OT: Desktop Firewalls WAS: Nmap says hosts unreachable

["Craig Humphrey" <Craig.Humphrey () chapmantripp com>]

Hmmm.. Funny that...  And just how do you improve the security on say, a
laptop that uses WiFi, Dial-up and Ethernet connections?  Pretty hard to
squeeze a hardware based firewall in there...

And isn't it interesting that the Linux community has headed down the
same path, since most recent distro's of Linux contain some form of
"software" firewall (ipchains, iptables, etc).

OK, so the Windoze community are often bleating, but that's more to do
with their lack of technical knowledge, than the failings of software
firewalls.

Then again, hardware firewalls tend to have all the same failings as
software ones, except for one thing, the underlying "OS" tends to be
known quantity to the vendor (the likes of CheckPoint often being the
exception, but Oh, that would make it a software firewall... :)

At least if Windoze users are installing firewalls (software or
otherwise), that's got to put things in a slightly better light than
before.

Oh and I don't include the Windows Internet Connection Firewall in any
of the above statements.  A "firewall" that doesn't account for outbound
and allows any M$ application to do whatever it likes (in terms of
opening ports) without telling the user, isn't a firewall at all.

</rant>

Later'ish
Craig


> -----Original Message-----
> From: Cemil Degirmenci [mailto:cd () wavecon de] 
> Sent: Tuesday, October 05, 2004 9:50 PM
> To: Craig Humphrey; nmap-dev () insecure org
> Subject: Re: Nmap says hosts unreachable
>
> Hi there,
>
> Craig Humphrey wrote:
>
>  > You probably need to set up ZoneAlarm so that nmap can push packets
>  > through it and then receive the responses back.
>  >
>  > I had a similar problem with TinyFirewall.
>  >
>  >>I'm running an XP home machine with service pack 1.  I have a
>  >>zonealarm firewall and a linksys wrt54g router.  No matter
>  >>what host I scan nmap always says that the host is down.  Even
>  >>scanning pcs on my lan or my own wan ip I get the same result.
>  >>When I ran nmap with my bsd system it worked fine.  I
>  >>followed the install on insecure.org but I just can't get nmap
>  >>to work.  Any suggestions? Thanks!
>
> Think about sence and nonesence of personal Desktop Firewalls. But
> forget the part with "those people are Idiots" ;)
>
> http://www.fefe.de/pffaq/
>
>
> -- 
> kind regards / Mit freundlichen Gruessen,
>
> Cemil Degirmenci
> -- 
> Wavecon       - professional IT Solutions     GPG/PGP Key-ID: 
> 0x67D5D458
> 90443 Nuernberg                         Tel.: +49 911 120 658 1
> Schanzaeckerstr. 43a                    Fax.: +49 911 212 92 33
> http://www.wavecon.de                   info () wavecon de

---------------------------------------------------------------------
For help using this (nmap-dev) mailing list, send a blank email to
nmap-dev-help () insecure org . List archive: http://seclists.org