[freenet-support] Re: Loopback adapter is in ZoneAlarm's Trusted Zone.
Jimmy Betancourt writes: > > > Hi!Sorry if my english isn't good.I want to install Freenet and I will have it running all the time.I use ZoneAlarm and, by default, it puts the IP address 127.0.0.1 in the Trusted Zone. ZA calls that entry "Loopback adapter".Cause Freenet uses 127.0.0.1 as gateway, Is that setting in ZA a security risk if i use Freenet?Can that allow a hacker to take control of my PC?Can that compromise my anonymity?Thanks for your time. This is normal and not a problem. 127.0.0.1 (in fact any address starting 127.0.0 usually) means "this computer". So when your web browser connects to 127.0.0.1: it is not actually going over a network, it is talking directly to the local freenet server on your PC. This is why ZoneAlarm trusts such 'loopback' connections, a client on your computer connecting to a server also on your computer should not be anything to worry about. Freenet basically works like a local proxy. Programs like web browsers and Frost / FUQID etc all connect to it over the loopback (unless you run freenet and those programs on different computers), then Freenet connects to other freenet nodes to handle the requests. Something like this, assuming default ports : +-+ | LOCAL PC, loopback (127.0.0.1) |INTERNET | __ | | |Freenet node| | | || || / | Browser ---> | port | | FNP | / | ||-|---> Other Freenet | ||<| Nodes | Frost --+--> | port 8481 | | (Freenet | \ | ||| | Node | \ | FUQID --+`` | Protocol) | | | Random ports | etc + | |_| So freenet client programs connecting to your node on 127.0.0.1 is normal. You should be concerned however if they try to connect directly to a website or something without asking you, and ZoneAlarm will warn you about this. Bob
[freenet-support] Re: Loopback adapter is in ZoneAlarm's Trusted Zone.
Jimmy Betancourt <[EMAIL PROTECTED]> writes: > > > Hi!Sorry if my english isn't good.I want to install Freenet and I will have it running all the time.I use ZoneAlarm and, by default, it puts the IP address 127.0.0.1 in the Trusted Zone. ZA calls that entry "Loopback adapter".Cause Freenet uses 127.0.0.1 as gateway, Is that setting in ZA a security risk if i use Freenet?Can that allow a hacker to take control of my PC?Can that compromise my anonymity?Thanks for your time. This is normal and not a problem. 127.0.0.1 (in fact any address starting 127.0.0 usually) means "this computer". So when your web browser connects to 127.0.0.1: it is not actually going over a network, it is talking directly to the local freenet server on your PC. This is why ZoneAlarm trusts such 'loopback' connections, a client on your computer connecting to a server also on your computer should not be anything to worry about. Freenet basically works like a local proxy. Programs like web browsers and Frost / FUQID etc all connect to it over the loopback (unless you run freenet and those programs on different computers), then Freenet connects to other freenet nodes to handle the requests. Something like this, assuming default ports : +-+ | LOCAL PC, loopback (127.0.0.1) |INTERNET | __ | | |Freenet node| | | || || / | Browser ---> | port | | FNP | / | ||-|---> Other Freenet | ||<| Nodes | Frost --+--> | port 8481 | | (Freenet | \ | ||| | Node | \ | FUQID --+`` | Protocol) | | | Random ports | etc + | |_| So freenet client programs connecting to your node on 127.0.0.1 is normal. You should be concerned however if they try to connect directly to a website or something without asking you, and ZoneAlarm will warn you about this. Bob ___ Support mailing list Support@freenetproject.org http://news.gmane.org/gmane.network.freenet.support Unsubscribe at http://emu.freenetproject.org/cgi-bin/mailman/listinfo/support Or mailto:[EMAIL PROTECTED]