Does Windows Firewall Actualy Do Anything?

[Guest]

I recently noticed that when I clicked on default settings for W.F. and
unchecked the only box left (remote computing), all my internet programs
still work great, if not better! I had years worth of ports open and I think
they may have been causing memory conflicts. A lot of programs like AVG and
Windows Live Messenger ask for three ports each, which I denied and noticed
they both still work fine. In fact the only program I allow a port is Bit
Torrent, but they claim their program will work even with out a port open.
I'm using XP Pro with just the tcp/ip turned on and a straight thru etherfast
cable modem connection.

 

[Shenan Stanley]

I recently noticed that when I clicked on default settings for W.F.
and unchecked the only box left (remote computing), all my internet
programs still work great, if not better! I had years worth of
ports open and I think they may have been causing memory conflicts.
A lot of programs like AVG and Windows Live Messenger ask for three
ports each, which I denied and noticed they both still work fine.
In fact the only program I allow a port is Bit Torrent, but they
claim their program will work even with out a port open. I'm using
XP Pro with just the tcp/ip turned on and a straight thru etherfast
cable modem connection.

The Windows XP Firewall blocks incoming requests only.
If a program installed on your system initiates the request (like your
torrent app likely does) then it is allowed through the firewall.
That's why things like "One-Click UltraVNC" works so well.

 

[Leythos]

I recently noticed that when I clicked on default settings for W.F. and
unchecked the only box left (remote computing), all my internet programs
still work great, if not better! I had years worth of ports open and I think
they may have been causing memory conflicts. A lot of programs like AVG and
Windows Live Messenger ask for three ports each, which I denied and noticed
they both still work fine. In fact the only program I allow a port is Bit
Torrent, but they claim their program will work even with out a port open.
I'm using XP Pro with just the tcp/ip turned on and a straight thru etherfast
cable modem connection.

The windows firewall does very little to protect you unless you know how
to control it and monitor it daily.

Most applications, when you run as a default user, can punch holes in it
and allow external connections without you even being aware that they
entered an "Exception" in the WF.

Windows firewall is good enough to barely get you online and updated
with patches as long as you DON'T DO ANYTHING ELSE.

--

Leythos
- Igitur qui desiderat pacem, praeparet bellum.
- Calling an illegal alien an "undocumented worker" is like calling a
drug dealer an "unlicensed pharmacist"
(e-mail address removed) (remove 999 for proper email address)

 

[Straight Talk]

The windows firewall does very little to protect you unless you know how
to control it and monitor it daily.

Only true of one is stupid enough to run with full priviliges.

Most applications, when you run as a default user, can punch holes in it
and allow external connections without you even being aware that they
entered an "Exception" in the WF.

Which is true for any appliation run as a default user.

Windows firewall is good enough to barely get you online and updated
with patches as long as you DON'T DO ANYTHING ELSE.

Very simplistic.

 

[Straight Talk]

I recently noticed that when I clicked on default settings for W.F. and
unchecked the only box left (remote computing), all my internet programs
still work great, if not better!

Why does this surprise you? - Do you expect applications you install
to not work by default?

I had years worth of ports open

Open for real or just allowed in your firewall?

and I think they may have been causing memory conflicts.

What makes you think so?

A lot of programs like AVG and Windows Live Messenger ask for three ports each,
which I denied and noticed they both still work fine.

AVG asking for open server ports? I doubt that.

 

[Leythos]

Only true of one is stupid enough to run with full priviliges.

I would suggest that 90% of the people using XP don't have a clue about
the WF, that they don't even know it permits exceptions, that they don't
know that programs can create exceptions without them knowing, and that
at least 90% are running as a local admin because MS and the vendors
that write programs don't understand security.

Which is true for any appliation run as a default user.

Some applications that are soft firewalls at least require or try and
require a check with the user - WF doesn't.

Very simplistic.

No, it's 100% accurate, what do you have to offer?


--

Leythos
- Igitur qui desiderat pacem, praeparet bellum.
- Calling an illegal alien an "undocumented worker" is like calling a
drug dealer an "unlicensed pharmacist"
(e-mail address removed) (remove 999 for proper email address)

 

[Straight Talk]

I would suggest that 90% of the people using XP don't have a clue about
the WF, that they don't even know it permits exceptions, that they don't
know that programs can create exceptions without them knowing, and that
at least 90% are running as a local admin because MS and the vendors
that write programs don't understand security.

And that is the problem that needs to be changed.

Some applications that are soft firewalls at least require or try and
require a check with the user

Yes. And by promoting these you promote status quo.

 

[Leythos]

And that is the problem that needs to be changed.

And it's not going to be changed, even in Vista it's not changed, and
the only thing we can do is tell people. So, we're back to monitoring
and checking the exceptions rules just like I said.

Yes. And by promoting these you promote status quo.

I don't and didn't promote using a third-party firewall, my first
statement was clear and didn't do what you suggest.

I personally suggest a NAT Router at the least and a Firewall appliance
as the best choice - one that filters SMTP and HTTP sessions for content
types (removes them).

--

Leythos
- Igitur qui desiderat pacem, praeparet bellum.
- Calling an illegal alien an "undocumented worker" is like calling a
drug dealer an "unlicensed pharmacist"
(e-mail address removed) (remove 999 for proper email address)

 

[Straight Talk]

And it's not going to be changed, even in Vista it's not changed, and
the only thing we can do is tell people.

Exactly. So that is what we should do.