There are some software installed on my computer which are silently accessing the internet. This situation makes me worried about my security and privacy.
So, I need a firewall to block internet access of some of the software installed on my PC, which I would choose by hand. It must warn me whenever an application tries to access the internet, and let me choose whether to allow it or not. I don't want any firewall which doesn't have this feature.
In old days, there was a great firewall named "Symantec Personal Firewall". But there is no new version developed for years, and its older versions are not compatible with my current operating system.
Any suggestion will be appreciated.
(My OS: Windows 7 Ultimate x64)
So, I need a firewall to block internet access of some of the software installed on my PC, which I would choose by hand. It must warn me whenever an application tries to access the internet, and let me choose whether to allow it or not. I don't want any firewall which doesn't have this feature.
In old days, there was a great firewall named "Symantec Personal Firewall". But there is no new version developed for years, and its older versions are not compatible with my current operating system.
Any suggestion will be appreciated.
(My OS: Windows 7 Ultimate x64)
I've been using Comodo firewall for the last couple of years, very reliable and very configurable. If you just want simple application blocking you could turn of the hips feature (defense+) which tends to bombard you with warning dialogues.
Comodo D+ is what i recommend. It can be set for learning mode, Default mode, and my favorite, PARANOID mode
If you dont allready have a real HIPS, i would suggest adding the D+ with the firewall. After learning your system Comodo becomes very silent, even with D+.
If you dont allready have a real HIPS, i would suggest adding the D+ with the firewall. After learning your system Comodo becomes very silent, even with D+. What you decide to use is whatever you feel comfortable with.
Comodo is highly configurable, although it would be best for you to d/l this and spend some time reading this. It's a long read, but it covers all aspects of configuring the firewall and defense+.
http://personalfirewall.comodo.com/C...User_Guide.pdf
Windows firewall is also configurable. Doing a search of this forum will yield some threads that can help you in configuring it.
Several threads have suggested that ZoneAlarm does not play well with Win 7 and causes BSOD's.
An then there's the option of a pay for security suite, like Norton 360, which has it's own firewall.
Comodo is highly configurable, although it would be best for you to d/l this and spend some time reading this. It's a long read, but it covers all aspects of configuring the firewall and defense+.
http://personalfirewall.comodo.com/C...User_Guide.pdf
Windows firewall is also configurable. Doing a search of this forum will yield some threads that can help you in configuring it.
Several threads have suggested that ZoneAlarm does not play well with Win 7 and causes BSOD's.
An then there's the option of a pay for security suite, like Norton 360, which has it's own firewall.
�� Quote: Originally Posted by hkBattousai 
There are some software installed on my computer which are silently accessing the internet. This situation makes me worried about my security and privacy.
Any suggestion will be appreciated.
Any suggestion will be appreciated.
I am constantly surprised at the number of programs that try to access the internet. Comodo recently caught a new program that I had instslled trying to contact 2 different IP numbers each time it was started, but with a couple of clicks to Block their internet access Comodo will never let them access the internet. Nearly every new program I install wants to phone home during the installation and even plugging in or unplugging a USB device can prompt a call to Redmond and I just don't see why they need to know about it so I have the Comodo Firewall see that newdev.dll's phone home privileges are perminently suspended.
BTW all of this has nothing to do with Comodo Proactive Defense+ which controls which programs are allowed to access elevated privileges and can provide excellent protection with few pop-ups when set up correctly unless several new programs are installed every day which will create new pop-ups but once Defense+ has its orders it quietly carries out your instructions.
~Maxx~
Quote:
Nearly every new program I install wants to phone home during the installation and even plugging in or unplugging a USB device can prompt a call to Redmond
�� Quote: Originally Posted by Jacee Quote:
Nearly every new program I install wants to phone home during the installation and even plugging in or unplugging a USB device can prompt a call to Redmond
~Maxx~
Oh, I see .... yeah, Avira Firewall pops up too to ask allow or deny.
How did you get your Comodo Purple? mine's black
�� Quote: Originally Posted by Jacee Oh, I see .... yeah, Avira Firewall pops up too to ask allow or deny.
�� Quote: Originally Posted by Maxxwire �� Quote: Originally Posted by Jacee Quote:
Nearly every new program I install wants to phone home during the installation and even plugging in or unplugging a USB device can prompt a call to Redmond
~Maxx~
as shown above, they are simply doing a check for the latest version of the software. You can easily go into settings and tell it not to check.
Not everything is a threat.
�� Quote: Originally Posted by Tepid Not everything is a threat.
