Jump to content

Firewalls


Guest LilBambi

  

54 members have voted

You do not have permission to vote in this poll, or see the poll results. Please sign in or register to vote in this poll.

Recommended Posts

Guest LilBambi

Some states are proposing some really idiotic legislation that (in my humble opinion) has not been thought out at all. Paint me suprised! :D These new Bills, if passed, would, by their very wording, make firewalls and encrypted emailing a criminal offense -- huh!? :D ...Yeah, you heard that right ... I thought it was a joke, but apparently it is not.Here's just one article out there on it:"Freedom to Tinker Use a Firewall, Go to Jail" (and there are others). After I read this one, 15 minutes later, The ScreenSavers on TechTV did a piece on it! Anyway, I am wondering what type of firewalling folks are using?We use OS level frontend firewalling/routing, plus individual personal software level firewalling on individual computers to protect the local network, as well as protect between the local network and the Internet.I figure, I will have to be considered a criminal, because I am not taking my firewalls down. :( I am gonna contact my congressman and make sure Virginia doesn't have any of this type of 'stuff' in the works! :(

Link to comment
Share on other sites

Router and ZA Pro. If the government tried to take these away everyone should immediately call their ISP and quit. The law would be changed back real quick when ISP's started folding left and right. These kind of laws are designed to see what the public will tolerate and what it won't. And it is not your vote they are worried about, it is your money. If you quit spending your money, they would change it back....ASAP.

Link to comment
Share on other sites

Guest ThunderRiver

I personally think a software based or OS based firewall is good enough for everything as long as you configure it right. Hardware is not perfect. If you have gone to Defcon in Las Vegas, hardware firewall is pratically a joke there.It now has raised up a number of issues lately. I am originally from Texas, and recently Texas is now one of the 8 states that plan to pass laws to ban people from conceal their online identies, such as through the use of Firewall.I am now living in Michigan, and today it has already passed the law to ban use the VPN. What has the world come into? They ban people from having a lock on their front door?

Link to comment
Share on other sites

Guest LilBambi
Router and ZA Pro. If the government tried to take these away everyone should immediately call their ISP and quit. The law would be changed back real quick when ISP's started folding left and right. These kind of laws are designed to see what the public will tolerate and what it won't. And it is not your vote they are worried about, it is your money. If you quit spending your money, they would change it back....ASAP.
Good idea Stryder! :lol: I couldn't believe this was even in the works! And from what I understand actual bills are being proposed in TX and MA, but other states supposedly have similar legislation in the works!They really need to think things through before proposing these types of bills. All legislation should be put through a full battery of what/if scenarios to make sure that individual freedoms/rights are not going to be negatively impacted before making any bill proposals. IMHO, they made the same mistake with the DMCA and other intellectual property legislation. I think they are simply not thinking things through to their logical conclusion or determining whether the proposed legislation could be subverted to be something more than was intended. :rolleyes: : soapbox rant off
Link to comment
Share on other sites

This Super-DMCA thing making encrypted email and anything NAT-based illegal just made it into the upcoming issue of the newsletter. If anybody has any other information about this, I could use additional sources. This one has me very angry. :rolleyes: Also, for the record, I always have a hardware firewall/router set up. I'm always running several different software firewalls on the different PCs connected to that. I agree with those who mentioned that a hardware firewall isn't really that protective. It offers no outbound protection, for one thing. But there are other disadvantages too.I was also intrigued by Muck's statement. What happens if they get through the hardware??-- Scot

