RE: security-basics () securityfocus com

[<Lance.Druger () wellsfargo com>]

The XP firewall is unidirectional, Trojans and viruses can communicate
out freely. They're fixing this in Vista, but if you have a NAT device
the XP firewall is basically worthless.

For PC level security they use Sygate and with the aforementioned
buyout...
http://www.clearview.co.uk/sygate_personal_firewall.htm


Lance Druger
(925) 674-7314


-----Original Message-----
From: Flory Jeffrey D Ctr 59 MDSS/MSISI
[mailto:Jeffrey.Flory2.ctr () LACKLAND AF MIL] 
Sent: Tuesday, September 27, 2005 11:45 AM
To: Lance.Druger () wellsfargo com; security-basics () securityfocus com;
bhowmik.shah () gmail com
Subject: RE: security-basics () securityfocus com

Have you tried the one that comes with XP.  If not it works, but for a
network wide firewall you might want to try sidewinder, this firewall
works
great.

-----Original Message-----
From: Lance.Druger () wellsfargo com [mailto:Lance.Druger () wellsfargo com] 
Sent: Monday, September 26, 2005 5:51 PM
To: security-basics () securityfocus com
Subject: RE: security-basics () securityfocus com



Most of these will work on both XP and 2003.  I've heard bad things
about
Blackice.

Most of the firewall review sites are just plain bad.  One knocked
Sygate
for lacking functions they have.  Most of these test sites don't do any
exhaustive tests.  They do a simple port test and base the review on
"Features" it's a firewall, if I wanted a virus scanner I'd buy one, if
I
wanted anti-spyware I'd download it.  

I want a real firewall that's been hardened and tested with actual
security
features like an IDS/IPS.

Lance Druger
(925) 674-7314


-----Original Message-----
From: Bhowmik Shah [mailto:bhowmik.shah () gmail com] 
Sent: Monday, September 26, 2005 3:36 PM
To: security-basics () securityfocus com
Cc: Lance.Druger () wellsfargo com
Subject: RE: Software Firewalls

Could somebody suggest a few Windows 2003 firewalls as well.

Bhowmik

-----Original Message-----
From: Lance.Druger () wellsfargo com [mailto:Lance.Druger () wellsfargo com] 
Sent: Friday, 23 September 2005 5:35 AM
To: security-basics () securityfocus com
Subject: Software Firewalls

I'm personally (not the company I work for) looking for a new software
firewall.  I was using Sygate as it has an active IPS and excellent
logging,
but it was purchased by Norton and has been discontinued. 

- Zonalarm - 6.0 is unstable and lacks an IPS and the OS firewall slows
the
PC down, and creates shutdown delays of over 2 minutes on a virgin
install
of Windows

- Norton tends to litter the registry, but feature wise may be the best
option.

- Kerio has ceased development 

I have a NAT router, but really need a software firewall (paid is fine)
with
the following features:

Required:
Windows XP Compatible
IPS - unattended active shunning of users that attempt hacking activity
Does
not slow traffic significantly Bi-directional Actively being
improved/updated Advanced rule creation A decent (but not completely
intuitive) interface Program access control (preferably w/ MD5 hash) A
minimal IDS (logging suspicious activity) Resistant to various "leak
test"
type attacks

Desirable:
Small memory footprint
Clean uninstall


Any recommendations or experience with the Norton product would be
greatly
appreciated?

Lance Druger

-- 
No virus found in this outgoing message.
Checked by AVG Anti-Virus.
Version: 7.0.344 / Virus Database: 267.11.4/109 - Release Date:
9/21/2005