I still disagree, but also im not going to go into this kind of discussion. The way you are stating it is that no firewall is safe from a trojan. LOL. I rest my case.
Cheers.
Printable View
I still disagree, but also im not going to go into this kind of discussion. The way you are stating it is that no firewall is safe from a trojan. LOL. I rest my case.
Cheers.
Well, I'm Paranoid (hehe, ParaNoia) so I'm something like this.
<My-Machine-with-Firewall>(Proxomitron)--<Router/Firewall>--<Internet>
I wouldn't suggest using two firewalls, causes all kinds of hell....I got locked out of my machine coz Outpost was having a fight with Kiero.....hehe....both of them got Evicted...for any one who is looking for a good free firewall, I would suggest Outpost...It's extremely good, how ever...not compatible with my network traffic sadly, so I had to change to ZA...which I hate...no rules :( any way....a Hardware Firewall or a Router with NAT will take care of a large part of any Illegal traffic...and they won't use up your system resources.......
I'm currently looking ofr a substitute to ZA, I have McAffe, but it sucks....sucks more than ZA...ugh....ok...I'v had alot of problems with firewalls l8ely.... :D
- Noia
Having two firewalls one software and the other hardware will make it much more effective.
will to stop this madness now lol ill show you screenshot of my victim desktop
most of then are using firelwall and anti-virus... :D
one more :D :D :D
Hello again Dwien.
I dont think you understand the whole picture. Just because you have managed to get a trojan on peoples computers does not mean that the antivirus or the firewall are useless. There could be many reasons why you have succeeded with this. My thoughts are that one of the main reasons are user errors. For example, out of date AV, poorly configured firewalls. If on windows i would for example have ZA running, and i get this trojan and ZA tells me that a programm wants to bypass my firewall and i would have no idea what all this was, then i would most probably accept it. Hence : i would be infected by that lame trojan. As for the antivirus, a trojan does not have to be known to an antivirus. Some are known, some not. However, if you do know some basics about security, then believe me, your little trojan would not work. Just to get my point clear to you, a firewall and an antivirus are useless if the person who wants to use them has no idea what he is doing. Best example is, your trojan would not do ANYTHING whatsoever to my systems. Im not saying my systems are 100% safe, no such thing, but i assure you that a trojan like that cannot even get in to my systems. Also, i mentioned user error. Well, you had to get that trojan on the victim some how. So its the victimes fault (maybe not knowingly), but the victim has chosed to accept that file (email attachment, dcc, whatever). People who know a bit about security will not rely just on a AV application to identify the trojan, and also they would not rely on a firewall that can be messed with. Allow me to go into detail using my security as an example. First of all, you cannot even connect to my firewall. My firewall is a dedicated linux computer with 2 ethernet cards. The 2 cards are bridged meaning that no IP is assigned to them at all, not the internal one, and not the external one. This makes it impossible to connect to or from the firewall itself. Then, my firewall runs of a live cd, meaning its read only, so no rules can be changed since the medium where the firewall is is not writable. Then let us say just if that trojan could get on the firewall (i really dont see how), then it would take root (administrators) priveleges to do anything. Since im a bit aware about security, i never do much as root anyways, so using a normal user privelege can not harm the firewall if i were to execute the trojan as a normal user, (since the firewall is run by root). Now then. Since the original purpose of this thread is what is the best software firewall, we see a clear example that 90% of the firewalls mentioned here so far are crap. In my opinion, a firewall must be configured and from there on it should not allow any changes to the rules in any way unless you specifically allow the changes and are 100% sure of what is going on. ZA, sysgate, mcaffee, norton, and all these firewalls are crap. I hope you understand now.
cheers.
I like IPTABLES firewall that comes with Linux, as it's very flexible and open-source. It's kept my system relatively secure, so I can't complain.
PuRe
ok most of them i infect them thru HTML i inject trojan to HTML if somebody view that web page it will upload the shtml after second reboot the shtml will creat exe file after 3 reboot the exe file will execute by it seft here yah go ...second my trojan isnt public datswhy most anti-virus or firewall cant pick it up if i release my own trojan to public im sure with in 4 hours my trojan wil go to there database...i have my own trojan for like 2 years and i keep recoding it till now still undetected
Peace
Sorry my last post might sound incomplete. I had to logoff whilst writing it. You say your trojan uploads itself via html? Like i said, all these little puny software firewalls can be fooled by this, but theres no way those kinda trojans can do anything to a "REAL" firewall. I also bet if you tune your IE or Netscrape a bit, that html trojan becomes worthless. Heh, this reminds me of sub7 and netbus times, ancient lame lil trojans. The only similar program i might have some respect for due to its unique power is KIS (Kernel Intrusion System). But still, a "REAL" firewall will protect you from this aswell. The other side is, if i were to give you normal access to my machines, and you would manually place that trojan on them, you would still not be able to do much damage, since your priveleges would not allow any critical changes to my systems. So say you have a trojan on my box, it would still not have access to the firewall (unless i would be so dumb and launch the trojan as root) and that trojan would grant you a backdoor or other form of access on my system, then you would only be able to do whatever you do to your personal account. The other user's accounts or the root account would still be safe (depending on the security of the system in general). Little tip from me. Get past the point of using little lame trojans. Even if you make them yourself as you claim, nothing good comes from it. But then again, thanks to peeps like you, people like me have a job. If you really want to achieve something, then put more effort in creating protection against lame little things that you are doing this moment. Help the security community, report how your html can exploit users who goto your webpage. Uhm, how bout you gimme a link to your "injected html" site, so just that you may see this cannot affect a real firewall. Common, grow up, and do something usefull. Like giving out your source to AV companies so that they can implement protection. Believe me, its way more rewarding in many ways than infecting users who dont have a clue about security.
Cheers.
Software firewall : ZoneAlarm
Hardware firewall : PIX 525 .
I have both at home , and the 2 work perfectly. It depends much on your configuation skill.