i have used zonealarm for sometime. i didn't allowed it to connect to the net at all. if this isn't possible any longer and you can't disable the update check this a complete - eh let's say mess ;)

nevertheless i switched over to kerio personal firewall. it's much more stable and looks like it does the same. why not giving it a try?

Big Brother and Zone Alarm are two entirely seperate entities. BB is Government.

I see no problem whatsoever with ZA doing their updates automatically.

Pendanticist.

i dislike the automatic update functions every app now builds in. it's taking off the control by the user _and_ it won't motivate software developers to produce good products.

Well, maybe the "Big Brother" reference was a bit much, or maybe I'm just showing my age.

This auto-updating feature just kinda rubbed me the wrong way, I mean, what if the software that you trust to keep "Spyware" at bay was really Spyware?

Well, maybe the "Big Brother" reference was a bit much, or maybe I'm just showing my age.

<grin>

This auto-updating feature just kinda rubbed me the wrong way, I mean, what if the software that you trust to keep "Spyware" at bay was really Spyware?

Yeah, and whose to say BIll Gates doesn't have the ability to see what I'm typing at this very moment. <G>

Having said that, I look at it this way, they provide the free users (of which I am one) with a viable service such as the firewall.

Those who use the Pay Version, such as PRO carry us. They are the primary reason we have a free firewall in first place.

Additionally, and equally important is ZA's servers and how they can manage them more effectively by timing and allocation of services.

I know, my machine's integrity is much better off via those automatic updates.

Well, that's my take on it anyway.

Pendanticist.

Version 3.7.143 was just released, and they have restored the ability to chosse between manual or automatic update.

I don't get it. If you have broadband, you probably have a router with a built-in firewall. If you have dial-up you don't need a firewall. Unless you have a static IP and no router, then I see some use. But most of the time ZoneAlarm is just a pain for third-party programs that utilize the web.

>> If you have dial-up you don't need a firewall.

I guess that depends upon how much you trust your ISP. While you're connected you're on a static IP. Granted it may be masked by NAT or similar but that's not to hard to crack.

I run ZA but also run a local firewall/router. Primarily because I'm on a cable modem and have an internal network with a web server and mail server which I want to keep protected. The ZA is just added protection.

you don't need a firewall.

Most firewalls also help you control what apps are allowed to go out to the internet. A router doesn't control the outbound traffic.

While you're connected you're on a static IP

Yes, that's true. But I seriously doubt a hacker will be interested enough to attempt a malicious attack on your system while you are temporarily connected. Your IP will change the next time you connect so the chance of being hacked is very slim. My point is that ZoneAlarm itself has caused more support issues for me than some random hacker out to get you.

router doesn't control the outbound traffic

Are you referring to outbound traffic on specific ports or outbound traffic on applications?

Apps.

>> If you have dial-up you don't need a firewall.

The other day I noticed Norton AV scanning outgoing emails, but I had no email apps running. I suspected either a virus or a hack. So I reset the firewall rules and rebuilt them IP by IP as the warnings started popping up. I was amazed at the number of pings and packets being sent to me from all around the globe. I eventually blocked all pings and unwanted packets from all IPs and now everything is quiet again - for now.

Being on dial up is by no means any form of security in itself. If you do not have a firewall on your system/network then you are not practising "Safe Internet". You have been warned.

Onya
Woz

I eventually blocked all pings and unwanted packets from all IPs

The pinging is probably a part of a larger scan. So, the hacker would have to target your IP from the big list that he scanned. By the time he wants to cause mischief, you are already logged off. The chances of any mischief occurring is so slim its not even worth worrying about, I think. Really, who cares about your Quicken records? ;)

>> But I seriously doubt a hacker will be interested enough to attempt a malicious attack on your [dial up] system

For the most part I agree. Personal computers are pretty much just white noise to a good hacker - but they are easy targets to any highschool kid with an attitude. Still, the chances are slim.

>> My point is that ZoneAlarm itself has caused more support issues for me than some random hacker out to get you.

Understood and I can appreciate this. I'd be interested to learn what problems you encountered with ZA.

The choice to use ZA or not really comes down to personal preference. I forgot to add that I also use Spybot to root out those little packages that some websites & apps leave me with. ZA, of course, will notify you of all outgoing as well as incoming requests (if you can stand to get that many notices). I find it handy for identifying unwanted OS guests so I may set about to hunt them down and kill them.

I believe the broader point (issues with ZA aside) is that in most cases, even if you don't use ZA and don't go on search & destroy missions for the electronic critters, you're most likely to be fine. At least for a while. I prefer - and it is a preference - to take a more aggressive approach and keep control over my OS. Nothing gets in or goes out unless I know about it. And if I don't want it - I get rid of it.

No, my Quicken/Quickbooks files aren't worth much (though the IRS might find it interesting that I consider a bottle of scotch a business lunch) - but my privacy is! :)

Dial-up Internet connections need to be secured just as much as "permanent" ones.

I worked on a case where we discovered the hacking came through a dial-up, into a corporate LAN.

How did the hacker find the way in to the corporate network? The user had an unauthorized modem, and Windows dialed out automagically at night, to do some updates. That was enough for the attacker to install a doorway on the client, which initiated a session from inside the LAN, but now instead of the dial-up, the hack was going through the T3 line.

But I seriously doubt a hacker will be interested enough to attempt a malicious attack on your system while you are temporarily connected.

Not all dialup users are temporary connections, i log on in the morning and it stays logged on until the teenager shuts it down at bedtime. 10-14 hours at a time. Guess I'm not your typical dialup customer. :)

>The chances of any mischief occurring is so slim its not even worth worrying about, I think

That's what I used to think. A couple of months ago I let the Windows network wizard create set the parameters for my shop computer. The wizard opened the file sharing with read/write access on the 'c' drive (Never ever trust this wizard).

Within 5 minutes of establishing a dial-up connection on Earthlink, my Norton AV triggered on a file which came down the wire. The file was a trojan posing as a system file that would have executed during the next boot-up.

The NAV saved me, I shut down the file share, and I came to realize that dial-up is just as dangerous as DSL!

Hi lorax, thanks for your note. I agree, it does come down to preference. Your reasons for using ZA, I can appreciate and will actually try out myself. ;) The benefit is the greater OS control. The disadvantage is the extra load it leaves on support people like myself.

I'd be interested to learn what problems you encountered with ZA

I help support an auction management software that releases a new build with every eBay change. When a installs the new build, ZA will not recognize the uupdated build as the same program. When a user complains about a new build not working, ZA is sometimes the culprit. So, my frustration stems from ZA adding complexity to a system that many users can not manage without handholding.

sun818,

>> I help support an auction management software

Ok, now I see how it can be a PIA. ;)