Link to comment
Share on other sites

Guest LilBambi
This Super-DMCA thing making encrypted email and anything NAT-based illegal just made it into the upcoming issue of the newsletter. If anybody has any other information about this, I could use additional sources. This one has me very angry.  :angry: Also, for the record, I always have a hardware firewall/router set up. I'm always running several different software firewalls on the different PCs connected to that. I agree with those who mentioned that a hardware firewall isn't really that protective. It offers no outbound protection, for one thing. But there are other disadvantages too.I was also intrigued by Muck's statement. What happens if they get through the hardware??-- Scot
Scot --Today, April 1, Freedom to Tinker posted this one:http://www.freedom-to-tinker.com/archives/..._superdmca.htmlThis page has me really upset ... I had no idea that Virginia already has this idiotic legislation IN PLACE! See quote below:
Super-DMCA Already Law in Several States Louis Trager at the Washington Internet Daily reports that Super-DMCA bills have already passed in several states:The low-profile lobbying effort was under way about 2 years before it burst into the open in recent days. Legislation supported by MPAA was enacted in [Delaware] and [Maryland] in 2001 and in [illinois], [Michigan] and [Virginia] last year, MPAA Senior VP Vans Stevenson said.... A different version was enacted in [Pennsylvania] in 2000, Stevenson said.The story further quotes Stevenson as saying that bills are "pending" in Arkansas, Colorado, Florida, Georgia, Massachusetts, South Carolina and Texas. Others are watching bills in Oregon and Tennessee, Trager reports.
It includes this professor's postings since the one I mentioned earlier in this thread up to today!With a full table of states and where they currently stand legislatively on this page:http://www.freedom-to-tinker.com/superdmca.htmlThere are links on these pages to some of the legislation pages available on the Internet so you can see for yourself.It just get worse and worse :unsure:
Link to comment
Share on other sites

The first software FW I used was Conceal from Signal Nine that is now (I think) part of McAfee. Then when ZA 2.0 came out, I used it till I went with the first ZAP. Over the years I have used Tiny,Kerio, Sygate, Look n Stop, Atguard, BID and Outpost. All of them have their srengths and weaknesses and have some how screwed up my winsocks in 98. Now I can comletely redo my TCP/IP, winsocks and the registry in under 10 minutes. (lots of practice)I am now using and prefer Kerio 2.14 for 98 and 2000, but using FireStarter for linux.

Link to comment
Share on other sites

Guest ComputerBob

I'm still using ZoneAlarm Free v2.6.362 on my old Win98 SE PC. I currently use Shorewall (iptables) on my Linux PC.

Link to comment
Share on other sites

This Super-DMCA thing making encrypted email and anything NAT-based illegal just made it into the upcoming issue of the newsletter. If anybody has any other information about this, I could use additional sources. This one has me very angry.  ;) Also, for the record, I always have a hardware firewall/router set up. I'm always running several different software firewalls on the different PCs connected to that. I agree with those who mentioned that a hardware firewall isn't really that protective. It offers no outbound protection, for one thing. But there are other disadvantages too.I was also intrigued by Muck's statement. What happens if they get through the hardware??-- Scot
I should think that the banning of Firewalls using NAT and the banning of encryption, would lead to a collapse of security support for computers in general. In this day and age, the INCREASE of security programs should be encouraged not discouraged. By the very nature of such programs being used (and remember that only a couple or three years ago most people had never heard of a firewall, let alone how to set one up)., we have largely closed our "leaky windows", and dare I say it... Linux boxes to the "snot nosed" script kiddies.I do tech support for a HS cable ISP, and believe me when I say that most people blithely download everything and RUN and INSTALL everything they can get through that fat little cable. Then they are totally perplexed as to why they get porn pop-ups on granny's old 200 MMX box.No, now is the time to encourage the use of security programs and the harder it is to single you out on the net, the better.I would hope that inteligence and reason would come into play by your politicians and they would have the guts and fortitude to tell the recording and motion picture lobyists to take a flying leap. However, we do know that politicians are not interested in what is best for their voters, only what lines their pockets and who can PAY their way back into office.I am not American, but our politicians too seem to suffer from the same lack of reason and are only interested in getting re-elected. Something that our governing body has an annoying habit of doing all too regularly.
Link to comment
Share on other sites

Does this law apply to all the government computers in the world too? Good grief, next will be nick names on the internet. I have always said the further the government stays away from regulating the internet the better.

