Farewell Kerio continued
in [Freeware]
|
Prev: Parted Magic 4.9
Next: What I like about Chrome
From: Hutton Conyers on 29 Dec 2009 14:58 >>On Sat, 26 Dec 2009 12:58:24 +0000 (UTC), Bear Bottoms wrote: (snip) >>> However, I agree >>> with David Lipman that the Windows firewall is the very best and if you >>> feel the need for more protection, use a hardware firewall. But how does this stop programs calling home? Particularly MS? Does Windows firewall prevent outgoing connectons? I think not. But correct me if I am wrong. Hutton Conyers
From: Les Nagy on 29 Dec 2009 16:09 On 12/29/2009 2:58 PM, Hutton Conyers wrote: >>> On Sat, 26 Dec 2009 12:58:24 +0000 (UTC), Bear Bottoms wrote: > (snip) >>>> However, I agree >>>> with David Lipman that the Windows firewall is the very best and if you >>>> feel the need for more protection, use a hardware firewall. > > But how does this stop programs calling home? Particularly MS? Does > Windows firewall prevent outgoing connectons? I think not. But > correct me if I am wrong. > > > > Hutton Conyers http://sphinx-soft.com/Vista/order.html The free version gives you outbound control.
From: Les Nagy on 29 Dec 2009 16:16 On 12/29/2009 4:09 PM, Les Nagy wrote: >> Hutton Conyers > http://sphinx-soft.com/Vista/order.html > > The free version gives you outbound control. > > I guess I really should expand on this cryptic message: I have been using Kerio 2.1.5 in XP until October when I finally decided that Windows 7 was worth the switch. Kerio 2.1.5 has a few bugs in XP but is still the best firewall for anything before Vista IMHO. It is light weight, and is very straightforward in functionality. The one big bug it has is that it will pass fragmented packets of a certain type but there has been no exploit for this and probably never will. Kerio can crash the system in certain circumstances and increasing its buffer almost always fixes this problem. When moving to W7, I decided to stick with the built in firewall and use the utility I have linked to to gain back more control rather than blindly letting the built in firewall do what it wants. So far I have seen no issues with this arrangement and I have full inbound and outbound veto as I would have in Kerio. I would recommend it as the cleanest and easiest solution to firewall concerns.
From: David H. Lipman on 29 Dec 2009 16:45 From: "Hutton Conyers" <dingdongdaddy(a)dumas.com> >>>On Sat, 26 Dec 2009 12:58:24 +0000 (UTC), Bear Bottoms wrote: | (snip) >>>> However, I agree >>>> with David Lipman that the Windows firewall is the very best and if you >>>> feel the need for more protection, use a hardware firewall. | But how does this stop programs calling home? Particularly MS? Does | Windows firewall prevent outgoing connectons? I think not. But | correct me if I am wrong. | Hutton Conyers A FireWall appliance would have greater control over that. The MS built-in can limit it as well based upon settings in the OS based FireWall context. -- Dave http://www.claymania.com/removal-trojan-adware.html Multi-AV - http://www.pctipp.ch/downloads/dl/35905.asp
From: John Corliss on 30 Dec 2009 05:14
Les Nagy wrote: > Les Nagy wrote: > >>> Hutton Conyers >> http://sphinx-soft.com/Vista/order.html >> >> The free version gives you outbound control. > > I guess I really should expand on this cryptic message: > > I have been using Kerio 2.1.5 in XP until October when I finally decided > that Windows 7 was worth the switch. Kerio 2.1.5 has a few bugs in XP > but is still the best firewall for anything before Vista IMHO. It is > light weight, and is very straightforward in functionality. The one big > bug it has is that it will pass fragmented packets of a certain type but > there has been no exploit for this and probably never will. Kerio can > crash the system in certain circumstances and increasing its buffer > almost always fixes this problem. Just curious Les, how does one increase the buffer in Kerio 2.1.5? > When moving to W7, I decided to stick with the built in firewall and use > the utility I have linked to to gain back more control rather than > blindly letting the built in firewall do what it wants. So far I have > seen no issues with this arrangement and I have full inbound and > outbound veto as I would have in Kerio. I would recommend it as the > cleanest and easiest solution to firewall concerns. I'm still using Kerio 2.1.5 with XP Home SP3 and found this page: http://www.wilderssecurity.com/archive/index.php/t-85274.html From halcyon's post: > - Kerio's Buffer size needs to be patched in registry not to > cause a buffer problem > http://www.dslreports.com/forum/remark,3060806?hilite=registry+buffer > > - It sometimes loses it's rules completely This has happened to me several times, but I have a backup of the ruleset that I use to restore them. I have no idea why this happens. Hasn't done it in a long time though. > - It has unpatched vulnerabilities (as reported by Secunia): > http://secunia.com/product/1493/ I'm aware of this one also. > - sometimes limits ethernet network bandwidth down to 1/3 - 1/2 > of it's maximum bandwidth This is news to me, but worth looking into. > Some people have noticed a BSOD with fwdrv.sys though: > > http://www.dslreports.com/forum/remark,12530877 I've never experienced this one. I'm giving serious consideration to switching over to PC Tools Firewall Plus: http://www.pctools.com/firewall I already have it installed on my other computer. The only thing I don't like about it is that unlike Kerio 2.1.5, it starts up only after the computer is almost fully booted FWICT. -- John Corliss BS206. Using News Proxy, I block all Google Groups posts due to Googlespam, and as many posts from anonymous remailers (like x-privat.org for eg.) as possible due to forgeries posted through them. No ad, cd, commercial, cripple, demo, nag, share, spy, time-limited, trial or web wares OR warez for me, please. |