Do you install a 3rd party firewall?

Page 2 - Seeking answers? Join the AnandTech community: where nearly half-a-million members share solutions and discuss the latest tech.
Toggle sidebar Toggle sidebar

Is the Windows Firewall enough?

  • Yes Windows Firewall is enough

  • No it is a must these days to install a 3rd party firewall

Results are only viewable after voting.
T

theevilsharpie

Platinum Member
Nov 2, 2009
2,322
14
81
destrekor said:
One note though: when I discussed prompts, I wasn't thinking only of the Firewall prompts - I know that much is dependent on a few factors (you described more than I was familiar with in that regard, btw), but also UAC prompts - before a program can even alter anything in the firewall, it has to be granted access for installation anyhow.
Click to expand...

You would think you'd need at least elevated access, but that doesn't seem to be the case. I've had to disable a few firewall rules added by games I've installed from Steam, and I never received a UAC prompt in those instances.

destrekor said:
This much I'm a little dusty with, but can malware and whatnot slip through all of that and go straight into altering Firewall rules, without *any* interaction from the user?
Click to expand...

Drive-by downloads from malicious Flash or Java applets are an obvious vector of attack.
 
Z

Zorander

Golden Member
Nov 3, 2010
1,143
1
81
I used Zonealarm a few years back but had to uninstall it due to a crashing conflict with the system. Since then, I've made do with the built-in router firewall and Windows firewall. It's worked out great so far (not that I'd be aware of anyone having broken through rite)
 
L

lothar

Diamond Member
Jan 5, 2000
6,674
7
76
On Windows 7, Windows Firewall is enough.
On Windows XP however, I installed COMODO firewall.
 
UberNeuman

UberNeuman

Lifer
Nov 4, 1999
16,937
3,087
126
manko said:
Windows 7 firewall works well with Windows7FirewallControl (free version). It's an extra control panel that works like some other firewalls that popup when a process tries to connect to the network or internet, then you can allow/deny to create a whitelist and blacklist.

http://www.sphinx-soft.com/Vista/
Click to expand...

This is what I use as well.... it's a good program to use with the Win 7 firewall....
 
jhansman

jhansman

Platinum Member
Feb 5, 2004
2,768
29
91
Belt & suspenders = MSSE & Malwarebytes. In two years, not one nastie has gotten through, and more than a few have tried.
 
tweakboy

tweakboy

Diamond Member
Jan 3, 2010
9,517
2
81
www.hammiestudios.com
IF you use windows firewall your very limited. Of course you use a third party..

Im using Windows7Firewall , free easy small firewall app.. that gets PASSED @ gibson shields up all green and stealth. Windows firewall cant make them all green and stealth,, so I fail the shields up test ,,,,,,, As soon as I put firewall up and turned windows firewall off ,, now gibson gives passed,, and all green stealth.

Its free and its lean,, easy app ... tweakboy recommends 5 / 5 stars.
 
Nothinman

Nothinman

Elite Member
Sep 14, 2001
30,672
0
0
Chaotic42 said:
I built an OpenBSD firewall. PF for the win.
Click to expand...

PF is nice, but I'd rather no deal with OpenBSD for just that one feature. And it's a pretty heavy-handed solution for most people.

tweakboy said:
IF you use windows firewall your very limited. Of course you use a third party..

Im using Windows7Firewall , free easy small firewall app.. that gets PASSED @ gibson shields up all green and stealth. Windows firewall cant make them all green and stealth,, so I fail the shields up test ,,,,,,, As soon as I put firewall up and turned windows firewall off ,, now gibson gives passed,, and all green stealth.

Its free and its lean,, easy app ... tweakboy recommends 5 / 5 stars.
Click to expand...

You're, not your.

Gibson is a tool and making things "stealth" has virtually 0 security benefit.
 
tweakboy

tweakboy

Diamond Member
Jan 3, 2010
9,517
2
81
www.hammiestudios.com
Nothinman said:
PF is nice, but I'd rather no deal with OpenBSD for just that one feature. And it's a pretty heavy-handed solution for most people.



You're, not your.

Gibson is a tool and making things "stealth" has virtually 0 security benefit.
Click to expand...


Your kidding me ? Those are your ports, and some are left open and attacker can see your comp and that there is a computer there. If your Stealth your not even seen on the internet,, I mean someone can get your IP but it shows there is no computer at that IP address... Your showing your computer to public and you have open port holes... hmm :twisted:
 
Chaotic42

Chaotic42

Lifer
Jun 15, 2001
34,804
1,985
126
Nothinman said:
PF is nice, but I'd rather no deal with OpenBSD for just that one feature. And it's a pretty heavy-handed solution for most people.
Click to expand...

Well, it was also for fun and to check out OpenBSD. Still, it works pretty well.
 
Nothinman

Nothinman

Elite Member
Sep 14, 2001
30,672
0
0
tweakboy said:
Your kidding me ? Those are your ports, and some are left open and attacker can see your comp and that there is a computer there. If your Stealth your not even seen on the internet,, I mean someone can get your IP but it shows there is no computer at that IP address... Your showing your computer to public and you have open port holes... hmm :twisted:
Click to expand...

No, not kidding at all because I understand how TCP/IP and security work. Firewalls have been dropping pings for years now so no worthwhile attack relies on it. And if you have just 1 port open I know you're there, so having the rest be stealth becomes pointless. And if your router/firewall is doing it's job, no packets are making it into your PC unless you configure it that way. If you're not trying to open a port up to the Internet, just don't do that then.

Chaotic42 said:
Well, it was also for fun and to check out OpenBSD. Still, it works pretty well.
Click to expand...

True, it's a decent system and PF is really nice. But I'm just too used to the convenience of Debian with regards to packages.
 
Chaotic42

Chaotic42

Lifer
Jun 15, 2001
34,804
1,985
126
Nothinman said:
True, it's a decent system and PF is really nice. But I'm just too used to the convenience of Debian with regards to packages.
Click to expand...

Yep. I miss it on every other OS, especially Windows. Maybe with their app store for Windows 8, they'll have free and paid repositories accessible by command line....:whiste::ninja:
 
Nothinman

Nothinman

Elite Member
Sep 14, 2001
30,672
0
0
Chaotic42 said:
Yep. I miss it on every other OS, especially Windows. Maybe with their app store for Windows 8, they'll have free and paid repositories accessible by command line....:whiste::ninja:
Click to expand...

I would think there would be some PowerShell support for interacting with the store and packages installed from it, but it'll probably be as user-hostile as the rest of PowerShell and no one will use it.
 
lxskllr

lxskllr

No Lifer
Nov 30, 2004
60,064
10,548
126
ZoneAlarm always gave me flaky performance. When it worked, it worked great, but I'd regularly get updates that broke it. I switched to Sygate, and while I didn't like it quite as well, it was solid as a rock. When I went to broadband, I just used the Windows firewall.
 
A

AE-Ruffy

Member
Apr 15, 2012
122
0
76
i used a network\hardware based firewall.

currently smoothwall on a old machine. Going to run pfsense soon.
 
You must log in or register to reply here.

TRENDING THREADS

COMPANY
RESOURCES
FOLLOW
Top Bottom