I always instruct every program I install not to phone home for updates or for any other reason so please show us in exacting detail how you tell exactly packet for packet what these programs are communicating that makes you 100% sure that no personal information is being transmitted by these scores of programs that phone home without prior authorization many of which call even before they are installed or are you just using a 'hoping for the best' computer security strategy???
~Maxx~
You never said which AV program you are running. E.g in my NIS2011 I can make the same settings as in Commodo. Maybe you want to check with your AV program. Then you would not have to install another piece of software.
�� Quote: Originally Posted by EchoX860 How did you get your Comodo Purple? mine's black
~Maxx~
�� Quote: Originally Posted by whs You never said which AV program you are running. E.g in my NIS2011 I can make the same settings as in Commodo. Maybe you want to check with your AV program. Then you would not have to install another piece of software.
Ever since then an ounce of Sandboxie prevention has been worth a pound of Antivirus cure! With Norton 2009 AV I had 3 infections in less than 1 year while Sandboxie has kept both of my computers 100% clean for almost 2 years!
~Maxx~
PS- Comodo is spelled with only 1 m.
I got rid of Sandboxie long time ago. Too inconvenient. I rather do frequent images - just in case. And NIS2011 has done a pretty decent job - up to now. I guess everybody has their own ways.
�� Quote: Originally Posted by Maxxwire �� Quote: Originally Posted by Tepid Not everything is a threat.
I always instruct every program I install not to phone home for updates or for any other reason so please show us in exacting detail how you tell exactly packet for packet what these programs are communicating that makes you 100% sure that no personal information is being transmitted by these scores of programs that phone home without prior authorization many of which call even before they are installed or are you just using a 'hoping for the best' computer security strategy???
~Maxx~
I am about as brainless as it gets when it comes to computers, but this even i get, and dont or cant understand why so many others that have mucho more computer smarts then i try to make a case against it. Most A/V's are there to tell you when you get infected. �� Quote: Originally Posted by whs I got rid of Sandboxie long time ago. Too inconvenient. I rather do frequent images - just in case. And NIS2011 has done a pretty decent job - up to now. I guess everybody has their own ways.
�� Quote: Originally Posted by whs I got rid of Sandboxie long time ago. Too inconvenient. I rather do frequent images - just in case.
As far as frequent Windows partition imaging goes Macruim Reflect has saved my computer from more dangerous situations than I care to count! As an example after I found that Windows 7 SP1 had a critical bug I didn't even think about uninstalling it, but rather turned to the Macruim Reflect Image that I made just before installing SP1 and within 10 minutes the computer was back to running good ol' Win 7 RTM once again proving that Image restoration is the ultimate cure!
~Maxx~
�� Quote: Originally Posted by I be he �� Quote: Originally Posted by whs I got rid of Sandboxie long time ago. Too inconvenient. I rather do frequent images - just in case. And NIS2011 has done a pretty decent job - up to now. I guess everybody has their own ways.
I rely more on my images than on the AV programs. That always allows me to bail myself out.
�� Quote: Originally Posted by I be he Most A/V's are there to tell you when you get infected.
The next step is the evolution towards prevention rather than simple detection and removal only as AV software performs. Very simply what Sandboxie does is to isolate programs like browsers in a separate space on the HDD and does not allow them to make changes to the computer Registry or file system and any malicious code that the sandboxed browser might be infected with will have no access to the computer either and will be destroyed when the sandbox is deleted or overwritten...
As long as everything that is transferred from the Sandbox to the computer is first scanned with Virus Total or any of many available on-demand virus scanners such as Malwarebytes before it is transferred to the computer then the computer will remain clean without the use of a resident Antivirus program.
~Maxx~
.
Quote:
Most A/V's are there to tell you when you get infected
�� Quote: Originally Posted by whs Quote:
Most A/V's are there to tell you when you get infected
just seems to be more and more the truth. Lets put it this way, Everytime ive relied on a A/V without Sandboxie, or Returnil, or Comodo D+, or a Geswall type of app, ive been infected. With any of these apps 0. And all have been the free versions.
So basically we have " everytime vs never " I will be going with never untill that changes
[QUOTE=whs;1288998] [QUOTE=whs;1288998] If you read carefully you will know that I said...
