Originally posted here by catch
I mean that firewalls should only be used for:

- Segregating network segments (fancy that)
- Monitoring/Filtering network content
- Tracking network accesses (for use in system isolation in worm/attack response)

Considering that application firewalls do none of these things, you are better off without them.

Close all unneeded services and use authentication mechanisms on services you'd like to control access to.
Operate the system as a non-privileged user to prevent the installation of malware.
Use the operating system's built-in networking filtering if you wish to control access to systems behind the system in question.

cheers,

catch
OK, this is a view I haven't heard yet... If I don't use a firewall, isn't that opening up my computer to attacks? Open ports, programs accessing ports I don't want them to? Everyone is always saying how you "need" a firewall... I'm a little confused. Thanks,

Jedi