|
Posted by Leythos on September 9, 2006, 4:46 pm
If you were Registered and logged in, you could reply and use other advanced thread options
>
> Leythos schrieb:
>
> > thomas.hertel@gmx.net says...
>
> > You misunderstood what I said again - REAL_TIME MONITORING - there is
> > nothing to see in Windows Firewall for ports being used.
>
> What is real time monitoring? Once your monitor shows you something,
> this has happened in the past. You cannot do anything about it any
> more.
Wrong, if you can detect port traffic you can do anything you want,
without that information you don't have a clue.
> > > > 4) Most PFW solutions provide for real-time traffic display (and I'm not
> > > > talking about apps, just traffic), so they are better than XP Firewall.
> > >
> > > No. They show the traffic they can detect. As an example they will not
> > > display any traffic that $malware tunnels through your browser because
> > > for them browser traffic is legitimate. After all, you allowed IE to
> > > access the net - or maybe Firefox :-)
> >
> > Wrong, again, they show traffic, some of them, by port, not application.
> > I don't care what uses IE, permitted or not, as I don't care about
> > possible application control, again, it's about what ports are in use
> > ONLY.
>
> And what do you think is it that uses ports. Maybe applications?
It doesn't matter what is using the port, only that it's being used. If
I don't know that my computer is using TCP 1434 to connect to a computer
in china, then it doesn't matter what application is using that port. If
I know that the port is in use, then I can start checking as to why.
> > Stop thinking application control, think port control only.
>
> I have never thought about application control. I was actually trying
> to explain that this cannot work.
Port tracking/monitoring does work, but Windows XP firewall can't tell
you what ports are in use.... Something most PFW's can tell you.
So, again, another failure of Windows XP Firewall to provide basic
firewall functions.
If they didn't call it a firewall I would have no issues with the
product.
--
spam999free@rrohio.com
remove 999 in order to email me
| 
Yahoo! 
Google 
Windows Live 
del.icio.us 
digg 
Netscape 
XML site map