mike Posted May 16, 2004 Posted May 16, 2004 Hey gang! I just hooked up a new belkin 4 port router that , of course has its own firewall. Is that the only firewall I need or should I run another on each pc? thanks in advance Rock Sign Quote
Etanisla Posted May 16, 2004 Posted May 16, 2004 My opinion: Each computer needs its own firewall. Reason: What if one system gets infected with something. Then all the systems behind your router firewall are vulnerable. But, that's just my opinion... Zone Alarm Free is installed on all three of my personal systems. My employer has Black Ice on the work laptop. Quote
bellringr Posted May 16, 2004 Posted May 16, 2004 I won't claim to be an expert by any means, but hubby and I have never had any security problems from outside sources with our router firewall. I've done security checks through Norton and various others and have come up fine. However, that being said, the virus thing can be a problem as we found out a couple years back. I got both of our computers infected (long story). Hubby was able to clean his up in time, but I had to do a complete reinstall. So I would say it's not a bad idea to have them on each puter. Quote
TCH-Rob Posted May 16, 2004 Posted May 16, 2004 One shouldnt be using a router to protect against viri. They are used to route traffic. They can be configured as a security device to prevent specific traffic from entering a network but I would not rely on that as your only means of protection. A hardware router, updated anti-virus program and paying attention to what you download and open is your best bet. Things like Zone Alarm are good i you are worried about what you dl/open in email and spyware because it lets you know something is trying to make an outbound connection to the internet and asks if you want it to. I use my router and av alone, the software firewall can be used if you are really concerned about safety. Quote
Madmanmcp Posted May 16, 2004 Posted May 16, 2004 I just hooked up a new belkin 4 port router that , of course has its own firewall. Actually it is not a firewall, its NAT'ing which acts like a firewall. NAT = Network Address Translation. This assigns an Internal IP address which effectively hides computers behind the router. A firewall has rules which allows or blocks IP's from coming in or going out. To answer the question...yes, run a software firewall on each PC. An extra layer of protect is a good idea in this case. For instance. Your "firewall" on the router will not block unwanted OUTGOING traffic. If you install a trojan program unknowingly from an email, it will attempt to contact the outside world. Most software firewalls will dectect and block this activivty, your router will not. Quote
mike Posted May 17, 2004 Author Posted May 17, 2004 Thanks ya'll. I figured what madman confirmed for me. I will proceed to install ZA on in house pc's. thanks. Rock Sign Rock Sign Rock Sign Quote
Madmanmcp Posted May 17, 2004 Posted May 17, 2004 Zone Alarm can be easily compromised by hackers Could you expound on this statement please. Lots of folks are using ZA and may panic. Quote
Madmanmcp Posted May 17, 2004 Posted May 17, 2004 Saw something about that on a security forum. It's well known. Well I believe its not an overly correct statement...easily compromised That in effect says the main purpose of the software doesn't work. Now I have read about a trojan or two that are running around which will delete files for ZA specifically and make the prorgam inefective. But this in no way makes the software easily comprimed for everyone who is running it. ZA is in the business to protect computers from being hacked. If it was "easily compromised" I would suspect they would be out of business quickly. Do you have a location for this article you read, I am curious since I do recommend people use ZA and if it is as bad as you say then I will need to re-evaluate what I say from now on . Quote
Madmanmcp Posted May 17, 2004 Posted May 17, 2004 From: http://www.eweek.com/article2/0,4149,1530946,00.asp According to Zone Labs, "If successfully exploited, a skilled attacker could cause the firewall to stop processing traffic, execute arbitrary code, or elevate malicious code's privileges." An attacker with local access and restricted privileges could invoke the attack by sending an e-mail with the overflowed RCPT TO command. The user could elevate his privileges to SYSTEM level, and a remote user could invoke the attack by manipulating the system into sending an e-mail with the overflow value. "a skilled attacker" "An attacker with local access " and "sending an e-mail "... "remote user could invoke the attack" Looks like it will take 2 people working together, and they need to be "skilled" The "local access" says the attacker is directly connected to the network or sitting at the computer. No, I don't think easily compromised is a good description here . Thanks for the article. Quote
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.