We just got a cable modem for our computer and was wondering what people would suggest for a firewall? Are there any good free firewalls that you can use, or should I buy something? Thanks for the suggestions! BRian
mancu, you could be on the wrong end of a trojan or virus like I am right now.. it is "fixed" but my system is still screwed up
what happened is I innocentlly downloaded a program and the person who compiled it had also set it up to run a trojan program when i clicked install. the program works fine and the trojan is now gone but the damage is done to my system. and so far i dont knoew how to fix it. the program i downloaded was cygwin which is a unix emulator and c compiler for windows but this asshole added a trojan to it. so it is not just IRC and wares sites where this can happen. I got the link to the binary from a reputable site the firewall alerted me that a program i didnt know about was trying to acess the internet and thats how i found out i was infected [This message has been edited by Randall Twede (edited August 08, 2001).]
yes but much less risk depending on system. if you use win95 or 98 or a unix it is less if you use winNT then the risk is more from unsolicited intrusions. the IIS server is bad too for that my zone alarn firewall told me that an unknown program was trying to access the internet on port ("something" i forgot) it is a port that only the netbus trojan uses so i found out from the firewall the name of the trojan file and deleted it [This message has been edited by Randall Twede (edited August 08, 2001).]
Originally posted by Manku Thimma: Ah, so having a firewall could actually detect such trojans? Suppose I never download anything, but still keep my PC actively connected all day, can that be a security risk?
If you are connected to the internet, you are at risk. One of the interesting things about firewalls is that most will let you see how many people try to connect to your computer. It is easy to figure out what operating system you run, and from there people just exploit security holes in the OS or services running on your computer (of course webservers and such, but also many database programs and some software you might not expect to network).
that is basically what i meant by my last reply... win 95 and 98 have less holes than the new wins, and Apache and other servers are safer than IIS because these fools want to exploit win NT , win ME and 2000 people and the IIS server sucks
mancu, to answer your question, if you use win 95 0r 98 and apache server you have little to worry about unless you accidently download the wrong program and run it. they are targeting the others not us rebels
Originally posted by Randall Twede: the firewall alerted me that a program i didnt know about was trying to acess the internet and thats how i found out i was infected
Uh In case you didn't know, Cygwin is SUPPOSSED to connect to the Internet. When you download the file it runs an installer which then goes to each site on your list of 'programs to install' and gets the current version for you. (like Perl, sed, awk, less, etc etc) Maybe you were safe all along? I'm a huge cygwin user myself, but, at home I also run a Linux box (actually it's openBSD) using IP chains. This satisfies my need for a shell AND the firewall issue. Hope this helps. [This message has been edited by John Bateman (edited August 09, 2001).]
SOURCE CODE should be SURROUNDED by "code" tags.
posted 18 years ago
Thanks, Randall, David. I have Win 98; but still will consider getting a firewall. My previous cable modem service guy actually recommended not using a firewall, because those people sniffing around for a computer to connect might actually feel challenged when they encounter a firewall; and would get curious to see what's behind it.
I recently read a security whitepaper (sorry can't remember where it came from) that said the mean time before a system was attacked after being plugged in (read cable modem/DSL) turned on is around 15 - 20 minutes. Definetly get something like zonealarm. You also might consider a personal firewall/switch/router. I use one from Linksys which works great, and lets me have multiple PC's share my DSL line.
posted 18 years ago
Forgot to mention, Linux boxes were actually attacked faster than Win machines. Redhat used to install some parts with low security by default