Re: Personal firewall with no user-interaction
From: Duane Arnold (notme_at_notme.com)
Date: 09/06/03
- Next message: TechyGirl: "Norton Firewall Blocking my access to the Internet"
- Previous message: Thomas Winter: "Re: Personal firewall with no user-interaction"
- In reply to: Johnny Nielsen: "Personal firewall with no user-interaction"
- Next in thread: Johnny Nielsen: "Re: Personal firewall with no user-interaction"
- Reply: Johnny Nielsen: "Re: Personal firewall with no user-interaction"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Sat, 06 Sep 2003 15:54:04 GMT
"Johnny Nielsen" <DONT.WRITE.THIStrap402@megabit.dk> wrote in
news:3f59fd96$0$424$edfadb0f@dread11.news.tele.dk:
> Im looking for a Windows 2000 personal firewall that doesn't require
> the user to answer any questions regarding it's functionality.
>
> We have a number of standalone computers connection to the internet
> using modem dialup. The users are non-technical personal.
>
> In order to protect those computers from attacks from the internet I
> need to deploy (using a CD-ROM) a personal firewall that installs as
> silently as possible and doesn't require the users to make any
> decisions after the firewall is installed.
>
> So far I have looked at Zone Labs Integrity Desktop, Outpost Pro 2,
> McaFee Personal Firewall and Tiny Personal Firewall 5, but I don't
> think any of those satisfies my requirements.
>
> None of the testet programs was able to install using a pre-configured
> configuration file (and if they can, it isn't documented) in an
> environment without a managing server.
>
> I guess that my requirement that the program can't interact with the
> users leaves out the use of application rules since upgrading of the
> applications typically would trigger a question about access for a
> changed program. Since all the computers has anti-virus software
> installed I would therefore compromise on a simple stateful inspection
> firewall if that exists in software. That ought to take care of any
> worms which I think is the primary threat. Im not worried about
> denial-of-service attacks since we are talking about short-time dialup
> connections.
>
> Comments and/or solutions are welcome
>
>
> Best regards
> Johnny Nielsen
>
>
>
BlackIce uses (.ini) files which rules can be configured and pushed out
to workstations. Also BI uses User-Account Security Context. If they are
not Admins on the machine, BI will disable the Admin screens.
If the users are not allowed to install software, then one Baseline
inventory of all program file types will cover any program starting up or
communicating back to the Internet. If something does hit the machine and
BI starts asking the end-user questions, then it's a clear sign that
something may be wrong.
All you have to do is set BI on Paranoid *block all unsolicted inbound
traffic* -- statefulness, Auto Block, and Notification Level to RED or
RED/Orange that pretty much covers it. I got family members using BI on
dial-ups with no issues.
As far as BI controlling worms, viruses, and Trojans, the link may
provide some information. However, BI is not a malware application.
http://www.eweek.com/article2/0,4149,1234226,00.asp
HTH
Duane :)
-- The protection of the machine is a process and not a given!
- Next message: TechyGirl: "Norton Firewall Blocking my access to the Internet"
- Previous message: Thomas Winter: "Re: Personal firewall with no user-interaction"
- In reply to: Johnny Nielsen: "Personal firewall with no user-interaction"
- Next in thread: Johnny Nielsen: "Re: Personal firewall with no user-interaction"
- Reply: Johnny Nielsen: "Re: Personal firewall with no user-interaction"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
