On 05.01.2004 17:08 Jbob wrote:
> You should still think about using a PW for outbound protection. While the
> settings help tremendously with inbound traffic, they are of no use to
> outbound traffic. Even running a top of the line Virus engine can still
> miss the newest worms, etc. A PW can at least notify you of outbound
> traffic that is not of your choosing. You could get one of these via mail
> and never no you had it except for the firewall alert that something wants
> to connect without your knowledge. Spyware works this way too!
Though I understand your troubles in these times, I still cannot see why
it should be useful to install a software named "personal firewall" on
the same system that can get infected.
Only 1 example from many, I think: Poster reported system infected by
virus Raleka, installed by false action (? - sorry for my English -
reason unknown for installing, probably by visiting the wrong site and
clicking too fast at OK) which disguised as "Generic Host Process for
Win32 Services". Would you ever deny that process if your "firewall"
asked you?
Fact is, no system is secure unless you are constantly patching
Microsoft OS and avoid unsecure software (IE and OE should be avoided
for unpatched holes that allow so many viruses to work), check your
behaviour (do not accept attachments from unknown sources, stop
file-sharing and many more) and try to understand that your computer is
more than just a dish-washer, with complicated settings that can make it
vulnarable.
This is a WIN ME machine now, and I'm connected to the internet since
1996 and I never got infected by anything. Without "personal firewall" .
Just lucky?
As for the viruses, I happened to be in the usenet when the first German
mail administrations reported about something strange - it was Sober.C
at last. Hours before anti-virus companies even knew about it, and days
before the signature files were updated, thousands of mails containing
the worm were spread and the worm was activated because users believed
the message and it couldn't be detected by any software.
Anti-virus-software has got its limits.
Outbound traffic is generally a problem of privacy (unless you were
hijacked of course) - my printer and realplayer and the MS media player
want to "phone home". I found out by
http://www.sysinternals.com/ntw2k/freeware/tdimon.shtml. No "firewall"
required for a stand-alone home computer. And their Process Explorer
tells me what's going on.
Christa
Similar Threads
