"Steve Shattuck" <
[email protected]> wrote in message
You (and the others) know nothing of me, my knowledge and experience,
nor of my network. Yet you presume to preach to me? You are the
arrogant one here.
You have to love presumptuous people
Software firewalls protect outbound (Not
Here we go again, the mantra stated over and over by amateur experts.
Software firewalls are not the ONLY way to block Trojans.
Yes, for amateur home users they are useful, but I do not require one
and it is presumptuous of anybody to say that I do, especially based
on their apparent limited knowledge.
If you don't know how to properly configure a firewall or use IDS,
then you are the one that "just doesn't have a clue".
I'm sure extoling
You are the one "extoling your superiority" (sic) over me, or rather
failing to. Clearly you are "making a fool of yourself" with sweeping
statements about me when you don't know me. "Congratulations".
For the benefit of others I will expand on my throw away statement
about turning the service off, which so enraged the amateur experts
here. Perhaps you will learn something if you tame your arrogance
I disable (or remove) *all* services that are not required. This is
one of my first rules of security on any given host.
If you are happy to have services running, good for you, I am not.
How long before the Security Center Service, which runs as the Local
System Account, is hit by a trojan? No thanks. But then *you* would
understand that because *you* are an expert and have already disabled
the service like I have.
I block all connections that are not required in ANY direction and
from ANY network. It is a common misconception amongst "experts" that
a software firewall is required to block outgoing connections. This
is WRONG. On a simple LAN use a router and a hardware firewall at the
perimeter and then some of the many IDS applications on the network
and clients.
Given the right configuration you can safely run an XP machine on the
Internet without a firewall at all, shock, horror, he said use XP
without a firewall, is he mad?
Depth of security and education is the key. It appears that anybody
with ZoneAlarm installed is a security "expert" these days.
Don't worry I will not expect an apology for your outburst, after all,
this is USENET and "experts" that obtain their knowledge from PC World
are ten-a-penny.
Ed.