ramian Posted March 20, 2004 Share Posted March 20, 2004 i just got a perfect stealth scan with ICF and shildsup... I don't trust GRC one bit. I can get a perfect stealth rating on ShieldsUp and I don't have ICF enabled or a 3rd party firewall software installed. A couple of good security scans I've been using for a while now are http://www.securitymetrics.com/portscan.adp http://security2.norton.com/sscv6/default.asp http://scan.sygate.com/ http://browsercheck.qualys.com/ http://webtest.scanit.be/bcheck/sid-38ba24...9890718fe7701b/ I just grabbed these from my Favorites so I can't remember if all of them are accurate but, there's no harm in trying them all. cheers! Link to comment Share on other sites More sharing options...
Shining Arcanine Posted March 21, 2004 Share Posted March 21, 2004 i just got a perfect stealth scan with ICF and shildsup...I don't know about all of the microsoft bashers here, but I think they may have got it right this time, as i feel no need to reinstall ZAP I don't, I keep failing TruStealth because of the ICMP ping. I don't trust GRC one bit. I can get a perfect stealth rating on ShieldsUp and I don't have ICF enabled or a 3rd party firewall software installed.A couple of good security scans I've been using for a while now are http://www.securitymetrics.com/portscan.adp http://security2.norton.com/sscv6/default.asp http://scan.sygate.com/ http://browsercheck.qualys.com/ http://webtest.scanit.be/bcheck/sid-38ba24...9890718fe7701b/ I just grabbed these from my Favorites so I can't remember if all of them are accurate but, there's no harm in trying them all. cheers! Your ISP probably has some kind of security measure in place. Link to comment Share on other sites More sharing options...
ramian Posted March 21, 2004 Share Posted March 21, 2004 Your ISP probably has some kind of security measure in place. Don't think so. While GRC's ShieldsUp test said all my ports are in Stealth mode, both the SecurityMetrics and the Symantec scan revealed that I had barely 5 or so ports stealthed. Compare your results between these 3 tests and see for yourself. Link to comment Share on other sites More sharing options...
Shining Arcanine Posted March 21, 2004 Share Posted March 21, 2004 Is this a recent result? If so, I suspect packet loss may be the cause. Link to comment Share on other sites More sharing options...
Night.Hawk Posted March 21, 2004 Share Posted March 21, 2004 I like it, but I still use Sygate or ZoneAlarm. Works real good and I'd tell you about it, but I have to go ppl. :sleep: See ya, check in the other thing about if Firewalls really work. I've got a thing about all 3. Or just ask someone else. Link to comment Share on other sites More sharing options...
Evolution Posted March 21, 2004 Share Posted March 21, 2004 I don't, I keep failing TruStealth because of the ICMP ping.Your ISP probably has some kind of security measure in place. When using the MS Firewall, did you just enable it or did you go into advance settings and configure it properly? Link to comment Share on other sites More sharing options...
Phil Gates Posted March 21, 2004 Share Posted March 21, 2004 i'm using both windows firewall and norton internet security, just to be safe Link to comment Share on other sites More sharing options...
Redestium Posted March 21, 2004 Share Posted March 21, 2004 i'm using both windows firewall and norton internet security, just to be safe :pinch: :pinch: :pinch: Link to comment Share on other sites More sharing options...
HellBender Posted March 21, 2004 Share Posted March 21, 2004 i'm using both windows firewall and norton internet security, just to be safe ROFL :laugh: :laugh: Link to comment Share on other sites More sharing options...
UnitedConfusion Posted March 21, 2004 Share Posted March 21, 2004 To be honest i dont think I could want any more features from a firewall than the winxp one. It has: Configurable Options Outbound Blocking Inbound Blocking Logging Full stealth scan good Total Intergration into OS Seems enough for me :p The Windows Firewall in Windows XP SP2 does not filter outgoing connections. For typical consumer and office computers, the computer is a client on the network. Software on the computer connects out to a server (an outbound connection) and gets responses back from the server. Windows Firewall allows all outbound connections, but applies rules to the types of communication that are allowed back into the computer. For more information about what network traffic Windows Firewall allows as part of Transmission Control Protocol (TCP) and User Data Protocol (UDP) outbound connections, see Notes, below. Changes to Functionality in Microsoft Windows XP Service Pack 2 Link to comment Share on other sites More sharing options...
qbie Posted March 21, 2004 Share Posted March 21, 2004 It depends how you define filtering. It does prompt you to allow applications internet access, a la Zonealarm... q Link to comment Share on other sites More sharing options...
Samoa Posted March 21, 2004 Share Posted March 21, 2004 Kerio PF verision 2.1.5 is great. And version 4 is even better. (Y) Link to comment Share on other sites More sharing options...
