Re: Time to ditch Sygate firewall?
Available news archives: comp.lang.tcl - comp.lang.python - comp.security.firewalls - sci.crypt - comp.lang.php - comp.lang.javascript
Google
 
Web news.hping.org


comp.security.firewalls archive

Re: Time to ditch Sygate firewall?

From: Beauregard T. Shagnasty <a.nony.mous@example.invalid>
Date: Mon Aug 22 2005 - 15:21:10 CEST



Margaret Wilson wrote:



> Interesting choice in AV software.  I chose NOD32 as well!  I've 


> been very pleased with it.  Much better than NAV in my opinion.  I 


> did the firewall eval thing quite a while ago, and my choice is 


> Black ICE.  I know some people say it's not a "real" firewall 


> because it doesn't scan outgoing traffic.  Well, if those people 


> actually read the manual, they'd know there's a switch you can use 


> in firewall.ini to have it scan outgoing traffic.



If you can edit a text file to turn it on, malware can edit the text


file to turn it off. (Never used BlackIce for this reason.)



> Personally, I prefer to start with a known-clean system and then


> simply scan incoming traffic.  My network sits behind a NAT


> firewall, however, so that provides some additional protection


> (again, not against outgoing traffic).  Anyway, before I found


> BlackICE, my fav was Tiny Firewall, which I believe became Kerio,


> which I understand is now no longer being updated IIRC.....



Kerio is alive and well. And a very good firewall. Free for home use. 


Yes, it monitors both inbound and outbound traffic.


http://www.kerio.com/kpf_home.html



-- 
    -bts
    -This space intentionally left blank.


Received on Thu Sep 29 20:03:20 2005