�� Quote: Originally Posted by Maxxwire
You are absolutely right! Antivirus programs can do no more than to alert you that your computer is infected and then try to remove the Malware if they can. Taking the time to learn how to use Sandboxie and set it up to use my browsers in its virtual space was well worth the result of having 2 completely clean computers for the last 2 years and was well worth the effort I put into it for me. I simply can not bring myself to use Antivirus software that cleans up after an infection that it could not prevent. I'm sorry if you do not agree, but I was infected 3 times in less than a year while using Norton 2009 and I have since sworn off using any black list Antivirus program which bases its effectiveness on frequent definitions updates since then.
Sandboxie has kept both of my computers completely clean ever since then and I am willing to take your criticism for wanting to prevent yet another Malware infection and keep my computers totally clean from Malware even though it took a few hours of my time 2 years ago on the friendly Sandboxie forums where the creator of the software Tzuk took some of his own time to help me to learn how to use Sandboxie in order to make this level of total prevention possible on my computers.
~Maxx~
Quote:
Most A/V's are there to tell you when you get infected
Quote:
Sandboxie is a nice concept, but for daily fluent operation it is a pain in the neck. I for my part am not prepared to jump thru all these hops for the minuscule chance to prevent an infection.
�� Quote: Originally Posted by Maxxwire You are absolutely right! Antivirus programs can do no more than to alert you that your computer is infected and then try to remove the Malware if they can.
Sandboxie has kept both of my computers completely clean ever since then and I am willing to take your criticism for wanting to prevent yet another Malware infection and keep my computers totally clean from Malware even though it took a few hours of my time 2 years ago on the friendly Sandboxie forums where the creator of the software Tzuk took some of his own time to help me to learn how to use Sandboxie in order to make this level of total prevention possible on my computers.
~Maxx~
I like the word " kurfuffle " - although I can only guess what it means. And you are right, everybody should do what suits him/her best.
�� Quote: Originally Posted by whs And you are right, everybody should do what suits him/her best.
~Maxx~
.
�� Quote: Originally Posted by Maxxwire I have since sworn off using any black list Antivirus program which bases its effectiveness on frequent definitions updates since then.
Consider Zone Alarm free firewall
Ok,, some of the information in this thread is just absolutely ridiculous and over paranoia.
1.) Applications like CCLeaner are not phoning home to track your usage. Therefore it IS NOT Spyware.
Prove it otherwise.
2.) No, not everything that does do a phone home for the purpose of checking for an update is considered Spyware. You are trying to change the definition, it's not going to work.
Spyware is software that phones home your usage habits of many things. Which is the sole purpose of Spyware.
Spyware - Wikipedia, the free encyclopedia
No, not everything is a threat. No matter how much someone wants to try and say so, it just plain isn't.
Anti-Virus software primary function is not there to tell you WHEN you get infected.
It's primary purpose is to prevent infection.
Telling you, you are infected is a Secondary function.
There is no software AV or Firewall suite that is going to protect you 100%, not even Sandboxie.
If you are having to use all that just to stay clean for any length of time, you need to change your surfing habits.
1.) Applications like CCLeaner are not phoning home to track your usage. Therefore it IS NOT Spyware.
Prove it otherwise.
2.) No, not everything that does do a phone home for the purpose of checking for an update is considered Spyware. You are trying to change the definition, it's not going to work.
Spyware is software that phones home your usage habits of many things. Which is the sole purpose of Spyware.
Spyware - Wikipedia, the free encyclopedia
Quote:
While the term spyware suggests software that secretly monitors the user's computing, the functions of spyware extend well beyond simple monitoring. Spyware programs can collect various types of personal information, such as Internet surfing habits and sites that have been visited, but can also interfere with user control of the computer in other ways, such as installing additional software and redirecting Web browser activity. Spyware is known to change computer settings, resulting in slow connection speeds, different home pages, and/or loss of Internet connection or functionality of other programs. In an attempt to increase the understanding of spyware, a more formal classification of its included software types is provided by the term privacy-invasive software.
Anti-Virus software primary function is not there to tell you WHEN you get infected.
It's primary purpose is to prevent infection.
Telling you, you are infected is a Secondary function.
There is no software AV or Firewall suite that is going to protect you 100%, not even Sandboxie.
If you are having to use all that just to stay clean for any length of time, you need to change your surfing habits.
I agree, not all apps are spying when they phone home Or are they?
I agree an A/V's #1 goal is malware preventionHowever most are easily defeated, and its not just a matter of my or your surfing habits. Its part of the new reality of life on the internet, and its getting worse not better Some folks cant or wont see the distant early warning untill its too late Maybe.