Si Veteran Posted March 21, 2004 Veteran Share Posted March 21, 2004 It depends how you define filtering.It does prompt you to allow applications internet access, a la Zonealarm... http://www.winsupersite.com/images/reviews...urity_alert.gif q Notice how it says RECEIVING, not SENDING :rolleyes: Link to comment Share on other sites More sharing options...
kiddingguy Posted March 21, 2004 Share Posted March 21, 2004 humm i might stop using norton its only slowing down my system i guess i have exactly the same thoughts, since nis 2004 is such a resource hog. but than again... i think that 3rd party software on internet protection/firewall is better - coz the specialize more into it - that MS itself. or am i wrong and is the windows firewall comparable (or maybe even better?) than norton's internet security 2004? and can i in the future just forget about nis? or is the protection and security of my computer controlled by one company (ms) begging for trouble? (since windows os's are not all bugfree and vulnerabilities - and thus possible hacking attempts - are detected every now and than) Link to comment Share on other sites More sharing options...
Shining Arcanine Posted March 21, 2004 Share Posted March 21, 2004 When using the MS Firewall, did you just enable it or did you go into advance settings and configure it properly? I didn't have to enable it, that should be off by default and I've tried everything to turn it off. An MVP told me to do the same thing that was done by default so I think there is a problem here. Link to comment Share on other sites More sharing options...
PseudoRandomDragon Posted April 2, 2004 Share Posted April 2, 2004 Norton firewall and ZoneAlarm Pro are definately better than ICF. ICF stands to be "better than nothing", simple as that. Link to comment Share on other sites More sharing options...
OPaul Posted April 2, 2004 Share Posted April 2, 2004 Norton firewall and ZoneAlarm Pro are definately better than ICF. ICF stands to be "better than nothing", simple as that. How did you come to that conclusion? When it comes to blocking incoming traffic how is Norton or ZoneAlarm any better? Link to comment Share on other sites More sharing options...
John Veteran Posted April 2, 2004 Veteran Share Posted April 2, 2004 Some people think outbound scanning is extremely important. I say that if you know what's on your machine, outbound checks are pointless. If you don't click on popups and don't download things you shouldn't, you're not very likely to get a trojan... Link to comment Share on other sites More sharing options...
OPaul Posted April 2, 2004 Share Posted April 2, 2004 Exactly, blocking outbound traffic makes no sense to me. I know what's on my computer and what it's doing. ICF does what it was designed to do with minimal resources. It's perfect if you ask me. Link to comment Share on other sites More sharing options...
Nodiaque Posted April 2, 2004 Share Posted April 2, 2004 hmmm... that depend... look on my school network, a laptop pluged into the network and spread a worm that's not even detectable now... Easy to remove though, but no scan detect it except trend micro housecall... (msgfix.exe or ktax.exe) You never know when you get one, but again, I'm one of those that don't use antivirus software and firewall stuff... firewall cause I'm behind nat, antivirus cause I'm the only user of the computer and I know what I download so no risk of virus... But even there, I activated ICF in sp2 cause I though it was better then before and when I saw it was more customizable and asked to allow incoming traffic for games and prog, I said: "Hey, now it's good enough to be activated, better then nothing and it's free" Link to comment Share on other sites More sharing options...
John Veteran Posted April 2, 2004 Veteran Share Posted April 2, 2004 hmmm... that depend... look on my school network, a laptop pluged into the network and spread a worm that's not even detectable now... Easy to remove though, but no scan detect it except trend micro housecall... (msgfix.exe or ktax.exe) Worms can't infect you if you have a firewall... Link to comment Share on other sites More sharing options...
ciaran00 Posted April 3, 2004 Share Posted April 3, 2004 Bull****. There are plenty of paranoid users who still find spyware in one form or another on their system. Though I can count the number of times it's happened to me on one hand, it still does. Blaster's a good example. ciaran Link to comment Share on other sites More sharing options...
eversor Posted April 3, 2004 Share Posted April 3, 2004 I hate that the Firewall doesn't block http and ftp access for all applications. I don't want other programs other than my browser (and ftp client) using that ports... It doesn't even asks you to block it... Link to comment Share on other sites More sharing options...
John Veteran Posted April 3, 2004 Veteran Share Posted April 3, 2004 Bull****. There are plenty of paranoid users who still find spyware in one form or another on their system. Though I can count the number of times it's happened to me on one hand, it still does.Blaster's a good example. ciaran Blaster's a good example, huh? I don't see how it relates to spyware, but let me use blaster as a good example... The RPC hole was fixed a full month before the blaster worm was released. Had people either a. had a firewall, b. turned on automatic updates, or c. had updated antivirus software, blaster wouldn't have been a problem. The first two would have stopped it from even infecting the computer, and antivirus software would remove it. Now how do you explain how the blaster worm was related to spyware? The worm itself was not spyware, it didn't install any spyware on the system, and there's no spyware that it manipulated to get in the system. Link to comment Share on other sites More sharing options...
digitalslacker Posted April 3, 2004 Share Posted April 3, 2004 it's been working pretty well for me i did report a few VPN problems to microsoft though my Cisco VPN dialer wouldn't tunnel after xpsp2 was installed, it connected fine i just couldn't do anything :) tried to add the programs to the exceptions list, no luck even turned off the firewall, still didn't work and i can't seem to figure out how to uninstall xpsp2 to see if the problem fixes Link to comment Share on other sites More sharing options...
Recommended Posts