Re: Most Popular Hardware Firewalls?

Leythos wrote:

>> Why exactly should one try to filter outgoing traffic when such a thing
>> like tunneling exists?
>
> Because a firewall will block that type of thing in most cases. You
> can't tunnel out unless the firewall permits you to reach a tunnel
> endpoint.

Oh, you want to block the entire internet? Or just the entire WWW?

>>> And intrustion prevention?
>> Is usually impractical.
>
> Depends on the need of the user/client/company.

OK, it's almost always impractical.

>>> Web filtering for the kids?
>> You mean "against the kids".
>
> Not all filtering is "Against", as Parents we're suppose to protect our
> kids while teaching them right from wrong. As a parent I block 13 of 14
> types of content in our home, in addition to blocking many file
> attachments and many downloadable types. That's working FOR the kids as
> I can still expose them from a designated machine, but they are blocked
> from machines not in the Common area.

Did you ever notice that the kids are clever and simply circumvent your
measures?

>> Home users usually don't need a firewall at all.
>
> Wrong, those are the ones that need it most.

Totally wrong. Home users don't have a clue about networking so they
can't achieve any security with firewalls.

> Just about every computer
> I've seen connected directly to the Internet in a residential setting
> has been compromised. At the same time, just about every one of them
> connected to a Firewall has remained uncompromised, and most with a NAT
> are uncompromised.

You never took a deeper look, didn't you? The biggest source for
compromise remains being MSIE, where no firewall can help.
Received on Mon May 1 00:53:16 2006