1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

quick questions please guys :-)

Discussion in 'HyperWRT Firmware' started by the_sly_dog, Apr 11, 2006.

  1. the_sly_dog

    the_sly_dog Network Guru Member

    hello all.
    i just have one question please

    i have a linksys-wrt54gs v4 running v4.70.8, Hyperwrt 2.1b1 + Thibor14

    i have wallwatcher installed and running,

    the logging is great but wow i am seeing so many different colours reds, yellows, greens more reds and greens than yellow...

    my question is i have the linksys firewall on

    do i need a software firewall too,,

    i dont use the wireless side i have that turned off,

    just have the one pc connected to the router

    :rockon: :rockon: :rockon: :rockon: :rockon: :rockon: :rockon:

    any advice would be great or info please

    many thanks ben
     
  2. MenaceInc

    MenaceInc Network Guru Member

    Yes, software firewall stops spyware to phone home.
     
  3. NateHoy

    NateHoy Network Guru Member

    Agreed - you want a software firewall to let you know when programs are trying to talk out to the Internet.
     
  4. dareino

    dareino Network Guru Member

    Which Firewall do you guys recommend?
    dr
     
  5. NateHoy

    NateHoy Network Guru Member

    I use ZoneAlarm (free) from zonelabs.com

    It's solid and very easy to use. And the price is right.
     
  6. dareino

    dareino Network Guru Member

    What about the bulit-in FW in the firmware? Is that any good?
    dr
     
  7. bluebox

    bluebox Network Guru Member

    I think the built-in firewall is good for the outside trying to get in, however, these guys are talking about using a firewall as a tool to alert you when you have something already inside.

    I don't quite agree with that logic for my own self, however, I can understand that if you have users that simply get themselves infected against your best attempts at protecting them, that it is nice to know.

    However, if you are the only computer on the network, and it is in your control, you should prehaps practice safer downloading and installing practices. Getting rid of spyware after the fact is like getting rid of an STD. :cheerup: And about as fun.

    I run no antivirus, and no spyware software. I run no Zone Alarm or anything like that. I do downlaod "suspect" stuff sometimes, and get plenty of virus laiden email. But I never get infected. :thumb:

    I just don't willy-nilly click and open all kinds of garbage. I don't allow unknown websites to have control of anything outside my browser, and I don't use IE when it is avoidable. I'm careful about what I download and what I open, and when in question, I open it in a protected way first. In other words, I don't screw whores without a condom.

    I understand that scrwewing whores with condoms is not an option for some, however, if you keep that analogy in mind you can avoid the vast majority of infections. Unfortunatley, using a firewall like Zone Alarm in your particular setup as your only means of protection is very much like screwing crack-whores unprotected :eek: and getting regular AIDS tests to find out if you are OK.
     
  8. NateHoy

    NateHoy Network Guru Member

    bluebox -

    Ummmm.. uniquely put. ;)

    I do agree that safe computing is better than having a firewall, however, the firewall is an extra measure of protection. The antivirus software is the same (the only time I ever get a virus alert is when I am testing the antivirus software, but I always run it anyway).

    I also am careful with the software I install and use, and of course I run my Windows machine as a "Limited User" to prevent "unexpected installs" of software. I also avoid IE and prefer Firefox for many reasons in addition to security, but security is one big reason.

    But, in this day and age, when doing something as innocuous as inserting a music CD into your computer can infect you with the Sony rootkit that phones home, and other packages that seem innocent enough can be corrupted for nefarious purposes, sometimes as a result of major, frequently-trusted web sites being hacked, well, every layer helps.
     
  9. NateHoy

    NateHoy Network Guru Member

    Sure, it's good, but it only protects you from anonymous machines attacking your machine from the outside of your network.

    If someone hacks into your router, you are not protected.
    If software somehow gets on your machine (say, using the latest IE exploit, or a zero-day worm coming in from Outlook), you are not protected.

    A software firewall monitors attempts your computer makes to talk to the outside world, and says "Woah! This new software is trying to talk to a server? You know about this one, boss, or should I take him outside and have the boys work him over?" ;)

    Here's an article I typed up a while back. It's a little dated, but the basic lessons still hold true:

    http://et.nmhoy.net/esg.html
     
  10. bluebox

    bluebox Network Guru Member

    Oh, I'm not discounting the value of such tools. Just kinda trying to clarify for those that might think installing a firewall is THE solution to security that taken ALONE it won't do much.
     

Share This Page