gate1975mlm
Premium
join:2001-09-30
Philadelphia, PA
3 edits | Leo Laporte says software firewall not needed!
Leo Laporte says all the time that if you use a router you do not need to use a software firewall. Infact he recommends not too. What do you all think? |
|
Drunkula
Premium
join:2000-06-12
Denton, TX
 ·Verizon FIOS
1 edit | Re: Leo Laport says software firewall not needed!
I'd say he's stupid for recommending such actions. Just my 2 cents....
EDIT:
I guess I should elaborate a little. My reasoning is that most home routers do not block outbound traffic by default. Without that functionality I think you're playing with fire. |
|
PetePuma
How many lumps do you want
Premium,MVM
join:2002-06-13
Arlington, VA
| reply to gate1975mlm
It's not the first time I've said it on this site-- Leo is an idiot.
I'm not a strong proponent or opponent of software firewalls. A lot of it depends on your competency. But to explicitly NOT recommend it is stupid. Most of the time it's a good idea and won't hurt you. |
|
Steve
I'm a PC, so shut up
Consultant
join:2001-03-10
Yorba Linda, CA
| reply to Drunkula
said by Drunkula  :I'd say he's stupid for recommending such actions. I don't think that's stupid at all - I don't run a software firewall of any kind either.My reasoning is that most home routers do not block outbound traffic by default. Without that functionality I think you're playing with fire. An outbound firewall doesn't offer any first-line defense: it only protects you if you have already done something stupid.
So what you're saying: "I do stupid things and need outbound protection, and he's stupid for suggesting I don't"
?
Steve
--
Stephen J. Friedl • Unix Wizard • Microsoft Security MVP • Tustin, California USA • my web site |
|
Vampirefo
Premium,MVM
join:2000-12-11
Huntington, WV | reply to gate1975mlm
Leo is just stating the truth, but if people want to use a software firewall go ahead and use it.
--
Best RegardsVampirefo |
|
KoolMoe
Aw Man
Premium
join:2001-02-14
Annapolis, MD
clubs:
·Verizon FIOS
 ·Speakeasy
| reply to gate1975mlm
If you make a claim that someone said something, it would be helpful to point to where that can be verified - assuming it's available.
I don't use a software firewall. I have a router, have anti-virus, and have SpyBot S&D set to run every so often.
So, assuming my own practices are wise enough to keep malicious crap off my computer - and that my AV and Spyware programs can help where I miss - I see no need for a software firewall.
If legit programs like WMP, Real, etc. want to phone home on occasion, it doesn't bother me.
Actually, I guess I do use a software firewall now that one was installed with XP SP2... I'm not going to take pains to disable it, but I don't worry about my Win2k machines that don't have such either.
KM |
|
BlitzenZeus
Burnt Out Cynic
Premium,MVM
join:2000-01-13
Beaverton, OR
·Verizon FIOS
·Verizon Online DSL
2 edits | reply to gate1975mlm
I only really run a software firewall as I use a method which doesn't allow for a hardware firewall, my cell phone, or dial-up at times.
However I would still continue to run one to prevent the built-in windows networking, and administration from being used in a networked environment, it would also allow me to restrict which ip addresses could use windows built-in networking within the network.
--
My hourly rates:
$25 per hour.
$35 per hour if you want to watch.
$45 per hour if you want to help.
$75 per hour if you tried to fix it, and failed.
The biggest error is sitting in front of your keyboard. |
|
gate1975mlm
Premium
join:2001-09-30
Philadelphia, PA
| reply to Steve
said by Steve :said by Drunkula :I'd say he's stupid for recommending such actions. I don't think that's stupid at all - I don't run a software firewall of any kind either. My reasoning is that most home routers do not block outbound traffic by default. Without that functionality I think you're playing with fire. An outbound firewall doesn't offer any first-line defense: it only protects you if you have already done something stupid. So what you're saying: "I do stupid things and need outbound protection, and he's stupid for suggesting I don't" ? Steve Thats what I was thinking! 
I never install any bad stuff on my pc. And I also am running things like Anti Virus software,SpywareBlaster,Microsoft AntiSpyware,Spybot - Search & Destroy,Trojan Remover, Adaware and the Spyware Block List File so all those things would stop the bad stuff from getting on my pc in the first place right? |
|
gate1975mlm
Premium
join:2001-09-30
Philadelphia, PA
| reply to KoolMoe
said by KoolMoe :If you make a claim that someone said something, it would be helpful to point to where that can be verified - assuming it's available. I don't use a software firewall. I have a router, have anti-virus, and have SpyBot S&D set to run every so often. So, assuming my own practices are wise enough to keep malicious crap off my computer - and that my AV and Spyware programs can help where I miss - I see no need for a software firewall. If legit programs like WMP, Real, etc. want to phone home on occasion, it doesn't bother me. Actually, I guess I do use a software firewall now that one was installed with XP SP2... I'm not going to take pains to disable it, but I don't worry about my Win2k machines that don't have such either. KM He says it almost every week on his radio show. |
|
Cudni
La Merma - Vigilado
Premium,MVM
join:2003-12-20
Someshire
1 edit | reply to Steve
What if the system allows something stupid to happen, as in something installed on the comp due to unknown and un-patched vulnerability, to an otherwise cautious user?
