Re: should i install windows xp service pack 2

All Things Mopar wrote:
Today Kerry Brown commented courteously on the subject at
hand

Now, this makes sense to me, Kerry. Maybe the firewall was
there in SP1 but I didn't know it. However, to expand a
bit, to the extent that M$ does advertise the extremely
improved security of SP2, why didn't/don't they improve
the firewall and put Zone Alarm the the others out of
business?

I like it as it is. I much prefer it over Zone Alarm.
I don't care about monitoring outbound traffic.

I don't have ZA, I just mentioned it in the context that Bill
the Gates easily has it within his power to put the major
utility competitors out-of-business and I really don't know
why he doesn't and make tens of billions for himself in the
process).

The reason I care about outbound is two-fold: I want to know
when apps or Windoze calls home (minor) and I want to know if
some Cyber nut or spyware bot has successfully penetrated my
system and is stealing my data (big time MAJOR).

The built in
firewall is very effective at stopping unwanted inbound
traffic which is all I care about.

Think about the outbound risk if you at all believe the claims
that 80-90% of PCs are infected with spyware and may (or may
not) be logging mouse clicks, file names, PWs, etc. And, as
above, if spyware or a real troll is trying to steal your
identity or confidential data (e.g., a Word file to your
doctor with your SSAN in it), wouldn't you want to know it was
leaving?

It's simple to use and
configure. It doesn't bother you with unnecessary warnings.

I agree, but therein lies the tale for me. I'm never really
sure if SP2 is or is not warning me about traffic in either
direction. I'm still thinking about it as identity theft
warnings are increasing and will eventually do something,
although I am sure it will /not/ be Norton Internet and likely
won't be ZA, either. When I get ready, I'll ask for
recommendations.

If you also add a simple NAT router to the equation you are
protected against all but the most determined hacker. For
home/Soho use this is more than adequate. For larger
networks then a proper firewall like ISA server or a real
hardware firewall is the way to go.

I have a Netgear NAT router, which is pretty good protection
inbound but I don't think it stops outbound. Again, I
understand your point, I hope after you read my comments, you
might move somewhat in my direction. If not, not.

Cheers!

I know my pc well enough to know exactly what's happening, what's running,
and what is connected to where. If I suspect something is wrong there are
built in tools to find most of the needed info to figure out what is
happening. www.sysinternals.com has some other good ones. ZA and other
similar programs are really only useful if you know what to answer when a
warning pops up. Most people who know what to answer don't need the warning
in the first place. I can't tell you how many computers I've worked on that
were riddled with malware and all the malware was allowed in ZA. The vast
majority of people just pick allow so things keep working and they can surf.
For most people the Windows firewall works because once it's set up there is
nothing to fiddle with. Add an ant-virus and an anti-spyware resident
scanner, logon as a limited user, and most people are as safe as they'll
get.

--
Kerry
MS-MVP Windows - Shell/User


.

Relevant Pages

  • Re: should i install windows xp service pack 2
    ... I don't care about monitoring outbound traffic. ... some Cyber nut or spyware bot has successfully penetrated my ... firewall is very effective at stopping unwanted inbound ...
    (microsoft.public.windowsxp.general)
  • Re: Software Firewalls
    ... > I agree with most of what you say with exception that no outbound ... the spyware got in there somehow - and it ... > Firewall is crude at best. ... >> I prefer perimeter network firewalls, ...
    (microsoft.public.windowsxp.security_admin)
  • Re: problems with sunbelt kerio firewall and Spy Sweeper from Webr
    ... Controlling outbound access. ... typical for spyware or it can just send it ... Yes, straight through the firewall. ... and that it's very cheap. ...
    (microsoft.public.security)
  • RE: Spyware
    ... most spyware uses the outbound HTTP & HTTPS ports. ... Because almost every firewall in the world allows that out. ...
    (Security-Basics)
  • Re: Help on SEARCH with MSN
    ... It is not spyware or any of those as I have them all ... You should periodically defragment your hard drives as well as check them ... using Windows XP "prettifications". ... You should at least turn on the built in firewall. ...
    (microsoft.public.windowsxp.configuration_manage)