Re: [Need] Old version of Zonealarm

Author	All Replies
JTM1051 MVM join:2000-07-08 Moorpark, CA	reply to Hayduke Re: [Need] Old version of Zonealarm said by BJ : You can also download versions as far back as 4.5 direct from ZoneAlarm themselves ... And if needed you can download User Guides (versions 4.5 - 7.0) from ZA here. Are using some type of broadband service, with an DSL or Cable modem that has its own SPI firewall, or an non-firewall modem with an NAT/SPI router? If not, would highly recommend using either modem with SPI firewall or modem with NAT/SPI router as your first line of inbound protection, using a software firewall mainly for monitoring/restricting outbound traffic. There are some known vulnerabilities with older versions of ZA firewalls.
JTM1051 MVM join:2000-07-08 Moorpark, CA	to forum · permalink · · 2008-03-23 14:43:17 ·
ThatsTheQuestion @inet.fi	quote: If not, would highly recommend using either modem with SPI firewall or modem with NAT/SPI router as your first line of inbound protection, using a software firewall mainly for monitoring/restricting outbound traffic. There are some known vulnerabilities with older versions of ZA firewalls. But how many of those known vulnerabilities in older ZA versions are inbound vulnerabilities that actually allow some form of malicious traffic to breach the firewall from outside? I don't know of any, although maybe there are some. Most of the vulnerabilities I know of have to do with the outbound protection side, which should be much less important, since if you let malicious code run on your system you cannot be sure any software will contain it.
ThatsTheQuestion @inet.fi	to forum · permalink · 2008-03-24 14:52:02 ·
JTM1051 MVM join:2000-07-08 Moorpark, CA	said by ThatsTheQuestion : But how many of those known vulnerabilities in older ZA versions are inbound vulnerabilities that actually allow some form of malicious traffic to breach the firewall from outside? If you really want to know check out some of the security sites; e.g., Secunia Advisories by Product. The essence of my reply was the recommendation of using a modem or router with a good SPI Firewall for the first line of defense for inbound protection, rather than just relying on a software firewall. The "There are some known vulnerabilities with older versions of ZA firewalls." was separate "FYI" comment in case OP was not aware and may want to investigate further. ...Most of the vulnerabilities I know of have to do with the outbound protection side, which should be much less important, since if you let malicious code run on your system you cannot be sure any software will contain it. True, hence is exactly why I noted "... monitoring/restricting outbound traffic." and not outbound protection.
JTM1051 MVM join:2000-07-08 Moorpark, CA	to forum · permalink · · 2008-03-24 20:59:44 ·
Hayduke join:2001-01-06	Yeah, I know the old versions are vulnerable but I'm also behind a router. I just wanted a little something extra before I got it on line to scan at Kaspersky's. Appreciate the help all, hayduke --
Hayduke join:2001-01-06	to forum · permalink · · 2008-03-24 21:38:03 ·


Tuesday, 02-Dec 16:05:00	Terms of Use \| Privacy Policy \| Hosting by www.nac.net - DSL,Hosting & Co-lo \| feedback \| contact over 9 years online! © 1999-2008 dslreports.com. page compression OFF