Re: ZoneAlarm blocks FTP apps
From: Melvin Klassen (Klassen_at_UVic.CA)
Date: Wed, 26 Jan 2005 17:02:42 GMT
On Mon, 24 Jan 2005 19:24:42, "Jason Edwards" <email@example.com>
> > >>> Turn on the Windows XP Firewall, and turn off the Zone Alarm firewall.
> > >>
> > >> Hahaha, yeah right! :)
> > >
> > > Try it. It works.
> > Yes, but my PC's security is compromised greatly as a result.
> > The Windows Firewall only protects data in one direction (in).
If your PC is compromised, it is compromised,
and ZoneAlarm may possibly prevent "rogue" applications
from accessing the Internet (if the compromise hasn't compromised
If your PC is not compromised, then you don't need ZoneAlarm
acting as a "border-guard" to prevent traffic from going "out"
of your computer without your knowledge/permission.
> Can you elaborate a bit more on what you mean by data in one direction.
ZoneAlarm looks for "unsolicited" traffic,
from the Internet to your IP address,
and from your PC out to the Internet.
> The PC I'm sitting at has the XP firewall turned on, but I'm still able to view web pages so there must be data coming in. Why didn't the firewall stop it?
Hopefully, it was _you_ who sent IP-packets through the XP firewall to
one IP-address on the Internet.
The XP firewall "poked-a-hole" in itself to allow that one IP-address
to send "response" IP-packets to your computer.
Similarly, you could telephone a telemarketer, but you wish that your
telephone would block "unsolicited" calls from a telemarketer. The XP
firewall does block such "unsolicited" traffic. ZoneAlarm would ask
you for permission to complete a telephone call to a 1-900-HOT-SEX
number that your teenager would try to place, but the XP firewall
would not intervene in that case.