Re: FIREWALL CHECK
- From: Root Kit <b__nice@xxxxxxxxxxx>
- Date: Wed, 30 Jul 2008 21:48:28 +0200
On Wed, 30 Jul 2008 13:05:31 -0400, +Bob+ <uctraing@xxxxxxxxxxxx>
Nonsense. Not all malware is sharp enough to avoid firewall detection.
Not all malware infections are lost cases.
No. But no matter what, that has to be always the default assumption.
Unless you have a baseline and can identify exactly what has been
changed you are basing your security on hope.
Repair is possible quite often.
Repair is possible if you're very skilled. It's certainly not a job
for Mr. Average. If you rely on running a few anti-tools in order to
declare a system clean as soon as the symptom seems to be gone, you're
on a very slippery slope.
The earlier the problem is detected, the higher the probability
for repair. There are enough malware schemes that don't avoid the
firewall that it is worth using one. PERIOD.
If you allow even poorly coded malware to have a ball on your
computer, your defenses are non-existing anyway.
Museums have sophisticated security systems. Nonetheless, criminals
get through them and steal valuable items fairly consistently. Do the
museums throw up their arms and say "we won't bother with an alarm
system since there are _some_ people who can beat it". No, they
install a security system that keeps out the large majority of
potential thieves, recognizing that no system is perfect.
The real and the virtual worlds don't easily compare. This has lead to
a variety of bad analogies. Yours is just yet another one.
THat's why so many of their machines get infected.
No, unsafe browsing and relying on Phony-Baloney Ware such as 3rd party
software (so-called) firewalls aka Illusion Ware gets you in hot water.
The fact that some people have an illusion of safety does not negate
the increased security offered by an outbound firewall.
The possible increase in security from an outbound firewall must as a
minimum outweigh the drawbacks. For me that's a very easy assessment
An outbound firewall is one more layer that can help identify problems.
Relying on this layer is precisely what gives you this false sense of
There's a difference between relying and utilizing.
One shouldn't utilize a security measure one can't rely on to a very
high degree. Especially not one which has a serious impact on the
system it's trying to protect.
- Prev by Date: Re: Event 5038, Microsoft Windows security auditing. fveapi.dll
- Next by Date: Re: FIREWALL CHECK
- Previous by thread: Re: FIREWALL CHECK
- Next by thread: Re: FIREWALL CHECK