antiviruses like Avast has them too. Makes you loose outbound connection protection of SPF.
    It is no leaktest passer on its own.

    With my current security setup I could use it. I have uninstalled one and installed other, switched between them many times.
    But I remain in general with kerio.
    They are both old discontinued firewalls.
    You can read more from my user guide in the sig link below.
     
  6. Stem

    Stem Firewall Expert

    Joined:
    Oct 5, 2005
    Posts:
    4,948
    Location:
    UK
    That is a good combination.

    Personally I would not install, or advise a member to install 2 packet filter firewalls. Even if the installation may look o.k., there can be underlying conflicts with packet processing/filtering.
     
  7. ogodei

    ogodei Registered Member

    Joined:
    Jan 5, 2007
    Posts:
    18
    I see... Not using proxomitron is out of question! In that case kerio's fragmented packets problem is a lesser issue.

    Do anyone have tried a-wall (download link still working) or have a user manual for it?
     
  8. Stem

    Stem Firewall Expert

    Joined:
    Oct 5, 2005
    Posts:
    4,948
    Location:
    UK
    There are some posts on this:examples: here and here
     
  9. ogodei

    ogodei Registered Member

    Joined:
    Jan 5, 2007
    Posts:
    18
    Thanks Stem.

    Although A-wall doesn't check the integrity of applications with network access, SSM would manage that, I think.

    Concerning betauser2's question, can all ports be stealthed or not?
     
  10. Stem

    Stem Firewall Expert

    Joined:
    Oct 5, 2005
    Posts:
    4,948
    Location:
    UK
    Yes, SSM would inform you of program change.

    I never got around to checking on that, but this is not a security problem, as long as the ports are not open.
     
  11. ogodei

    ogodei Registered Member

    Joined:
    Jan 5, 2007
    Posts:
    18
    I know, but I rather prefer some obfuscation.
     
  12. ogodei

    ogodei Registered Member

    Joined:
    Jan 5, 2007
    Posts:
    18
    Have tested a-wall and I didn't like it:

    1. doesn't have a way of controlling traffic by protocol,
    2. doesn't have a way of controlling traffic by port / port range,
    3. doesn't have a way of controlling traffic by IP / IP range.

    Have tried hard to find a manual / tutorial, but I haven't found one. When I tested a-wall, I understood why: there isn't that much to configure.

    And at least, but not the last, a-wall does not pass basic stealth tests:


    I am totally disappointed by this software. I guess that I have been spoiled by an almost perfect firewall: Kerio 2.1.5.

    Thanks everyone for your input. BTW do anyone have other suggestions?
     
  13. Kees1958

    Kees1958 Registered Member

    Joined:
    Jul 8, 2006
    Posts:
    5,857
    Ogedei,

    Have a look at blink and coreforce.

    I am running Antivir free + DefendeWall paid + SSM free + SensiveGuard free (behind a router inbound firewall) on my wife's PC.

    Reason for this is:
    - DW gives no pop-ups
    - SSM free can be run with user interface disconnected = no pop-up
    - SensiveGuard can set (not default rules, but you can in-activate them)
    custom rules to deny = no pop-ups

    Performance is fast, even with IE7 and I have still left 750MB out of 1 GB memory
     
  14. pcalvert

    pcalvert Registered Member

    Joined:
    May 21, 2005
    Posts:
    203
    If you are using Windows 2000 or higher, then the fragmented packets problem isn't really a problem at all-- just use Harden-It. It can apply lots of registry tweaks, one of which prevents fragmented packets from being reassembled.

    Phil
     
Loading...
Thread Status:
Not open for further replies.