See correction to this article

The Problem with Firewalls
Personal firewalls will never be install-and-forget software, at least not any of the good products. They have several problems, including the sheer number of alerts, false-positives, inherent vulnerabilities, and the denial of legitimate services. The biggest drawback with firewalls is the number of alerts or event-log messages that can pop up. First-time firewall users often are excited to see their first attack alerts, but after a few days of seeing hundreds of messages, users can become numb to them. Many firewall users stop reading their logs or simply switch off logging, which means the users lose half the benefits that firewalls provide. Many alerts will be false-positives from legitimate Internet traffic and services. No matter how good the firewall is, it can’t effectively determine the difference between good and bad traffic. The firewall only makes a guess, which means allow and accept decisions are left up to users, who often aren’t knowledgeable about security.

Like any other application, a personal firewall sits on an unpredictable OS. The firewall is vulnerable and buggy just like the applications it’s designed to protect. Some firewalls I reviewed were vulnerable to specific types of attacks, including attacks that disable or bypass the firewall. Software that doesn’t have a publicized weakness probably does have weaknesses. Intruders might eventually look for (not avoid) machines with firewalls, then exploit a known vulnerability to take over the machines. Keeping your firewall updated is important.

When the firewalls do the job they’re designed to do, they end up blocking some of your legitimate activity. Many new firewall users complain that their browsers no longer connect to a particular Web site or their browser add-ins (e.g., RealNetworks' RealPlayer) no longer work the way they did before. Other common complaints involve email problems or disappearing drive mappings. Unless you get lucky, the firewall doesn’t tell you it’s the culprit.

Which Firewall to Choose
Out of the six personal firewalls I reviewed, McAfee Firewall, Norton Personal Firewall, and ZoneAlarm Pro are great choices. These three firewalls are feature-rich and integrate well with antivirus and privacy tools. Norton Personal Firewall is the most secure, but McAfee Firewall is the easiest to use. Tiny Personal Firewall and BlackICE PC Protection aren’t in the same class as Norton Personal Firewall and McAfee Firewall but are still very good. (See Table 1 for details about each product.) Each of the five firewalls configures with minimum help, contains a lot of features, and significantly increases your PC’s protection. These five firewalls are routinely updated and usually automated. Go ahead; install one of these firewalls if you haven’t already done so. Like every other firewall user, you’ll probably be surprised how often the software will alert you to cracking probes.

End of Article

Prev. page     1 2 3 4 5 [6]     next page -->
CORRECTIONS TO THIS ARTICLE:
The print version of "Personal Firewalls" (InstantDoc ID 25348) includes an incorrect URL for the expanded version of the article. The correct URL is http://www.winnetmag.com/articles/index.cfm?articleid=25348. We apologize for any inconvenience this error might have caused.



You must log on before posting a comment.

If you don't have a username & password, please register now.

Reader Comments

Tiny used to be my firewall of choice, until I discovered Kerio Personal Firewall (www.kerio.com), which is Tiny v2 that has actually been developed further by the same people who originally put Tiny together. So if you like Tiny, you'll like Kerio just as much or even more... and it's still free.

Nick- July 03, 2002

Great article

Vincent Acheson- July 03, 2002

I was very disappointed that you didn't cover the Sygate Personal Firewall. It blows Norton's away as badly as Panda Antivirus blows away Norton's Antivirus program. A firewall review without it just doesn't make sense.

Joel Munt- July 03, 2002

I used Norton's product, but switched to ZoneAlarm Pro v.3 about 6 months ago. After applying the most recent patch (3.0.118.001), my computers stopped accepting cookies. This persisted even after I put the browser's privacy settings at their lowest--allow all cookies. This brings me to my point--ZoneAlarm's tech support is abysmal. It's email-only and they take anywhere from 5-10 days to respond. The only way for me to do any online shopping is to shut down ZAP completely, which defeats the purpose. I'm chalking this up to "lessons learned" and just received the newest version of Norton's Internet Security. I'll be installing that right away.

Paul Edwards- July 03, 2002

What about the personal firewall from SyGate called Personal Firewall PRO?

MP3ster- July 03, 2002

Why is Tiny Version 2.0 used when version 3.0 is available? Version 3 adds a ton of new features like sandboxing, script blocking, registry protection, application groups, etc., and has preset levels of protection for novices. I used AtGuard before Symantec bought the rights to the program (a la Ghost) because of the advanced rules that could be created, then I switched to Tiny 2.0. Tiny 3.0 blows version 2.0 out of the water. You can download a 30 day trial at their website.

Kevin Sussex- July 03, 2002

With XP Pro, does one have to disable the built-in firewall with these products or can they run in parallel?

John Joslin- December 17, 2002

Does anyone have trouble with Norton's Firewall causing your computer to automatically shutdown when opening certain websites? Trying to visit my Insurance providers website and some other sites, will send my computer to Restart.

Linda D- April 09, 2003

 
 

ADS BY GOOGLE