kapil
The Kapil
join:2000-04-26
Chicago, IL
| reply to ArchAngel21x
Re: I Don't Like This
Norton sucks!
...besides, if you're an average user and don't host any services, just block all the ports and use NAT, you almost don't need a firewall.
--
::: Do, or do not, there is no try:::»www.kapilville.com |
|
wtansill
Ncc1701
join:2000-10-10
Falls Church, VA
| said by kapil  :
Norton sucks!
...besides, if you're an average user and don't host any services, just block all the ports and use NAT, you almost don't need a firewall.
Not so. A NAT firewall will not prevent outbound traffic, so you can't stop things like Media Player or other similarly inclined programs from connecting to the internet at arbitrary intervals and "phoning home". ZA lets me know when this happens, and lets me block these outbound connections.
For an example, go to www.grc.com and download LeakTest.
--
That which does not kill me merely prolongs the agony. |
|
kapil
The Kapil
join:2000-04-26
Chicago, IL
| True. However, the odds are that you've installed these applications yourself...and the bigger security risk is from stuff trying to come in, not from sleazware trying to call home.
--
::: Do, or do not, there is no try:::»www.kapilville.com |
|
tdkyo
join:2002-12-07
Rochester, NY | reply to kapil
Hardware firewall does all the hard work for me!  No resource drain! |
|
ArchAngel21x
MacFan Pro
Premium
join:2001-10-28
Lincoln, NE
1 edit | Nevermind. |
|
mod bait
Premium
join:2001-06-11
Rochester, NY
| reply to kapil
said by kapil :
True. However, the odds are that you've installed these applications yourself...and the bigger security risk is from stuff trying to come in, not from sleazware trying to call home.
That's simply not true. If you have a hardware firewall, nothing is coming in. The only risk--sometimes even if you are very careful--is outbound traffic.
--
"Security is a tax on the honest." --Bruce Schneier, Beyond Fear, Copernicus, 2003 |
|
kapil
The Kapil
join:2000-04-26
Chicago, IL
| If you are an average home user, and use your broadband connection for surfing, email etc....don't have any ports open/forwarded/mapped on your router and are using NAT, there is virtually no SECURITY risk. The security risk comes from inbound traffic. Stupid-user risk, for example installing bonzi buddy which then tries to phone home every 30 seconds is a different matter entirely. Bonzi buddy is not a security risk....it's a matter of user education.
--
::: Do, or do not, there is no try:::»www.kapilville.com |
|
Plldwnyrpnts
join:2003-04-19
Chicago, IL
| Exactly!
I never ever use application protection as it's more of a pain in the ass then anything. Especially to an educated computer user. The truly sad thing is the uneducated computer users have NO idea what to block or let through to begin with. So where exactly is application protection practical? |
|
mod bait
Premium
join:2001-06-11
Rochester, NY
| reply to kapil
said by kapil :
If you are an average home user, and use your broadband connection for surfing, email etc....don't have any ports open/forwarded/mapped on your router and are using NAT, there is virtually no SECURITY risk. The security risk comes from inbound traffic. Stupid-user risk, for example installing bonzi buddy which then tries to phone home every 30 seconds is a different matter entirely. Bonzi buddy is not a security risk....it's a matter of user education.
Ever heard of malware?
--
"Security is a tax on the honest." --Bruce Schneier, Beyond Fear, Copernicus, 2003 |
|
NOVA_Guy
Obama- Commander in Thief
Premium
join:2002-03-05
 ·VOIPo
| reply to kapil
said by kapil :
...besides, if you're an average user and don't host any services, just block all the ports and use NAT, you almost don't need a firewall.
Yes, but there are some of us that need more than that. For example:
I occasionally run IIS and Cold Fusion server on my laptop as a result of one of the software development projects I am on. I also sometimes work from Starbucks via their wireless network (hey, I've got a T-Mobile Hotspot subscription and Starbucks is right across the street). On the instances that I am working on the project listed above from Starbucks, I would prefer to be running at least some kind of software firewall to ensure that only requests from my machine are accepted and processed by the web server-- nobody else should have access to my project or files. Now, I realize that I can do this without ZoneAlarm, but life is a lot easier doing it with ZoneAlarm.
There are also some other things that I like, like Cache Cleaner and their privacy settings.
The bottom line, I guess, is this: Do I/does everybody need ZoneAlarm? No. Does it make life easier and give me peace of mind? Yes. It is for this reason that I hope ZoneAlarm does not disappear or become unaffordable.
--
Be a responsible citizen:
Boycott all products from all RIAA members; Only buy used CDs
Boycott cable companies (esp. Cox and Adelphia!)
Boycott all ILECs |
|
