Hello Derek, Thursday, August 28, 2003, 1:59:29 PM, you wrote:
DJ> As I understand it. There is nothing to stop a virus reconfiguring DJ> ZoneAlarm so it is undetected. True - but this is a problem with the OS letting just about anything do anything to anything. :-) ZA is at the mercy of a poor OS design philosophy. DJ> I may be wrong but I believe there is also nothing In Windows to stop a virus DJ> simply bypassing the IP stack and using raw sockets to send packets to the DJ> interface around the firewall. Again true. See the above comment. Especially with the M$ decision to use raw sockets in XP. Yech! They are really asking for it. OTOH, it might be M$ wanting to do something sneaky themselves. Hmmm... DJ> To do the same thing under Linux the virus would have to be running as root, DJ> and of course we *never* run as root do we? When linux becomes as popular as Win, we'll have about as many running as root as we now do running admin. :-) LOTS of them, no doubt. Many XP users I've talked with don't even know what admin means, and don't care either. Beware the unwashed masses.... :-) DJ> As for a Linux app aware firewall try this one http://www.itshield.com/ Thanks for the pointer. It looks like a service-based FW, not an app-aware FW. Looks like the usual stand-alone FW, not a 'personal' one on the same computer. This would make it even harder to be app-aware. It will stop some service(by some app) if it doesn't obey the rules of the service, but if it does follow the service rules, it looks as though any app using the service correctly would go through. Still searching.... -- Thank you, rikona mailto:[EMAIL PROTECTED]
Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
