RE: security-basics () securityfocus com

[Flory Jeffrey D Ctr 59 MDSS/MSISI <Jeffrey.Flory2.ctr () lackland af mil>]

Have you tried the one that comes with XP.  If not it works, but for a
network wide firewall you might want to try sidewinder, this firewall works
great.

-----Original Message-----
From: Lance.Druger () wellsfargo com [mailto:Lance.Druger () wellsfargo com] 
Sent: Monday, September 26, 2005 5:51 PM
To: security-basics () securityfocus com
Subject: RE: security-basics () securityfocus com



Most of these will work on both XP and 2003.  I've heard bad things about
Blackice.

Most of the firewall review sites are just plain bad.  One knocked Sygate
for lacking functions they have.  Most of these test sites don't do any
exhaustive tests.  They do a simple port test and base the review on
"Features" it's a firewall, if I wanted a virus scanner I'd buy one, if I
wanted anti-spyware I'd download it.  

I want a real firewall that's been hardened and tested with actual security
features like an IDS/IPS.

Lance Druger
(925) 674-7314


-----Original Message-----
From: Bhowmik Shah [mailto:bhowmik.shah () gmail com] 
Sent: Monday, September 26, 2005 3:36 PM
To: security-basics () securityfocus com
Cc: Lance.Druger () wellsfargo com
Subject: RE: Software Firewalls

Could somebody suggest a few Windows 2003 firewalls as well.

Bhowmik

-----Original Message-----
From: Lance.Druger () wellsfargo com [mailto:Lance.Druger () wellsfargo com] 
Sent: Friday, 23 September 2005 5:35 AM
To: security-basics () securityfocus com
Subject: Software Firewalls

I'm personally (not the company I work for) looking for a new software
firewall.  I was using Sygate as it has an active IPS and excellent logging,
but it was purchased by Norton and has been discontinued. 

- Zonalarm - 6.0 is unstable and lacks an IPS and the OS firewall slows the
PC down, and creates shutdown delays of over 2 minutes on a virgin install
of Windows

- Norton tends to litter the registry, but feature wise may be the best
option.

- Kerio has ceased development 

I have a NAT router, but really need a software firewall (paid is fine) with
the following features:

Required:
Windows XP Compatible
IPS - unattended active shunning of users that attempt hacking activity Does
not slow traffic significantly Bi-directional Actively being
improved/updated Advanced rule creation A decent (but not completely
intuitive) interface Program access control (preferably w/ MD5 hash) A
minimal IDS (logging suspicious activity) Resistant to various "leak test"
type attacks

Desirable:
Small memory footprint
Clean uninstall


Any recommendations or experience with the Norton product would be greatly
appreciated?

Lance Druger

-- 
No virus found in this outgoing message.
Checked by AVG Anti-Virus.
Version: 7.0.344 / Virus Database: 267.11.4/109 - Release Date: 9/21/2005