Or are they?I agree an A/V's #1 goal is malware prevention
However most are easily defeated, and its not just a matter of my or your surfing habits. Its part of the new reality of life on the internet, and its getting worse not better Some folks cant or wont see the distant early warning untill its too late Maybe. I would use either Outpost or Comodo those are the two best imho to choose from. @ Maxwire can I choose to put the virtual drive on like my D: drive instead of my C: Drive for Sandboxie? The reason being I like to keep most programs that write alot to my ssd on another drive a mechanical drive by using Link Shell Extension Method. Ive done that with firefox and moved it off the ssd onto my d drive and also moved the appdata files from roaming as well so when I close the browser it's not erasing cookies and crap off of my ssd. I want to do the same with sandboxie...
�� Quote: Originally Posted by Tepid Please keep in mind that a lot of these programs are not phoning home as a means of tracking your usage.
as shown above, they are simply doing a check for the latest version of the software. You can easily go into settings and tell it not to check.
Not everything is a threat.
as shown above, they are simply doing a check for the latest version of the software. You can easily go into settings and tell it not to check.
Not everything is a threat.
There is nothing wrong with those who are paranoid, but the overwhelming majority of us probably don't have a reason to be.
As far as a firewall, the built-in Windows firewall has done me fine. I've tested with the Comodo firewall recently and while it works well, it's also a PITA sometimes to get configured for things like Remote Desktop. I posted something on how to get RDP setup properly the other day in Comodo on these forums and I never really did get an answer other than suggestions to post on the Comodo forums as it was a difficult area. In my opinion, this should not be troublesome at all, it's a very common protocol and should be very simply. Let me create an access rule like I would on a router that says, "this range of IP's, are allowed to access port 3389 on this host". If you have a single box and need to really lock it down, then Comodo might be a great fit. I on the other hand have a home network and lots of hosts and other virtual machines and run quite a few server based type of things and I need a fair amount of access...especially from other hosts on my LAN. My hardware firewall keeps the folks on the WAN away. (unless I of course create a simple port forward rule to allow port 3389 (or whatever) into box x.x.x.x.
�� Quote: Originally Posted by I be he I agree, not all apps are spying when they phone home Or are they?
Or are they?Quote:
I agree an A/V's #1 goal is malware preventionHowever most are easily defeated, and its not just a matter of my or your surfing habits.
However most are easily defeated, and its not just a matter of my or your surfing habits.They try to do what the others do better, but that is not the primary purpose.
Viruses are, not Malware/Spyware.
Quote:
Its part of the new reality of life on the internet, and its getting worse not better Some folks cant or wont see the distant early warning untill its too late Maybe.
Some folks cant or wont see the distant early warning untill its too late Maybe.I have on occasions been infected. When that is?
I was hitting sites I should not have been.
I have not been infected in a very long time, since the wife opened a stupid email.
And since I convinced her to stop using Facebook and My Space.
Surfing habits have a whole lot to do with it.
�� Quote: Originally Posted by Maxxwire I'm sorry if you do not agree, but I was infected 3 times in less than a year while using Norton 2009 and I have since sworn off using any black list Antivirus program which bases its effectiveness on frequent definitions updates since then.
�� Quote: Originally Posted by Tepid If you are having to use all that just to stay clean for any length of time, you need to change your surfing habits.
Generally speaking though, I have an AV loaded (MSE on my computer, Avast on wife's computer, and Trend on work computers), and I do an occasional MalwareBytes scan (which always come back clean). I use Firefox with AdBlock installed. And I even hit the occasional adult web site (however I have a few that I go to, I don't usually search for them and click on them), but I don't use any pirated software, I don't use P2P apps, I don't download warez, I don't get pirated movies, I don't play cracked games...and I just don't have problems with keeping my machines infection free with very little effort.
�� Quote: Originally Posted by pparks1 �� Quote: Originally Posted by Maxxwire I'm sorry if you do not agree, but I was infected 3 times in less than a year while using Norton 2009 and I have since sworn off using any black list Antivirus program which bases its effectiveness on frequent definitions updates since then.
�� Quote: Originally Posted by Tepid If you are having to use all that just to stay clean for any length of time, you need to change your surfing habits.
Generally speaking though, I have an AV loaded (MSE on my computer, Avast on wife's computer, and Trend on work computers), and I do an occasional MalwareBytes scan (which always come back clean). I use Firefox with AdBlock installed. And I even hit the occasional adult web site (however I have a few that I go to, I don't usually search for them and click on them), but I don't use any pirated software, I don't use P2P apps, I don't download warez, I don't get pirated movies, I don't play cracked games...and I just don't have problems with keeping my machines infection free with very little effort.
