Do you need, or know enough to use TPF/KPF?

Author	All Replies
BlitzenZeus Burnt Out Cynic Premium,MVM join:2000-01-13 Beaverton, OR ·Verizon FIOS ·Verizon Online DSL	Do you need, or know enough to use TPF/KPF? The fact is that most people do not understand enough about tcp/ip protocols used, and general internet connectivity/security to configure a firewall correctly. Many people don't even know what is safe to run on their computer, and what isn't so they compromise any security they had easily. The biggest security hole with rule based firewalls is the ones created by the users themselves if they do not know what they are doing. The second is rules created by 'default' configurations, and 'automatic' rules tend to be very leaky when it comes to security. However many people do not even know how to secure, or get rid of what they don't need. The biggest problem here is many people want all this 'security', and control.. They just don't know how to use it, or are not willing to spend the time. The majority wants something easy, and something that won't bother them. However it has been proven that the 'easy' firewalls are less secure overall... The fact is Tiny/Kerio is neither easy, or user-friendly. Its not meant for newbies/beginners, and requires people who are honestly willing to learn/research on their own if they don't have a good hold on tcp/ip protocols already. The truth is most people will not even know how to use the basic application based firewalls correctly, and these are what these people should run until they have a good handle on what is really going on if they ever want to use a more controlling/configurable firewall. The kind of people who use rule based firewalls correctly usually are... people who are power-advanced users who are concerned about ip security, and spend more than a little bit of time at their computer. Also the extremely paranoid security freaks fall into this area since you have to actually know something about what your paranoid about to even be paranoid for a good reason. So.... don't let this put you off from running a rule-based firewall, but know enough to know when your in over your head. You can't be a pro overnight so just use what you do know, and pick the program you know you can configure correctly. -- "Leave it to the catholics to destroy existence" "You can change ideas, but its harder to change beliefs" -Dogma
	to forum · permalink · 2002-03-05 02:45:01 · (locked)
Murray3 join:2001-03-06 Texas	I'll second that. To those who are new to Tiny/Kerio, or are considering it, don't be discouraged though. There's a great FAQ at this forum, to help those folks who are new to Tiny/Kerio. The FAQ is definitely worth checking in to. And of course, there's always help on hand here at this forum. A 100% dedicated forum for Tiny/Kerio discussion! [text was edited by author 2002-03-05 07:27:07]
Murray3 join:2001-03-06 Texas	to forum · permalink · 2002-03-05 07:26:36 · (locked)
jvmorris I Am The Man Who Was Not There. Premium,MVM join:2001-04-03 Reston, VA	reply to BlitzenZeus BZ, I like that. You know, if you went back and changed "TPF/KPF" to "a rules-based firewall", this (IMHO) would make an excellent addition to the Security FAQ. Somewhere between the 'basics' (which I think Zhen-Xjell prepared) and the TPF/KPF specifics (mostly gwion's work). -- Regards, Joseph V. Morris
	to forum · permalink · 2002-03-05 09:27:50 · (locked)
gwion wild colonial boy Premium,ExMod 2001-08 join:2000-12-28 Pittsburgh, PA	reply to BlitzenZeus Everyone needs a firewall that fits. If you're uncomfortable with it, the best firewall on earth will be your worst choice. That's why we never recommend specific firewalls. The FAQ and the resources are available... read them first, it's a good place to start... ask questions... we're here to help. The best firewall is the one that fits for you. Do, remember, some firewalls require a basic understanding of TCP IP networking. Take your time... decide what you like. We don't promote firewalls, we support users. If you have questions, ask... we'll try and help. We'll try to help you decide which firewall's right for you... and it may not be Tiny or Kerio... or it may be... just depends on your needs... But if you're familiar with Zone Alarm or such, don't take for granted that it's a typical example of all firewalls... it isn't (and we're glad there are different choices for different users ). It's designed to be intuitive. It sacrifices granular configuration to fill a niche for people who want a firewall, but want to be able to learn the basics in a few hours and be installed and on their way ... something you just can't do with a rules-based firewall, whether it's Tiny, Kerio, Look and Stop, or any number of others... if in doubt, ask... we want to help, and we'll do the best we can to help you out... Thanks for making a good point, BlitzenZeus, as a reminder to try on firewalls like they're shoes... if they don't fit, they won't feel right, and you won't "wear them" - and a firewall you don't want to use is useless ... you have to find a good fit for your experience level and your degree of willingness to spend time with your firewall and learn the new things you need to work with it, or it just won't fit, won't work, and won't be a good firewall no matter how good it may be, used properly - every system is different, every user is different... Thanks for the reminder... -- A man who carries a cat by the tail is getting experience that will always be helpful. He isn't likely to grow dim or doubtful. Chances are, he isn't likely to carry the cat that way again, either. But if he wants to, I say, let him. --Mark Twain [text was edited by author 2002-03-05 16:30:51]
	to forum · permalink · 2002-03-05 12:25:01 · (locked)


Thursday, 03-Dec 14:23:38	Terms of Use \| Privacy Policy \| Hosting by www.nac.net - DSL,Hosting & Co-lo \| feedback \| contact over 10 years online! © 1999-2009 dslreports.com. republican-creole page compression OFF