@digen: You're right, most people simply get a third party firewall, forget to configure it properly and it just sits there, draining resources and not really protecting your system, in which case, the entire point of installing it is lost.
And you're right about Windows Firewall too. I should've made my point with respect to ICF and somehow was in the ICF bashing mode. Windows Firewall is nothing like ICF and a really good product when it comes to basic firewalls. But you see, there IS a logic to what I said.
Allow me to explain. We both know that it is not configured to monitor or block outbound traffic. But we also know that for a program to be properly called a true firewall, it should monitor how programs interact with the underlying OS and which programs attempt to access either the local network or the Internet and alert the user when such suspicious activities occur. This is very helpful in thwarting attacks wherein malware either open up ports on the computer to "forward" the infection via a rootkit or simply where the program contacts its servers to serve you useless ads and hijack your browser.
I know Microsoft has said and I quote ".."it is not the firewall's place to stop malicious code from sending outbound packets--Microsoft contends that companies should use perimeter technologies to examine outbound traffic." It has also said that if the malicious code gets past the firewall it is the role of antivirus software to handle it. "He says Windows Firewall is designed to stop malicious transmissions to the PC, rather than protecting the PC once it's been infected."
When you install a third party firewall solution, from either Zone Labs, Symantec, Kaspersky, McAfee or Trend Micro, these inevitably turn the Windows Firewall off and then configure their own systems to offer protection and when they are turned off, they automatically enable the Windows Firewall. Of course, Security Center cannot manage these third party solutions well enough and can only offer information on whether they are running properly or not. But the point that I am trying to make is that Windows Firewall's "functionality" where in it can be turned off by third party programs has the potential to be misused and bring the entire thing crashing down. However, ZoneAlarm Pro, which I think is the best, locks itself down so tight that only the end user can disable it, and that too, only after being prompted. Also, you are still protected and you can only disable complete firewall protection by uninstalling the software itself.
But yes, I made a mistake. I shouldn't have said it wasn't a worthy solution, period. Allow me to modify it.
For the majority of users that do not understand the workings of a firewall, or those who don't bother much about them and wouldn't dream of installing a third party solution, Windows Firewall is just plain great. Its extremely configurable and a lot better when compared to its predecessor, ICF. It blocks traffic well, is turned on by default and provides detailed enough logs.
For the rest of the people, who understand about computer security issues and know about the shortcomings of the Windows Firewall and how its not protecting you "as good as" third party solutions, get a stand alone firewall. If you know enough about ports and networks and configuring programs, etc, in short, if you're anything above a novice, get one of the firewall programs I mentioned.
Thanks to digen for pointing out my mistake, as to how Windows Firewall is enough for the casual user on a low to medium speed connection. Please accept my apologies.
Quote:
|
Definitely your computer is secure as there is no job for Trend Micro PC-Cillin 2005, better uninstall that ****.
|
Its secure BECAUSE I have those software running, I wouldn't last one hour without them.
Quote:
|
U have not posted the source URL, It seems U r xpert in copy & paste.
|
And it seems you're an expert at staying anonymous and poking people.
I have not posted the source because it is my work. I sat for a long time to compose that, and I think I can take full credit for it.