edit@ or if in error wrong patch is applied
»www.eweek.com/article2/0,1895,1874284,00.asp
Cudni |
|
DSL_Steve
Premium
join:2003-11-28
Woodbury, CT | reply to gate1975mlm
This would be true if he was talking about a Mac and I'd be willing to bet he was. He's a big Mac advocate. |
|
gate1975mlm
Premium
join:2001-09-30
Philadelphia, PA
1 edit | said by DSL_Steve :This would be true if he was talking about a Mac and I'd be willing to bet he was. He's a big Mac advocate. Yes I know he loves mac but I am 100% sure he was talking about the PC. |
|
dave
Premium,MVM
join:2000-05-04
not in ohio |  reply to Steve
I'm with stupid. |
|
Mercurybird
Premium
join:2004-06-24
Hooks, TX
 ·Allegiance Communi..
·CableOne
| reply to gate1975mlm
Even though I run Smoothwall I still run NPF 2004. Why? Because I paid for it. What a waste it would be to pay for it and then not use it.
Layers folks, layers!
I have one rule that I live by... 'Have as many reasons as you possibly can for why you do what you do. Have as many reasons as you possibly can for why you don't do what you don't do.' You will never be confused.
Mercurybird |
|
Hall
Premium,MVM
join:2000-04-28
Dayton, OH
·EarthLink
·AT&T Midwest
·Earthlink Cable Mo..
| reply to gate1975mlm
said by gate1975mlm :Leo Laport says all the time that if you use a router you do not need to use a software firewall. He was kind and left out the part about "...only do this if you're a competent, intelligent computer user...".
My wife's computer went two years with NO software firewall and she had ... ZERO problems. Why ?? 'cause she was educated about security, common sense, and so on. She doesn't fall for browser popups telling her "WARNING: Spyware has been detected on your computer. Click here to remove it." |
|
GKJUG
@ziplink.net | reply to gate1975mlm
I think Leo's right on the money - if you know what you're doing. I don't see any harm in having Windows Firewall up just in case there's a slip up though. |
|
jp10558
Premium
join:2005-06-24
Willseyville, NY
| reply to gate1975mlm
I think software firewalls are necessary for several reasons. One, they are simpler to maintain for most users who likely will just turn off a firewall entirelly if it's breaking things and they can't figure out how to use it.
Two, with laptops much more prevelant - do you want to bet your security on someone else's config and setup as well as trust the competence of everyone else on the LAN when you're at college or the cafe?
--
Opera 8.5(Build 7700); Windows XP Pro SP2;Athlon 64 3400+; 1GB PC3200 DDR; 1M/128k DSL; NOD32(Version 2.5.25); Outpost Pro 3;Proxomitron 4.5j Grypen 10/19/05(Opera mod),GPG ID:0x0A1C6EE3 |
|
Keizer
I'M Your Huckleberry
Premium,MVM
join:2003-01-20
| reply to Steve
I don't run a software firewall of any kind either. An outbound firewall doesn't offer any first-line defense: it only protects you if you have already done something stupid.
So what you're saying: "I do stupid things and need outbound protection, and he's stupid for suggesting I don't"
?
Steve
Well gee, aren't you special! Maybe some of us like to do stupid stuff on purpose when we surf. You know there are times when you want to as well!
Personally, I don't rely heavely on any of these security apps to keep my system clean. I have unconventional ways of handeling that.
Keizer |
|
redxii
too big to fail
Premium,Mod
join:2001-02-26
Texas
Host:
/dev/null
Broadband Tweaks
Suddenlink
ISDN
Fiber Optic
2 edits | reply to gate1975mlm
Somewhat in agreeance.
I have a router but I don't use a software firewall ATM. I have alot of games and apps that are internet-enabled. Even at my proficiency level, configuring rules for apps was a very tedious job, and alot of the times I couldn't get the right ports or port type (either due to lack of documentation, or there are just SO MANY for some apps, and when I miss a port it will interrupt the game).
Another reason is because a firewall years ago is not a firewall today. Companies like ZA or Symantec are into memory sucking, CPU hogging "suites" and true firewalls like Kerio 2.15 are dying off to make way for more firewall suites.
I use IE, I don't use an admin account, and have AVG. I'm just dandy. I use AVG is the only 3rd party security app running.
--
Microsoft Windows 2000/XP Security: Some Assembly Required. |
|
Da Geek Kid
join:2003-10-11
Mclean, VA
1 edit | reply to gate1975mlm
Leo is a JACKA$$$
Plain and simple, really. He need not to worry on his apple
 |
|