Link to comment
Share on other sites

Guest ComputerBob
...and does anybody remember the temperature at which paper will ignite and burn?
I've never read that book, but I remembered its title as soon as I read your question. I think maybe I saw the movie of it many years ago. Does it have people standing around memorizing and reciting entire books from memory? Funny, the things that the subconscious keeps in its attic.
Link to comment
Share on other sites

Currently using Sygate 5 , free version. When I switched to SBC/DSL Agnitum's Outpost would no longer work. Tried ZA, and could not get it to work past 'medium' (no stealth). Sygate works properly (all stealthed), and I like the tray icon ;)

Link to comment
Share on other sites

Hello all, I'm a new member and security minded like all of you are. The only people that can come up with these idiotic ideas are people that don't use the 'net. If they did, they'd know how scary it's getting and when it comes down to it, all we are trying to do is protect ourselves from the various nasties out there. We can only hope this idea dies quickly, I really don't think any of these bills will make it into law, hopefully cooler heads will prevail. Hi Scott, been reading the newsletter for quite awhile, I really enjoy it. The forums look great. Good work.ChrisNAT routerZone Alarm on all pcsVarious spyware removal toolscommon sense

Link to comment
Share on other sites

Guest LilBambi
...and does anybody remember the temperature at which paper will ignite and burn?
I've never read that book, but I remembered its title as soon as I read your question. I think maybe I saw the movie of it many years ago. Does it have people standing around memorizing and reciting entire books from memory? Funny, the things that the subconscious keeps in its attic.
ComputerBob --Yes, it does have that at the very end ... it was Farenheit451 ... Ray Bradbury story. Named specifically for the temperature that paper ignites and burns since Firemen in the story actually started fires instead of putting them out .... in order to burn books and give folks what they supposedly wanted. Strange story actually...but it is one of my favorite Ray Bradbury stories along with the Martian Chronicles and a few others as well.You have a good memory :blink:
Link to comment
Share on other sites

I always like reading what others are using. I have ditched ZA. Sorry Scott. It interferred too much with my programs and seemed to have a mind of its own. The XP firewall seems to work just fine. I worry more about things trying to come in than go out. I know I must be naive in this area but after pulling out half my gray hairs on ZA I just switched to the XP set up. I know this is probably not good since I run DSL and tend to leave my computer on, but have been lucky so far.

Link to comment
Share on other sites

Got a firewall on my ADSL modem/router, next to that:On (my hardly ever used) Windows I use Tiny Personal FirewallOn my main box; Linux Mandrake, I use Shorewall, based on iptablesOn an old P1 box: VectorLinux, I use Guarddog, also based on iptables

Link to comment
Share on other sites

Have dial-up connection.Using Kerio Personal Firewall on W2K. Used to use ZA, forgot why I switched. Using Guarddog (iptables) on linux.

Link to comment
Share on other sites

I currently use a HW firewall that passes all the tests I can find on the internet (Sygate, Gibson, etc). My understanding is that is great incoming protection. Running a SW firewall prevents rogue apps on my PC from sending information out - also a good idea, so I run @guard. But if I didn't, and knew what apps I had (and ran Ad-aware periodically) why would I have reason to worry?/j

Link to comment
Share on other sites

Guest LilBambi

jeffw_00 --It is great to have a hardware firewall. But they are not perfect. Rarely anything is by itself.That is why many folks will increase their protection with an individual software based firewall on each individual PCs.If something gets through your front line defense, what then?A software firewall gives you that second line of defense. They also generally (except for WinXP's built-in firewall) will give you both inbound AND outbound protection and a quick way to stop all traffic if necessary to give you time to go and shutdown the connection at the router/firewall and take care of the problem....particularly if your router/firewall is not right at your desk or easily accessible in an emergency.Others may be able to add to this, but these are a few of the advantages.

Link to comment
Share on other sites

Ummm - isnt that sort of a FUD response? You don't happen to work for Sygate do you 8-}.Seriously, if the most serious test sites on the web say I'm safe from incoming, and I trust my apps on outgoing - specifically what is it that I am defending against by taking on the pain of a SW firewall? After all, I'm not the pentagon, so no one is going to target me specifically, I just have to look secure enough to send the curious on to easier targets? Either GRD and Sygate's test sites are bogus or more protection would mean I'm paranoid.PS - I'm new here so I don't know if politically incorrect discussion is allowed. Please feel free to shut me down if it isnt 8-}/j

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
×
  • Create New...