H
Hank Arnold (MVP)
Kayman said:And 99.99% of quoted statistics are made up on the spot...
Including yours??? ;-)
--
Regards,
Hank Arnold
Microsoft MVP
Windows Server - Directory Services
Kayman said:And 99.99% of quoted statistics are made up on the spot...
Once again, will someone tell this person what outbound packet filtering
means, which Vista has outbound packet filtering. What he is talking about
is application control, which are two differnt things and is snake-oil.
Vista's outbound filtering needs manual configuration and is well
beyond the scope of anyone who doesn't have serious training.
Application filtering is not snake-oil and does have value.
It's also possible for average users to actually turn it on an have it work.
Nonsense. Not all malware is sharp enough to avoid firewall detection.
Not all malware infections are lost cases.
Repair is possible quite often.
The earlier the problem is detected, the higher the probability
for repair. There are enough malware schemes that don't avoid the
firewall that it is worth using one. PERIOD.
Museums have sophisticated security systems. Nonetheless, criminals
get through them and steal valuable items fairly consistently. Do the
museums throw up their arms and say "we won't bother with an alarm
system since there are _some_ people who can beat it". No, they
install a security system that keeps out the large majority of
potential thieves, recognizing that no system is perfect.
The fact that some people have an illusion of safety does not negate
the increased security offered by an outbound firewall.
There's a difference between relying and utilizing.
But the point be argued here is having an outbound firewall vs. none
at all (windows firewall).
No A/V solution will catch everything.
Add a few layers - an extra non-unobtrusive, non-performance impacting
layer that can help is worth it, IMHO.
+Bob+ said:On Wed, 30 Jul 2008 13:01:16 -0400, "Mr. Arnold" <MR.
Vista's outbound filtering needs manual configuration and is well
beyond the scope of anyone who doesn't have serious training.
Application filtering is not snake-oil and does have value. It's also
possible for average users to actually turn it on an have it work.
Root Kit said:On Wed, 30 Jul 2008 13:01:16 -0400, "Mr. Arnold" <MR.
Okay. There is a big difference between outbound packet filtering and
application control. Neither are reliable counter measures against
malware allowed to run.
As Captain Kirk said to the robot:All generalizations are false (including this one).
Including yours??? ;-)
I agree that some programs can work towards beating your outbound
firewall - but on a practical basis, it catches quite a few. Some is
better than none.
What is there to 'catch'. Since malware already has/is manipulating your OS
the game is lost[PERIOD]!
Nonsense. Not all malware is sharp enough to avoid firewall detection.
Not all malware infections are lost cases. Repair is possible quite
often. The earlier the problem is detected, the higher the probability
for repair. There are enough malware schemes that don't avoid the
firewall that it is worth using one. PERIOD.
Museums have sophisticated security systems. Nonetheless, criminals
get through them and steal valuable items fairly consistently. Do the
museums throw up their arms and say "we won't bother with an alarm
system since there are _some_ people who can beat it". No, they
install a security system that keeps out the large majority of
potential thieves, recognizing that no system is perfect.
The fact that some people have an illusion of safety does not negate
the increased security offered by an outbound firewall.
There's a difference between relying and utilizing.
No, I've been spending my "wondering time" puzzling over how someone
becomes such a condescending, know-it-all, dick head like you.