On BNET: 5 classic computer pranks
BNET Business Network:
BNET
TechRepublic
ZDNet
TalkBack 40 of 79:
Next »
« Previous
admin is needed
"Once hostile code has gained root access to your system, you've already lost. Any firewall can be easily disabled or cicumvented with only a few lines of code."

Is this the case even if you aren't logged in as an admin?

No, only admins can (or should be able to) manipulate firewall settings, and if you are logged on as a regular user, any program you execute should not be able to shut down or modify your firewall. The problem is that almost every home Windows user, and sadly most corporate windows users do log on as administrators. To complicate matters, Microsoft makes it a pain in the rear to adminster the Windows firewall when you are not logged on as an admin. Apple has the right idea with OSX, by requesting a password when the user tries to do something that makes a system-wide change.

As for what happened to you, I would suggest you not use IE. It's just one big exploit waiting to happen. The outbound blocking helped you, but you are not the average PC user. The fact that you have the ability to look up an IP address' owner shows me that you care about keeping yourself secure, and take initiative when you have too. The average windows user would never have had zone alarm installed, and even if Windows firewall had outbound blocking, they probably would have just clicked yes to get rid of those "annoying" firewall prompts - never realizing what they were doing.

Perhaps I'm being too cynical, but in dealing with corporate windows users every day at work, my experience has shown me that 99% of windows users don't even read the prompts they are given, let alone understand them.

Dumb terminals for our users at work are an appealing though to me some days.
Posted by: toadlife   Posted on: 08/09/04 You are currently: a Guest | Members login | Terms of Use
Reply to Story Reply to Message

Alert moderator to an offensive message

Subscribe to this discussion via Email or RSS

MS sees the light!  enduser_z | 08/08/04
Outbound blocking  Jomo_z | 08/09/04
There is NO WAY to make Windoze secure !  realitycheck101 | 08/08/04
You're right ..  worknman | 08/09/04
Ech..  sshreve@... | 08/11/04
You're right, but...  friedcow | 08/09/04
"UNIX is basically a simple operating system, but you have to be a genius t  bsfisher | 08/09/04
Sure there is...  rbochan | 08/09/04
You guys are forgetting...  ollie_z | 08/09/04
Not just home users  Anton Philidor | 08/09/04
Windows Security  gsquared | 08/09/04
Nope...  Linux User 147560 | 08/09/04
Arrogance or ignorance? BOTH  Squawkbox | 08/08/04
seems you missed the point  zijiang | 08/08/04
Good point HOWEVER  Squawkbox | 08/09/04
Hope you mean metaphorical rats  Anton Philidor | 08/09/04
Yes Yes metaphorical rats  Squawkbox | 08/09/04
MS has different requirements than 3rd party vendors  dsnyder_z | 08/09/04
Thanks NOW I understand, that is why I asked  Squawkbox | 08/09/04
Processes  sshreve@... | 08/11/04
Ironic comments  Nigel Johnstone | 08/09/04
Incremental security step  Anton Philidor | 08/09/04
No mention of hardware firewalls  wdlists@... | 08/09/04
There you go with that common sense approach again.  No_Ax_to_Grind | 08/09/04
Why not hardware.  donford74@... | 08/17/04
Why outbound blocking is so important  friedcow | 08/09/04
It is "game over"  toadlife | 08/09/04
Answer this then  Taz_z | 08/09/04
Answers  toadlife | 08/09/04
Good answers  Taz_z | 08/09/04
easy  tamuhockey | 08/09/04
I hadn't thought of that.  enduser_z | 08/09/04
Not sure, but I don't think so.  tamuhockey | 08/10/04
Why outbound blocking gives a false sense of security  johnrich | 08/13/04
The "Outbound blocking" myth rears it's ugly head again  toadlife | 08/09/04
Mostly wrong  Taz_z | 08/09/04
All I'm saying is that outbound blocking is an overblown feature  toadlife | 08/09/04
All good answers  Taz_z | 08/09/04
It saved me  enduser_z | 08/09/04
admin is needed  toadlife | 08/09/04
Damned if they do, damned if they don't.  No_Ax_to_Grind | 08/09/04
But half-a$$ed works  Anton Philidor | 08/09/04
Al about persecption.  No_Ax_to_Grind | 08/09/04
"... great ..."?  Anton Philidor | 08/09/04
Who said anything about selling it?  No_Ax_to_Grind | 08/09/04
You're right; I left out a step.  Anton Philidor | 08/09/04
Except IE an WMP aren't free  voska | 08/09/04
Re:Except IE an WMP aren't free  Michael L Hereid Sr | 08/15/04
Amen, Brother Ax!  ollie_z | 08/09/04
One problem, I don't trust MS  voska | 08/09/04
come again?  tamuhockey | 08/09/04
RE: Microsoft is the reason we need AV software  Scrat | 08/12/04
Forget Windoze, you Lindoze instead  FilledOut | 08/09/04
ANTI-TRUST around the corner?  No_Ax_to_Grind | 08/09/04
Hmmm, and not a single responce.  No_Ax_to_Grind | 08/09/04
Anti-Trust  blacksheepxlch1 | 08/09/04
Because we all know your right  voska | 08/09/04
UNIX  bsfisher | 08/09/04
It is almost funny!  blacksheepxlch1 | 08/09/04
firewalls  half@... | 08/09/04
Outbound filtering is overrated!  omdguy | 08/09/04
Not that good at all!  htotten | 08/09/04
Sorry, but  richdave | 08/09/04
UNIX hard to use? errm SCO has run on a lot of tills (and so does linux)  hipparchus2000 | 08/09/04
elbow / butt label co-ordination problem.  richdave | 08/09/04
Not perfect, but much better than the alternative.  JonathonDoe | 08/10/04
Competition, no; enterprise/user satisfaction, yes.  Anton Philidor | 08/10/04
it is a freebe firewall  V Sanders | 08/10/04
Ironically this motto  michael-t | 08/10/04
Consiracy Theory  noetze | 08/12/04
Better than nothing... maybe!  jwschull@... | 08/12/04
The average user is the problem.  rwire@... | 08/12/04
hooray!  CheeseToast | 08/13/04
Long Way To Go  isowipe | 08/12/04
Educating the public  Chiatzu | 08/13/04
If they blocked outbound then...  msdead | 08/13/04
ABS FUD  ArturoWeenie | 08/15/04
re "SP2's new firewall: Not good enough"  V Sanders | 08/16/04
Windows Firewall(XP sp2)  coolone1232001 | 12/08/04

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

advertisement
advertisement

SmartPlanet

Click Here