I digress the easiest way to clean the registry is a little utility called
RegClean, available from Microsoft's download site. Although Format c: is
more effective the average user in not going to be in a position to
re-install their OS unless the vendor supplied a Restore Disc with the
computer purchase. Now to the topic at hand. I have used Black Ice since
version 1.9.6 and I find that the frequency with which the product is
updated incredible (2.1.cn current release with at least four updates in
between). When I chose my personal firewall I was looking for something that
provided the basics right out of the package and could be further customized
for the advanced user. Along with its excellent packet logging (Which our
commercial Firewall-1 doesn't do out without spending extra money) it
provides an intuitive and easy to use interface for most tasks, as well as
one may directly edit certain files. For example, editing the Firewall.ini
file, although not recommended, allows one to open certain ports for all
traffic, although it doesn't allow one to specify which interface it arrives
on (As this is indicative of a commercial product I can live with this
shortcoming). I allow a number of services into my network and while I also
screen them on a router, Black Ice provides a very effective second line of
defense for a host based operatring system. I heard someone mention a "Stack
Attack" I would be interested in hearing how this could lead to a compromise
or if it simply a DoS attack. I hanot been able to crash my own machine so
far through any means I am familiar with, even with the attacker on the same
LAN segment, which is not usually the case. So I would conclude those people
who are concerned about security would benefit from a Screening router
w/ACLs or Linux IPchains in combination with a product such as Black Ice for
Host level IDS detection. Placing all of ones confidence in a single product
is both foolish and insecure.
Ken Claussen MCSE CCNA CCA
[EMAIL PROTECTED]
"The Mind is a Terrible thing to Waste!"
-----Original Message-----
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]]On Behalf Of
[EMAIL PROTECTED]
Sent: Tuesday, December 05, 2000 12:06 PM
To: [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Subject: RE: ZoneAlarm *AND* a "real" firewall
That's funny, those are the same problems I have with M$ Windoze in general.
The easiest way to clean the registry is "format c:". :)
-----Original Message-----
From: Mark Teicher [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, December 05, 2000 8:13 AM
To: [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Subject: RE: ZoneAlarm *AND* a "real" firewall
Actually I play with a lot of the competitors products, the biggest issue I
have with most Windows based personal firewalls and IDS products is that a
majority of them require one to reboot prior to using it as other do not.
PLus during the de-installation the application seems to leave remnants of
it's presence all over the registry.
I have no problem posting my results from testing a competitor's products,
just give me a week and I will post it somewhere.. :)
/m
-----Original Message-----
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
Sent: Monday, December 04, 2000 9:01 PM
To: [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Subject: RE: ZoneAlarm *AND* a "real" firewall
Mark
Given your questions and corp affiliation, I'd be interested to see you
config & drive ZA (free) or ZA Pro (USD$39.95) for a couple weeks and post
your answers to these same questions. You're probably like the rest of us
and don't have much time, but it would be interesting to see what you think.
Just an idea...
Mike
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