While i will say you are correct, you still can avoid alot of problems by avoiding places that scream "infection here" More and more of the nicer parts of town are becomming that place also. My ultimate point is so far the apps i listed earlier will do a way better job of protecting the peeps then an A/V + common sense.
I do understand your points though.
More and more of the nicer parts of town are becomming that place also. My ultimate point is so far the apps i listed earlier will do a way better job of protecting the peeps then an A/V + common sense.I do understand your points though.
�� Quote: Originally Posted by Maxxwire �� Quote: Originally Posted by whs I got rid of Sandboxie long time ago. Too inconvenient. I rather do frequent images - just in case.
As far as frequent Windows partition imaging goes Macruim Reflect has saved my computer from more dangerous situations than I care to count! As an example after I found that Windows 7 SP1 had a critical bug I didn't even think about uninstalling it, but rather turned to the Macruim Reflect Image that I made just before installing SP1 and within 10 minutes the computer was back to running good ol' Win 7 RTM once again proving that Image restoration is the ultimate cure!
~Maxx~
�� Quote: Originally Posted by Noxiide �� Quote: Originally Posted by Maxxwire �� Quote: Originally Posted by whs I got rid of Sandboxie long time ago. Too inconvenient. I rather do frequent images - just in case.
As far as frequent Windows partition imaging goes Macruim Reflect has saved my computer from more dangerous situations than I care to count! As an example after I found that Windows 7 SP1 had a critical bug I didn't even think about uninstalling it, but rather turned to the Macruim Reflect Image that I made just before installing SP1 and within 10 minutes the computer was back to running good ol' Win 7 RTM once again proving that Image restoration is the ultimate cure!
~Maxx~
�� Quote: Originally Posted by Noxiide I hope this doesn't make me sound stupid, but are images and system restore like the same thing? Like why do you make images, why don't you just use system restore? Are there benefits of making images?
On my Vista laptop System Restore does not work at all so for backup I have been relying completely on Macrium Reflect Windows Partition Images for almost 2 years which are quick to apply and do a complete job of Image Restoration.
~Maxx~
�� Quote: Originally Posted by I be he Sandboxie will save your a$$. It wont help if you are allready infected, this is where imaging & restore points come in.
~Maxx~
Just keeping it simple here, as earlier said by many & reputed, Comodo hardly has any competition. Just check this out Firewall Test Results. You'll also find Outpost Security Suite Free doing great too at 4th place. Also, look for PC Tools Firewall, though they have tested it as entire security suite instead just FREE firewall. Good Luck.
�� Quote: Originally Posted by 7mm Just keeping it simple here, as earlier said by many & reputed, Comodo hardly has any competition. Just check this out Firewall Test Results. You'll also find Outpost Security Suite Free doing great too at 4th place. Also, look for PC Tools Firewall, though they have tested it as entire security suite instead just FREE firewall. Good Luck.
Discussion about that you will find here: Matousec - COMODO 100% again - Wilders Security Forums
�� Quote: Originally Posted by Creer Matousec tests mainly implemented HIPS module in security application available these days on the market.
~Maxx~
�� Quote: Originally Posted by hkBattousai There are some software installed on my computer which are silently accessing the internet. This situation makes me worried about my security and privacy.
So, I need a firewall to block internet access of some of the software installed on my PC, which I would choose by hand. It must warn me whenever an application tries to access the internet, and let me choose whether to allow it or not. I don't want any firewall which doesn't have this feature.
In old days, there was a great firewall named "Symantec Personal Firewall". But there is no new version developed for years, and its older versions are not compatible with my current operating system.
Any suggestion will be appreciated.
(My OS: Windows 7 Ultimate x64)
So, I need a firewall to block internet access of some of the software installed on my PC, which I would choose by hand. It must warn me whenever an application tries to access the internet, and let me choose whether to allow it or not. I don't want any firewall which doesn't have this feature.
In old days, there was a great firewall named "Symantec Personal Firewall". But there is no new version developed for years, and its older versions are not compatible with my current operating system.
Any suggestion will be appreciated.
(My OS: Windows 7 Ultimate x64)
, Windows Seven Firewall is a perfectly good Firewall and with configuration becomes a good two way Firewall, how to accomplish this is explained in a very good tutorial here at Windows Seven Forums by our Administrator BrinkTutorial > Windows Firewall - Add or Remove an Exception[2]=Security System Tools
Không có nhận xét nào:
Đăng nhận xét