Re: Advanced Rules/Advanced Application Configuration
From: Duane Arnold (notme_at_notme.com)
Date: Thu, 13 Oct 2005 01:51:08 GMT
Michael_jd@hotNOSPAMmail.com (Michael_jd) wrote in
> In article <Xns96ECCE6DAD63Enotmenotmecom@220.127.116.11>, Duane
> Arnold <firstname.lastname@example.org> wrote:
>>Michael_jd@hotNOSPAMmail.com (Michael_jd) wrote in
>>> In the Advanced Application Configuration tab you have the option to
>>> choose whether a application can act as a server or client(client
>>> meaning that the application is allowed to listen, server connect).
>>> The advanced rules don't seem to allow you to do this; what it does
>>> allow you to do is choose to block/allow traffic depending on it
>>> being outgoing or incoming. Is the former and latter different
>>> names for the same thing; or are they totally different?
>>Don't use Application Control like the worthless crutch that it is
>>that can easily be beaten by malware.
> What about the IDS and all the other advanced security options, like
> anti IP spoofing?
What about it? You think any of that is going to protect you from malware
if it reaches that machine and can execute? The buck stops with the O/S
and not Sygate and it doesn't stop anywhere else. You should use the
proper tools and look for yourself from time to time and don't depend
upon Sygste to tell you what is happening, because malware can circumvent
and defeat the solution.
You should try to secure the O/S for a machine that has a direct
connection to the Internet as much as possible. There is a link for Win
2K too. If you're using Win 9'x or ME, you are out of luck.