Javascript Menu by Deluxe-Menu.com

Firewalls: What They Are and Why You Need One

 Send this article to a friendPrint this article Subscribe to our RSS feed
HomeLearn More  December 12, 2006 10:20 AM

So you've heard about spyware and all the problems it can cause with your computer, and you're now doing something about it. That's a good start, but did you know that you're still exposed to hackers, trojans, and viruses that can steal your financial information, hijack your email, or even destroy your computer altogether?

Anti-spyware tools block only a few types of common PC invaders, such as spyware, adware, dialers, search hijackers, and so on. For complete security, you also need a firewall (you also need an anti-virus program, but that's the subject of another article).

You should be using a firewall product if...

  • You regularly use wireless networks other than your own (ie: at a Starbucks or an airport)
  • You are at risk of having someone spy on you (paranoid employer, spouse)
  • You have valuable or irreplaceable data on your computer (spreadsheets, legal documents, email, personal writing, etc)
  • You want an extra layer of defense against sophisticated spyware, trojans, and viruses

    • What Do Firewalls Do?

    There are a variety of ways in which an attacker can detect and get into your computer. Spyware companies make use of some of these methods ("drive-by installs"), but they aren't the only ones trying to take advantage of you. Spammers have written programs that will hijack your computer and use it to send junk email. Trojans and worms are often spread via email, instant messenger, or other means. Jealous spouses or paranoid employers can even purchase off-the-shelf software to spy on your every online move. Anti-spyware tools don't do anything to prevent any of these kinds of invasions.

    This is where the firewall comes in. It plugs the security holes that anti-spyware tools don't, preventing outside attackers from gaining access to your system in the first place. And if a malicious payload does somehow manage to get on your PC, the firewall will prevent it from communicating with the outside world, rendering it useless.

    In short, a firewall stops any and all data transfer between your computer and the internet except for that which you specifically approve.

    Sadly, only 10% of computer users have any type of firewall installed on their computer.

    I Already Have an Anti-Spyware Product ... Do I Need a Firewall?

    Antispyware programs are a good start, but you can not rely on them for all of your security needs. There are several ways you can be compromised if you are running only an anti-spyware product:

    * A new spyware program infects your computer. Your antispyware product doesn't yet recognize it, so you become infected.
    * A trojan disables your antispyware program. You think it's still protecting you, but in reality you've been infected with a variety of malware.
    * You visit a hacked website. It installs a virus on your computer. Hours later, your laptop mysteriously stops working.
    * A family member installs a keylogger to spy on your activities. Your spyware program doesn't detect it (they generally don't) and it sits there silently recording your activities while you never suspect a thing.

    Why are you vulnerable? Because antispyware programs are generally only effective against known and installed spyware programs. They are not very effective at stopping them from installing in the first place. Nor are they effective at detecting and disabling viruses or keyloggers (they have mixed success at finding trojans).

    It seems like the average person shouldn't have to worry about this stuff, but you do. Why hasn't anyone come out with a single solution to cure everything? Because all of these threats make use of radically different attack vectors, and the truth is that there are no companies out there that are good at defeating all of them (generally, each company is good at defending against a singly type of threat, despite what their marketing claims say).

    Doesn't Windows come with a firewall?

    Windows XP SP2 does come with a personal firewall but it provides only a bare minimum level of protection (Windows 2000 users and earlier, you're completely unprotected and you need to get some type of firewall installed ASAP). The firewall that comes with your operating system blocks in-bound attacks only, but leaves you completely exposed to threats that originate on your computer. For instance, if an ex-spouse installs spy software on your computer, Windows personal firewall is completely useless. Windows firewall can also be easily defeated by certain types of malware threats.

    This quote from David Berlind at CNet UK explains it nicely:

    "Once a malicious payload gets in, your reliance to stop it shifts from the inbound firewall to something internal to your network or workstation -- like your antivirus or anti-spyware software. But, in the cat-and-mouse game of security solution developers vs. hackers, there are some pretty clever mice. And, as was demonstrated by at least one recent exploit of a vulnerability in Internet Explorer, there are certain exploits that anti-anything (virus, spyware, pop-ups, etc) products are powerless against. What's your last line of defence to keep one of these exploits from phoning home? Outbound blocking -- a feature that the Windows Firewall lacks."

    If you think you're safe because you've downloaded the latest Windows update, think again. Hackers are faster than Microsoft, the maker of the world's most insecure software products, will ever be. Need proof? Run this google search and see the latest break-ins for yourself.

    So How Do You Remain Protected?

    You should seriously consider purchasing a commercial firewall product. A good product will provide the following:

    * Make your computer invisible to hackers by default
    * Allow you to share files and printers with people you trust
    * Ensures only applications you trust can access the internet
    * Prevents malicious programs from disabling the firewall
    * Automatically locks down your PC if the firewall is compromised

    Windows firewall does none of these things and unfortunately has given a lot of people a false sense of security.

    What Firewall Programs Are Out There?

    We've tested many of them and have settled on Agnitum Outpost Pro. This is the firewall product we run on all of our personal and company computers. Agnitum is not as well known, but we have been reviewing them for several years and have found the product to be extremely effective. If you are looking for another brand name, try ZoneAlarm ... it's also a good choice, although not quite as powerful or user-friendly.

    Click here for our latest firewall testing results

    Email to a friend
    Email this entry to:


    Your email address:


    Last Updated on December 12, 2006 10:20 AM  | TrackBack

All content copyright 2004, Gooroo, Inc. All Rights Reserved.
Adware Report | Site Map | spyware reviews | Recommended Books...

AdwareReport is a member of the Better Business Bureau Internet Security By ControlScan