Re: What version of ZOneAlarm fastest with XP SP2

In comp.security.firewalls Lars-Erik ?sterud <.@.> wrote:
Why should the printer spooler have
Internet access (it ask for), why should it have "act as a server",

Because it's a print server. Just switch this functionality off if you
don't need it. BTW: this is filtered away by the Windows-Firewall, too.

and most MS programs send thing even with "phone home" off.

Please give an example. BTW: most of the "phoning home" incidents are
useful online software updates, which you shouldn't filter.

So even if it is not fullproof the program check funtion of ZA does
make it possibel to stop lots of programs from sending/listening.

Most of what's done is useless or even counterproductive.

And for malware I have anti-virus anyway

Virus Scanners cannot prevent from geting viruses by concept. They can
filter out already known viruses, so they're useful. But they will not
prevent you from getting infected, because they cannot know all malware.

If they try to establish outbound connections, your AV has very
obviously _not_ caught them. And your system is toast.
They are caught. I get a "xxxxxxx is asking for server permissions"
etc.

Yes. Your "Personal Firewall" is fooling you with useless claims of
securing you. The real threats are not detected, and preventing from
getting online software updates is counterproductive.

ZA is
hooked on a very low level of the communication system in Windows (if
you stop the firewall service, nothing gets out from the machine).

This is just wrong. Zone Alarm cannot prevent kernel code from
communicating at all, and it even cannot prevent my little PoC code at
http://www.dingens.org/breakout-wp.cpp from phoning home.

It's even worse, Zone Alarm phones home itself. Zone Alarm does this
what they claim to prevent from.

know huge serious companies using ZoneLabs
firewalls on their PCs (with central administration). Are they stupid?

Yes.

Or better: they likely just don't know better.

Yours,
VB.
--
Viel schlimmer als die Implementation von PHP ist jedoch das Design.

Rudolf Polzer in de.comp.security.misc
.

Relevant Pages

  • Re: cups problem on 3.9
    ... running a print server on a firewall is not really an issue at all. ... My (Linux) workstation ... ISTR that SAMBA was, indeed, necessary if Windows wants to print ...
    (comp.unix.bsd.openbsd.misc)
  • Re: [SLE] Ports - Services and their legitimacy???
    ... I am keeping up to date with the patches. ... is run when the firewall is started. ... Run 'rpcinfo -p' to see what RPC services are ... It is a print server. ...
    (SuSE)
  • Re: cups problem on 3.9
    ... running a print server on a firewall is not really an issue at all. ... My (Linux) workstation ... # MaxLogSize: controls the maximum size of each log file ..... ...
    (comp.unix.bsd.openbsd.misc)
  • XP Firewall blocking Linksys Print Server
    ... I have a Linksys PPSX1 print server on a LAN with a PC running Window ... When I turn on the the Internet Connection Firewall, printing ... I suspect the Windows Firewall is also blocking ...
    (comp.security.firewalls)
  • Re: Cant access shared drives/folders on network
    ... The last acts as a print server and backup file ... >All PCs get internet access fine. ... >I use zone alarm) on both XP PCs. ... Zone Alarm Pro, you have 2 options: ...
    (microsoft.public.windowsxp.network_web)