Have any of you wondered how safe you were on the net , especially if you have cable modem or dsl ,, I found a pretty interesting feature on this site below (symantic site ) .... Without my firewall , the system was able to give me my windows xp pro log on name and some other info , but after enabling the firewall , i was pretty well protected ... Post your comments on what you guys think of this, I don't know how many of you use firewalls and antiviruses ,, but i live by them ,, especially with 80 gigs of info and 2 operating systems on my computer ......
let meknow how you guys fare out

here is the link click here

click on scan for security risks

 

I run a firewall box (either customized Linux kernel or off the shelf unit depending on the day and the moon) all the time. Both appear rather secure from all tests I have run against them. I run a 4 to 6 computer (depending on guests and laptop) network at home, so it needs to be protected and the NAT of the firewalls is also a must.

The folks at http://scan.sygatetech.com/ have some very through scanning tools as well.

 

I have a cheapo linksys router that has a firewall in it. It seems to work pretty well.... Unfortunately my **** *** of a stupid donkey rape cable modem is being a *****, and I have to reset it manually every hour

 

I'm lazy. I hide behind NAT and a virus scanner. I expose one of the computers for gaming when I need to, but it is fully patched and running zone alarm.

You can try www.grc.com too. But he is a frickin psycho. More of a port scan than a security sweep.

 

The guy over at GRC is one smart dude...he really knows his stuff. In addition to his port scanner, he has a very small program to probe your firewall. I'd put more faith in the info returned from his site than that of Symmantec's.

 

i *was* running just a software firewall, but after i got a router it never got any pings so i just uninstalled it... goin with just the router and NAV2000 now... haven't had any problems yet...

 

I just use my router because all the pesky firewalls and whatnot always get in the way. I passed all Symantic's tests.

 

I would say approximately 90% of the informed security community is going to disagree with you on that one. The guy who made a big deal when he was hit by a DDOS attack. All he really does is try to scare people, especially about software flaws that are already patched or were difficult to exploit in the first place.

DSL is as dangerous as cable is for the really malicious people and dialup is not exactly a free picnic. They are both regularly targeted by people setting up a DDOS attack.

 

i'd like to respectfully disagree with this post. obviously each has their own opinion and sometimes i like to imagine i'm part of the informed security community you mention. i reckon as long as you're capable of doing your own investigation and research, you can decide for yourself who is worth listening to. steve gibson IS a well-regarded member of the internet security community and a very talented application developer whose web site garners a daily hit count which suggests he is more than just a scaremonger.

just one example.....he was one of the first people to draw attention (way back when) to the fact that software firewalls (of the day) didn't actually block spoofed outbound traffic. we all thought that because zone alarm (the only one that blocked outbound traffic at the time) asked for permission for each app that we were ok - bad assumption.

i respect his opinion but then i don't take it for gospel either. why not just listen, research, then decide...

 

One thing to point out, I did look at his website and have an amazing revelation to make:

Personal software firewalls are not the be all end all of Internet security.

Ever read a good security journal. They recommend a well rounded approach to security, not just sticking Zone Alarm or another personal firewall product on there. By the simple addition of a good virus scanning program, with up to date signature files, almost every Trojan will be caught. The only ones that will slip past are those that are so new that there is not currently an updated signature available for them. By the user taking the simple precaution of not clicking on every damn file that comes in via e-mail they also avoid trojan style viruses. The fact of the matter is that almost every exploit that moron comes up with is easily foiled by good common sense security practices. If you are relying on a personal software firewall as your only defense while you are on the Internet you deserve to have your computer owned, your passwords stolen, and your first child beaten. Because these are the morons that become willing DDOS bots and attack important sites like Playboy.com.

As another reference you might actually look at the different places he tends to show up in. They are magazines like "PC World" and "Hey, I turned on my computer". Read an IT E-Mag like "The Register" and see what they have to say about his Windows XP Raw Sockets is going to destroy the world crap. Microsoft actually exposes the full TCP/IP standard to the desktop market instead of their somewhat proprietary former approach? Now a Windows user can spoof their IP address. OMG!

The man, is an alarmist. While security professionals everywhere are making efforts to insure their networks are secure this little man goes off spouting extremist nonsense to get his name in the papers. My favorite is his line about how Windows NT is theoretically secure. First mantra of computer security - No system is EVER secure. Unless its turned off and melted into whatever the hell they melt computers into.

 

oh yeah?!?!
i think we should take this outside kc5zom!

i challenge thee to a duel.......
antique pistols at dawn it shall be. we shall meet sir, on the hustings!

 

Does that include a ticket to NZ? If so, I might take you up on that one. For the principle of the thing, not for the ticket to NZ.

 

/me looks around the room, wondering exactly what principles are.

anyone?

i swear i used to keep some around here somewhere, if only i could remember where!

i think you'd like it here kc5zom, if only for access to all the japanese car parts we have.