|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Subject: RE: ZoneAlarm *AND* a "real" firewall
From: robertmg
WellsFargo.COMDate: Mon Dec 04 2000 - 16:29:57 CST
- Next message: Paul D. Robertson: "Re: Corba application using random ports"
- Previous message: Ben Nagy: "RE: Ben's Big Crypto Flamefest"
- Maybe in reply to: Jim Rosenberg: "ZoneAlarm *AND* a "real" firewall"
- Next in thread: mark.teichernetworkice.com: "RE: ZoneAlarm *AND* a "real" firewall"
- Maybe reply: robertmgWellsFargo.COM: "RE: ZoneAlarm *AND* a "real" firewall"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Not here. Then again, I'm not too concerned about anyone trying to find and
DoS my laptop :)
-----Original Message-----
From: mark.teichernetworkice.com [mailto:mark.teichernetworkice.com]
Sent: Monday, December 04, 2000 12:22 PM
To: Geoff Bonallack; List: Firewall
Subject: RE: ZoneAlarm *AND* a "real" firewall
Has anyone deluged their Zone Alarm with lots of attacks at once. Like a
simple Distributed Denial of Service attack
using an ordinary jolt3.c script. What type of state does it crash in??
/mark
At 11:47 AM 12/4/00 -0600, Geoff Bonallack wrote:
>As far as I know, Zone Alarm (the personal version) requires manual
>intervention from
>the user, to 'teach' it which applications are permitted access to the
>LAN, to the
>Internet or to both. From memory, it also doesn't allow you to specify
>which ports;
>any application gets carte blanche access once you give it the ok. Which
>means that
>the kewl free FTP client you downloaded can quite happily go out on any
>port it
>wants, to anywhere it wants, on the pretext of 'accessing the internet'.
>(I could be wrong on this - it was a while ago that I looked at it, and I
>don't know
>whether this has been improved since - feel free to correct me!)
>
>I have used Norton's Internet Security tool, which apart from the fact
>that it is
>bloatware actually works pretty well. When an application tries to make a
>connection
>anywhere, from any port (to any port), you get a pop-up that allows you to
>block,
>permit or create a rule. There is a good database of pre-built rules for
>different
>applications, giving common applications access to only the ports they
>require; you
>can also restrict an application to only access a given address, or range
of
>addresses.
>
>The same goes for external machines trying to make a connection to your
>machine.
>
>It is a pain in the backside the first week or so (which means it is no
>improvement
>over ZoneAlarm with regards to this), but once you get it settled in
>things run
>pretty smoothly. I have yet to check out some of the recently suggested
free
>personal firewalls, but presumably they offer similar functionality.
>
>Cheers
>Geoff
-
[To unsubscribe, send mail to majordomolists.gnac.net with
"unsubscribe firewalls" in the body of the message.]
-
[To unsubscribe, send mail to majordomolists.gnac.net with
"unsubscribe firewalls" in the body of the message.]
- Next message: Paul D. Robertson: "Re: Corba application using random ports"
- Previous message: Ben Nagy: "RE: Ben's Big Crypto Flamefest"
- Maybe in reply to: Jim Rosenberg: "ZoneAlarm *AND* a "real" firewall"
- Next in thread: mark.teichernetworkice.com: "RE: ZoneAlarm *AND* a "real" firewall"
- Maybe reply: robertmgWellsFargo.COM: "RE: ZoneAlarm *AND* a "real" firewall"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]