Re: black ice usage question
From: David (davidwnh_at_adelphia.net)
Date: 11/07/03
- Next message: David: "Re: Ping of Death from a friend?"
- Previous message: RB: "Re: black ice usage question"
- In reply to: Duane Arnold: "Re: black ice usage question"
- Next in thread: Duane Arnold: "Re: black ice usage question"
- Reply: Duane Arnold: "Re: black ice usage question"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Fri, 07 Nov 2003 15:49:49 GMT
In the same respect it isn't for some who really know what is going on
either. Outbound packet filtering can be critical. How many times do you
have to hear others state this about cable/dsl routers and BI before you
wake up and stop letting your ego get in the way? Many home users have
families in which controlling exactly what everyone does is next to
impossible. Even sole users benefit from outbound filtering since there
are far too many vulnerabilities that are currently unknown to the
general public. And many that involve programs that are non MS and are
not covered through windows update, so many users never catch wind of
them.
The IDS will not protect you if you allow your patching to lag. Most
often you will see patches come out before you a vulnerability is widely
exploited. IDS definitions on the other hand do not usually come out
until an exploit is already being widely used. People have to sniff the
exploit before they can create an accurate definition for them.
You've admitted that you normally log on using an administrator account
so you obviously don't have your machine locked down as good as you seem
to suggest.
>
>
> But like I said, BI is not for the average Joe Blow home user, It does
> the job that I need it to do. I have never been hacked and it protects
> the way I need it to protect the machine. Yes, BI doesn't have some of
> the bells. And most of the things BI protects are no different from any
> of the other FW(s) when it comes to protecting services, If I am lazy and
> forget a patch or two, the exploit is not coming past BI. Is that not
> what a FW is suppose to do protect the services on the machine? No, home
> user not even I have patched the MS O/S and locked it down as I should,
> because I have BI on the machines.
>
> The way I see it, all the FW(s) have short comings, but as long as any of
> them do what is being asked to do, that's all that can be asked. It's not
> a perfect world and it never will be that and all of the FW(s) are
> exploitable, if one doesn't know what one is doing.
>
> I like BI. It's never failed me and I thinks it's one of the best host
> based FW(s) on the market -- bar none.
>
> Duane :)
- Next message: David: "Re: Ping of Death from a friend?"
- Previous message: RB: "Re: black ice usage question"
- In reply to: Duane Arnold: "Re: black ice usage question"
- Next in thread: Duane Arnold: "Re: black ice usage question"
- Reply: Duane Arnold: "Re: black ice usage question"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
