| |
 |  Networking, Security, and Mobility Security Security Discuss Outbound Firewalls---"Security Theater" in the Networking, Security, and Mobility forums; I've been rethinking the necessity of having a special Firewall that blocks outbound traffic..... Maybe the Firewall in Vista ... |
|
Welcome to the ABXZone Computer Forums forums. You are currently viewing our boards as a guest which gives you limited access to view most discussions and access our other features. By joining our free community you will have access to post topics, communicate privately with other members (PM), respond to polls, upload content and access many other special features. Registration is fast, simple and absolutely free so please, join our community today! If you have any problems with the registration process or your account login, please contact contact us. |
 |
| | LinkBack | Thread Tools | Display Modes |
07-22-2007, 11:48 AM
| #1 |
| Lucky Amateur  Join Date: Apr 2003 Location: Virginia
Posts: 2,370
| Outbound Firewalls---"Security Theater" I've been rethinking the necessity of having a special Firewall that blocks outbound traffic..... Maybe the Firewall in Vista that DOES allow blocking of outbound traffic (albeit hard to set up) is enough for the average joe like me who is behind a router with a small group of 7 computers all running AVG..... Is all they hype about blocking outbound "Security Theater" as this article from a Microsoft Guru claims..... http://www.microsoft.com/technet/tec...l/default.aspx Heck---even WITH an outbound firewall----I almost always just click "Yes" or "Allow"----and as Mr. Riley claims in his article----many times these attacks take the form of something you would normally allow anyway..... And the new Vista Firewall is already set up for blocking what they feel are the most dangerous types of outbound traffic..... Maybe this IS just hype-----Maybe the Vista Firewall, Windows Defender built into Vista----- and a Decent AV program is just plain good enough for most of us..... What are your thoughts????
__________________ 1st Rig:-----------------------------------------------------2nd Rig: Q6600 @ 3.2 Ghz------------------------------------------9850 BE at 2.6 Ghz Vista Ultimate Edition 32 Bit SP1--------------------------Vista Ultimate Edition 64 Bit SP1 AB9QuadGT, BIOS .13-------------------------------------AsRock 780G BIOS 1.50 Thermalright SI-128 HS w/JMC 120 PWM Fan------------Thermaltake Blue Orb II 4 x 1 Gig Gskill PC 6400 Micron D9's---------------------Mushkin 4 x 2 Gig PC8500 eVGA 8800 GTX--------------------------------------------ATI HD 4870 4 x 250 Gig Western Digital SATA II HDs in RAID 5-----2 x 500Gig Western Digital SATA II HDs in RAID 0 Lite-On 20x DVD Burner w/Lightscribe--------------------Samsung SATA Tru Direct DVD Burner w/Lightscribe OCZ 700 W GameXstream PSU---------------------------Silverstone 500 Watt ST50EF PSU Creative X-Fi sound----------------------------------------Azalia Onboard Sound Lian Li PC-7B Plus II Black Case--------------------------Silverstone SG01 SFF Black Case Speedlink Medusa 5.1 headphones----------------------Hauppage 1600 TV Card |
| (Online) |  |
|
07-22-2007, 12:17 PM
| #2 |
| Eschews Obfuscation Join Date: Sep 2003 Location: Connecticut, USA
Posts: 1,314
| I think you'll do fine without outbound filtering. A relative who is not computer savvy, who uses broadband cable and has her computer connected directly, without a router, has not had any problems after several years of being protected only by XP's built-in (inbound only) firewall. I have a Sonic Wall hardware firewall (which blocks inbound only), and a broadband cable connection. I also keep XP's firewall enabled on each PC that is behind the Sonic Wall (which is probably not necessary, but there appear to be no side-effects so I leave it enabled). I also use PC-Cillin and Adaware, and I have never had any problems either. In the Sonic Wall's logs I typically see some sort of illegitimate inbound data every few minutes, but they are routinely blocked. -- Al |
| (Offline) | |
|
07-22-2007, 12:45 PM
| #3 |
| Support Our Troops  Join Date: Apr 2003 Location: Killeen Texas
Posts: 610
| I don't think it is 'just' hype. I prefer to have this level of added security on my home network. While my hardware based firewall keeps my lan safe from internet attack I want to reduce the risk of attack from within caused by malware downloaded by one of the other users in the house. Even more its not the firewall containing the threat that provides my piece of mind but the prompt that pops up saying something wants to access the net. I remember being surprised by M$ Word trying to phone home the first time I launched it after installing Zone Alarm. |
| (Offline) | |
|
07-22-2007, 10:03 PM
| #4 |
| Eschews Obfuscation Join Date: Sep 2003 Location: Connecticut, USA
Posts: 1,314
| Redleg makes some good points. My previous comments apply to situations where all users are mature, and do not download from questionable sites. Regards, -- Al |
| (Offline) | |
|
07-22-2007, 10:33 PM
| #5 |
| Lucky Amateur Join Date: Apr 2003 Location: Virginia
Posts: 2,370
| Thinking...... Well-----and this applies to Vista which does have an outbound firewall capability---and not XP which doesn't have an outbound capability-----anyway-----I read this guy Riley's article very closely and he made a lot of sense to me...... Most of us just click "allow" even when we have an outbound Firewall set up..... And if the threat is so sophistcated that it calls itself something we would normally allow..... You are going to click and say yes anyway..... And after a few months of clicking and saying yes..... You don't really have a firewall anymore----it's porous.... Microsoft is saying "why bother" -----We've set the VISTA firewall to defeat the most dangerous outbound stuff already and if you use Windows Defender and keep it updated------matched with updated AV software----you really have a tremendously reasonable amount of protection without all the clicking "allow"-----which in the long run----doesn't work anyway. Shouldn't a good AV and spyware/malware product warn us of a threat or contamination in this arena???? If I know Iv'e been contaminated----presumeably there are ways to get rid of it.......
__________________ 1st Rig:-----------------------------------------------------2nd Rig: Q6600 @ 3.2 Ghz------------------------------------------9850 BE at 2.6 Ghz Vista Ultimate Edition 32 Bit SP1--------------------------Vista Ultimate Edition 64 Bit SP1 AB9QuadGT, BIOS .13-------------------------------------AsRock 780G BIOS 1.50 Thermalright SI-128 HS w/JMC 120 PWM Fan------------Thermaltake Blue Orb II 4 x 1 Gig Gskill PC 6400 Micron D9's---------------------Mushkin 4 x 2 Gig PC8500 eVGA 8800 GTX--------------------------------------------ATI HD 4870 4 x 250 Gig Western Digital SATA II HDs in RAID 5-----2 x 500Gig Western Digital SATA II HDs in RAID 0 Lite-On 20x DVD Burner w/Lightscribe--------------------Samsung SATA Tru Direct DVD Burner w/Lightscribe OCZ 700 W GameXstream PSU---------------------------Silverstone 500 Watt ST50EF PSU Creative X-Fi sound----------------------------------------Azalia Onboard Sound Lian Li PC-7B Plus II Black Case--------------------------Silverstone SG01 SFF Black Case Speedlink Medusa 5.1 headphones----------------------Hauppage 1600 TV Card |
| (Online) | |
|
| Thread Tools | |
| Display Modes | |
| |
Linear Mode
