It appears you have not yet registered with our community. To register please click here...

 
Go Back [M] > Hardware Madness > Hardware/Software Problems, Bugs
Norton Firewall Norton Firewall
FAQ Members List Calendar Search Today's Posts Mark Forums Read


Norton Firewall
Closed Thread
 
Thread Tools
Old 19th October 2003, 21:11   #1
Member
 
Bosw8er's Avatar
 
Join Date: May 2002
Posts: 3,711
Bosw8er Freshly Registered
Default Norton Firewall

A year or so ago i've installed several firewalls and used them.
I thought Tiny Personal (TP) firewall was the best and most easy to use.

I recently installed Norton internet security 2003 (NIS) on my home-box.

NIS keeps giving al kinds of warnings and possible intrusions/attacks ... whereas TP wasn't giving any warnings at all.

This could mean:
a) TP is not good enough.
b) NIS is too sensitive or not correct in giving warnings
c) NIS gives incorrect/false warnings to keep customers satisfied. As in : "As long as you generate some warning-pop-ups from time to time, you'll keep the customer satisfied as he/she has the impression of being under attack and he/she will be very glad to have installed NIS".

As i tested TP succesfully on several online-tests (even "bought" a extensive test on dslreports) and scanned the boxes succesfully on trojans/virusses with several (other) online-tests ... i think i'm left with options b) or c).

Any opinions or experiences on this matter ?
__________________
"Think of how stupid the average person is, and realize half of them are stupider than that."
Bosw8er is offline  
Old 20th October 2003, 11:15   #2
FreeStyler
 
Posts: n/a
Default

b, EVERY TCP/IP based connection needs approval by norton, incomming AND outgoing.
This process can recieve a one time net access, or permanent net access.
TP will probably only react to incomming connections that aren't triggered by an outgoing request.

If C were true, it would be front, euhm, site(?) news all over the internet.
 
Old 20th October 2003, 12:08   #3
Madshrimp
 
jmke's Avatar
 
Join Date: May 2002
Location: 7090/Belgium
Posts: 79,001
jmke has disabled reputation
Default

it acts as ZoneAlarm, where you have to GIVE access to each app accessing the web..
in my humble opinion not recommended for the adv. user, NIS that is

@FR: "frontpage news"
__________________
jmke is offline  
Old 20th October 2003, 13:59   #4
Member
 
Bosw8er's Avatar
 
Join Date: May 2002
Posts: 3,711
Bosw8er Freshly Registered
Default

I got suspicious because with NIS you have a whois-function to lookup who's "attacking" you.

When pinging the IP of the attacker i always get a destination unreachable in stead of a timed out message ... strange.

BTW: With TP you can set the access of each app ... even if it doesn't access the i-net. TP will react to whatever is going on, in - or outgoing.

@FR: "coming"
__________________
"Think of how stupid the average person is, and realize half of them are stupider than that."
Bosw8er is offline  
Old 20th October 2003, 14:12   #5
[M] Reviewer
 
Gamer's Avatar
 
Join Date: May 2002
Posts: 4,587
Gamer Freshly Registered
Default

yesterday I had an attack (Trojan) from someone who's from New York.
Pinging the bastard worked.
so Norton Firewall works just fine.
__________________
Gamer is offline  
Old 20th October 2003, 14:29   #6
Member
 
Bosw8er's Avatar
 
Join Date: May 2002
Posts: 3,711
Bosw8er Freshly Registered
Default

Quote:
Originally posted by Gamer
yesterday I had an attack (Trojan) from someone who's from New York.
Pinging the bastard worked.
so Norton Firewall works just fine.
? even more suspicious,
- was it yesterday between 20:00 & 22:00
- backdoor/subseven
- some guy in NY (forgot network)
__________________
"Think of how stupid the average person is, and realize half of them are stupider than that."
Bosw8er is offline  
Old 20th October 2003, 14:54   #7
[M] Reviewer
 
Gamer's Avatar
 
Join Date: May 2002
Posts: 4,587
Gamer Freshly Registered
Default

yep,
same hour.
backdoor
guy or girl from NY.
__________________
Gamer is offline  
Old 20th October 2003, 15:50   #8
Member
 
Bosw8er's Avatar
 
Join Date: May 2002
Posts: 3,711
Bosw8er Freshly Registered
Default

What are the odds of trying to break in at two different belgian dynamic IP's at the same moment ?

The odds of sending a bogus message to all software customers are a lot bigger.

I keep logging this messages, if i keep getting the same dates & times & trojans & persons as Gamer (or others), the attacks must be "triggered" by Symantec itself.

btw: Gamer, did you register your product ? I didn't.
__________________
"Think of how stupid the average person is, and realize half of them are stupider than that."
Bosw8er is offline  
Old 20th October 2003, 16:08   #9
FreeStyler
 
Posts: n/a
Default

actually it's VERY common for hackers to scan a broad range for targets, instead of single isolated cases.
Symantec sending out a mass internet broadcast to have their program show some activity is much less likely. And this would definitly have been brought to attention.

BTW you're edging on paranoia here dude, get help, serious.
 
Old 20th October 2003, 16:16   #10
Member
 
Bosw8er's Avatar
 
Join Date: May 2002
Posts: 3,711
Bosw8er Freshly Registered
Default

Quote:
Originally posted by FreeStyler
BTW you're edging on paranoia here dude, get help, serious.
hehe, i'm on the edge of many things, but not paranoia

I'm just confused why one good firewall hasn't shown any intrusion at all for the last 1,5 years ... and another gives an intrusion every two hours or so, since installing it a week or two ago.
All on the same box.

Can't find the logic here ..
__________________
"Think of how stupid the average person is, and realize half of them are stupider than that."
Bosw8er is offline  
Closed Thread


Similar Threads
Thread Thread Starter Forum Replies Last Post
Custom Firewall Part 2: Determine Your Network Setup jmke WebNews 0 9th April 2009 21:07
New Windows Attack Can Disable Firewall jmke WebNews 0 31st October 2006 08:25
Building a Desktop Firewall jmke WebNews 0 5th August 2006 12:54
Symantec quietly hikes Norton renewal prices Sidney WebNews 0 13th October 2005 05:56
Windows Firewall flaw may hide open ports Sidney WebNews 0 2nd September 2005 05:55
How Safe is Windows Firewall? jmke WebNews 0 14th August 2004 13:41
NVIDIA’s Firewall Technology Approved by Security Firms jmke WebNews 0 7th May 2004 11:24
Outlook 2002 + norton antivirus 2003 pro marcelleke Hardware/Software Problems, Bugs 2 11th March 2003 15:58
Windows 2000 Server Advance & Norton 2002 Da`Hitch Hardware/Software Problems, Bugs 7 8th June 2002 22:35

Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

vB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off


All times are GMT +1. The time now is 08:42.


Powered by vBulletin® - Copyright ©2000 - 2019, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO