RE: [Full-Disclosure] Zone Alarm

• Previous message: morning_wood: "Re: [Full-Disclosure] Blackhats of the World Unite!"
• In reply to: Joe Hummel: "RE: [Full-Disclosure] Zone Alarm"
• Next in thread: Cedric Blancher: "Re: [Full-Disclosure] Zone Alarm"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

To: Joe Hummel <joe@jthnet.com>
Date: Thu, 5 Jun 2003 17:52:53 -0500 (CDT)

The terminology might be suspect. perhaps rather then using the term
hardware firewalls those devices that have hit the market in full the past
few years might be better deemed blackboxes, sine few allow one to get to
the real OS to 'tweak'. Afterallthey do have an OS, it';s just kept out
of the users hands, and since they have an OS, they all run 'software' of
some sort, even if some or most of that software might be programmed into
an asic or ten in the blackbox. And then thus, those other systems, that
allow the enduser, the admin of that device into the OS level of the
system/device might be better termed 'open devices/?

Thanks,

Ron DuFresne

On Wed, 4 Jun 2003, Joe Hummel wrote:

> I would agree with morning_wood - hardware routers are a much better way to
> go - when the device fails, you fail closed, as opposed to a software
> solution, where if it fails, you fail open (read - open=vulnerable). In
> addition, I've found that even the technically savvy get perplexed by some
> of the alerts generated by personal firewall software.
>
> My personal experience in my home lab -
>
> The Linksys products worked very well, and I had mine running for 3 years
> without a failure (that wasn't caused by my ISP), but I recently upgraded to
> a Netgear model (FR114P) and saw a slight increase in throughput, both
> externally and internally. In addition, the Netgear provides additional
> features such as logging, better rule creation, and alerts to a SYSLOG
> device. Note, that the Netgear model is about twice as much as the typical
> Linksys models (mine cost ~$100).
> ______________________________
> Joe Hummel
>
>
> -----Original Message-----
> From: full-disclosure-admin@lists.netsys.com
> [mailto:full-disclosure-admin@lists.netsys.com] On Behalf Of morning_wood
> Sent: Wednesday, June 04, 2003 1:20 PM
> To: Ben Tyson-Norrman; full-disclosure@lists.netsys.com
> Subject: Re: [Full-Disclosure] Zone Alarm
>
>
> buy a $40 hardware router. Software firewalls are not a security solution
> IMHO.
>
> morning_wood
>
> ----- Original Message -----
> From: Ben <mailto:ben@twowaytv.co.uk> Tyson-Norrman
> To: full-disclosure@lists.netsys.com
> Sent: Wednesday, June 04, 2003 8:53 AM
> Subject: [Full-Disclosure] Zone Alarm
>
>
> I'm not sure I can ask this question without derision, but here goes...
>
> Zone Alarm, is it really as crap as everyone makes out.... or is the usual
> posturing by ill-informed...?
>
> Many thanks all
>
> Visit our web site @ www.twowaytv.com
> This e-mail and its attachments are intended for the above named
> recipient(s) only and may be confidential, legally privileged and protected
> by law. If you are not a named addressee or have received this transmission
> in error, please notify us immediately at postmaster@twowaytv.co.uk and then
> delete this e-mail. As Internet communications are not secure we do not
> accept legal responsibility for the contents of this message or
> responsibility for any change made to this message after the original sender
> sent it. Save for this legal notice, the contents or opinions contained
> within this e-mail are solely those of the sender and do not necessarily
> represent those of Two Way TV Ltd unless otherwise specifically stated.
>
>

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
"Cutting the space budget really restores my faith in humanity. It
eliminates dreams, goals, and ideals and lets us get straight to the
business of hate, debauchery, and self-annihilation." -- Johnny Hart
        ***testing, only testing, and damn good at it too!***

OK, so you're a Ph.D. Just don't touch anything.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

• Previous message: morning_wood: "Re: [Full-Disclosure] Blackhats of the World Unite!"
• In reply to: Joe Hummel: "RE: [Full-Disclosure] Zone Alarm"
• Next in thread: Cedric Blancher: "Re: [Full-Disclosure] Zone Alarm"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: Hardware firewalls ... > Id just like to clarify a few points about hardware firewalls. ... > security vendors in order to provide added security functionality over and ... > Hardware appliances were not able to distinguish between good and "bad" ... (comp.security.firewalls) Re: First new figure skating results coverage ... >> those using hardware firewalls cannot. ... > compatable with WebExPc. ... You might get past hardware firewalls, but you would never get past my ... (comp.security.firewalls) Re: Hardware firewalls ... the major raison d'etre for Hardware Firewalls existence is SPEED. ... security vendors in order to provide added security functionality over and ... Hardware appliances were not able to distinguish between good and "bad" ... (comp.security.firewalls) Re: First new figure skating results coverage ... I could block stuff the hardware firewalls cannot. ... to go out via a Socks or HTTP proxy, I can tell the firewall not to let ... The Socks proxy is disallowed from going on on ports ... (comp.security.firewalls)