Just to provide my opinion on Zone Alarm:
I think Zone Alarm is a nice piece of software, it is by no means fool
proof, but its application specific settings make it a very nice solution.
With Zone Alarm it is very easy to allow one application access to the net
while denying another. For example on my machine at work I can allow
Outlook to Access the intranet, but keep it from accessing the Internet. I
can allow my browser to browse both the Internet and intranet. And I can
make sure our lousy sysadmins cannot use SMS to spy on my work habbits by
denying SMS access to any network resources at all. This can be both a boon
and burden so like any security solution its best to expect it to fail, at
least that way you are not suprised when it does :-)
-- Kevin
> -----Original Message-----
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
> ElephantChild
> Sent: Thursday, May 18, 2000 10:42 PM
> To: Mortensen, Terrill
> Cc: '[EMAIL PROTECTED]'
> Subject: Re: NAT Security
>
>
> On Thu, 18 May 2000, Mortensen, Terrill wrote:
>
> > I received a message from my ISP that I did not have to worry about any
> > network attacks "since the router uses NAT it is impossible for
> anyone from
> > the Net to hack in to your box".
>
> They're wrong.
>
> > I thought that NAT made it more difficult to break into due to
> the nature of
> > how it works, but it is not a firewall and does not secure your
> network???
>
> You're right.
>
> > I could not find any information on Cisco's site that specifically said
> > either way (or any site for that matter).
> >
> > Can someone point me to a site or link on Cisco's site that specifically
> > states that NAT is secure or is not secure.
>
> Search the archives of this here fine list. It's been discussed many
> times already. :-)
>
> > The ISP also pointed me to a piece of software called ZoneAlarm from
> > www.zonelabs.com <http://www.zonelabs.com>. Has anyone used
> this and does
> > it protect your network from hacking if configured properly?
>
> Never used it, but calling any network security gizmo "iron-clad" and
> "easy to use" in the same sentence raises loud alarms for me. OTOH, they
> don't refer to script kiddies as "hackers", which seems to indicate
> above-average cluedness. And since it targets windoze machines, I can't
> try it out, so my uninformed opinion will have to remain that.
>
> > My confidence in my ISP and their tech support is not complete
> and I just
> > want to know the facts.
>
> They *do* sound weak on security issues, but so do other decent ISPs. As
> long as you don't let them be your sole source for security information,
> or for protecting your machine, that doesn't have to be a reason to move
> away.
>
> HTH.
>
> --
> "Now, I believe there are some things that 7 year olds shouldn't have to
> be exposed to yet, and the entry in the dropdown menu he was perusing
> that said "emacs" is one of those things." --AdB in SDM
>
> ___________________________________
> UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
> FAQ, list archives, and subscription info: http://www.groupstudy.com
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>
___________________________________
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
