Re: hardware vs software security

From: Florian Reitmeir (squat_at_gmx.net)
Date: 10/26/03 

Date: Sun, 26 Oct 2003 19:38:04 +0100

Chuck wrote:

>>> What's the best protection from hackers, a router or software like Zone
>>> Alarms? or do I require both?
>>a.) pakets dropped by an hardware firwall are gone so you are safe
>>b.) pakets not dropped will reach you unaltered.

> The hardware firewall blocks the incoming crap, so your software
> firewall has a lot less work to do. Software firewalls can't catch
> every exploit either. The Windows Messenger spam is a good example -
> unless your software firewall is properly configured, you'll still get
> that sh!t. A NAT router, OTOH, totally blocks it.
and what is than the difference ? when i block the traffic on my "hardware"
firewall or block it on my box ? If I close Port 135,137-139,445 I don't get
any Netbios Traffic why should I use an Hardware Firewall for it ?

> You still need a software firewall though to block unwanted outgoing
> traffic. If not a software firewall, then a port monitor. Both are
> not a bad idea. Crap like Swen is coded to disable improperly
> configured software firewalls. Having a NAT router, and a port
> monitor, could save your @ss, if you were to get infected by Swen (or
> its successor, which is surely coming).
 
Port monitor, wau, ever tried netstat? its shipped with linux/mac/windows.
Anyway my Squid-HTTP-Proxy and my MailRelay are installed on my local Box,
also my unwanted networkconnections are blocked lokal.

Why is this configuration unsecure ?

Anyway, the org. question was, what is more secure, NOT, what has more
features. Features only depend on Software and OS. When I install an
software firewall I can upgrade it, patch it, improve it, bug fix it and
customize it the way i need it.

cu Florian

Relevant Pages