<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=ISO-8859-1">
<TITLE>RE: [Full-Disclosure] [OFFTOPIC] Zone Alarm</TITLE>
<META content="MSHTML 6.00.2719.2200" name=GENERATOR></HEAD>
<BODY>
<DIV><SPAN class=609501218-05062003><FONT face=Arial color=#0000ff size=2>Zone
alarm works, but the free version tends to eat processor and memory because of
the "learning" of the software. So while its not really a hole, it can be
cumbersome and negatively affect performance of the host PC. This is a known
feature/bug and discussed at length on the Zone Alarm message boards. As soon as
you upgrade to the paid product, you get updates and ability to better control
processor and memory usage.</FONT></SPAN></DIV>
<DIV><SPAN class=609501218-05062003><FONT face=Arial color=#0000ff
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=609501218-05062003><FONT face=Arial color=#0000ff size=2>I
would treat it as a layer of security and supplement it with a simple Linksys
offering NAT...</FONT></SPAN></DIV>
<DIV><SPAN class=609501218-05062003><FONT face=Arial color=#0000ff
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=609501218-05062003><FONT face=Arial color=#0000ff size=2>These
two layers are effective for home computer users. Like a multivitamin is better
than just taking one.</FONT></SPAN></DIV>
<DIV><SPAN class=609501218-05062003><FONT face=Arial color=#0000ff
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=609501218-05062003><FONT face=Arial color=#0000ff size=2>Yes,
there is much posturing. And ample digression. And a good dose of derision.
</FONT></SPAN></DIV>
<BLOCKQUOTE dir=ltr style="MARGIN-RIGHT: 0px">
<DIV class=OutlookMessageHeader dir=ltr align=left><FONT face=Tahoma
size=2>-----Original Message-----<BR><B>From:</B> Ben Tyson-Norrman
[mailto:ben@twowaytv.co.uk]<BR><B>Sent:</B> Thursday, June 05, 2003 10:11
AM<BR><B>To:</B> full-disclosure@lists.netsys.com<BR><B>Subject:</B> RE:
[Full-Disclosure] [OFFTOPIC] Zone Alarm<BR><BR></FONT></DIV>
<P><FONT size=2>As I started this one - can I put a stop to it...</FONT> </P>
<P><FONT size=2>What was it I read the other day, if you call someone a Nazi
then officially that's the end of the thread...</FONT> </P>
<P><FONT size=2>Okay I'm going to call me, ben@twowaytv.co.uk, erstwhile
postee in html, user of Windows 2000 (and BSD and Linux and Solaris, before
you start), sending email via Exchange which attaches a crappy disclaimer - a
complete and utter Nazi....</FONT></P>
<P><FONT size=2>Yes I've done it - I've called someone a Nazi.... so now we
have to start a new thread and post at least 3 bits of useful information
before we can revert to abuse, slander, mis-reading of posts,
mis-understanding of posts, not trying to hear what the person is saying in
voice- rather than just reading the words and generally taking our stress out
on everyone else (who for the most parts should be our allies)..</FONT></P>
<P><FONT size=2>What I've learnt is.... </FONT><BR><FONT size=2>ZA is okay for
homeusers - there are no desperately obvious holes.</FONT> <BR><FONT
size=2>There are other alternatives - I use one of the others at home (not
that you care) - but the person who asked the question of me (who is fairly
technical), is probably doing the best he can.</FONT></P>
<P><FONT size=2>The negative comments I have seen, viz :- (snip from some or
other list) <<zone alarm (which contrary to popular belief is not a real
firewall and a joke in the IT community as a whole)>> is empty posturing
as usual, but then the same goes for everything else (there are a lot of
"experts" out there...)</FONT></P>
<P><FONT size=2>May your evenings (days, morning or nights - depending on your
timezone) be blessed with happyness...</FONT> </P>
<P><FONT size=2>Personally I'm going home to get a beer or two....</FONT>
</P><BR><BR>
<P><FONT size=2>-----Original Message-----</FONT> <BR><FONT size=2>From: JT
[<A
href="mailto:ptourvi1@twcny.rr.com">mailto:ptourvi1@twcny.rr.com</A>]</FONT>
<BR><FONT size=2>Sent: 05 June 2003 16:13</FONT> <BR><FONT size=2>To: 'Shawn
McMahon'; full-disclosure@lists.netsys.com</FONT> <BR><FONT size=2>Subject:
RE: [Full-Disclosure] [OFFTOPIC] Zone Alarm</FONT> </P><BR>
<P><FONT size=2>This is a lame basis for your argument. You provide 2
</FONT><BR><FONT size=2>vulnerabilities that</FONT> <BR><FONT size=2>are old.
Everything has vulnerabilities, I will not waste my </FONT><BR><FONT
size=2>time search ZA</FONT> <BR><FONT size=2>for one, it's in there, it's a
proven statistic. Now, explain to me how</FONT> <BR><FONT size=2>having one of
your uninformed users make a decision for every </FONT><BR><FONT size=2>app
that wants</FONT> <BR><FONT size=2>to access the internet is better than
plugging a router in and </FONT><BR><FONT size=2>being done</FONT> <BR><FONT
size=2>for the most part. Which is easier? Right, the router is easier
</FONT><BR><FONT size=2>because they</FONT> <BR><FONT size=2>just plug it in
and go. You would have us believe that these </FONT><BR><FONT size=2>"inept"
users</FONT> <BR><FONT size=2>WITHOUT ANY computer person are going to be
smart enough to </FONT><BR><FONT size=2>FIND zone alarm,</FONT> <BR><FONT
size=2>INSTALL it, CONFIGURE it, and then decide each time anything
</FONT><BR><FONT size=2>wants to hit</FONT> <BR><FONT size=2>the net. Please,
spend 30 more seconds and show me some CURRENT</FONT> <BR><FONT
size=2>vulnerabilities. </FONT></P>
<P><FONT size=2>-----Original Message-----</FONT> <BR><FONT size=2>From:
full-disclosure-admin@lists.netsys.com</FONT> <BR><FONT size=2>[<A
href="mailto:full-disclosure-admin@lists.netsys.com">mailto:full-disclosure-admin@lists.netsys.com</A>]
On Behalf Of </FONT><BR><FONT size=2>Shawn McMahon</FONT> <BR><FONT
size=2>Sent: Thursday, June 05, 2003 9:23 AM</FONT> <BR><FONT size=2>To:
full-disclosure@lists.netsys.com</FONT> <BR><FONT size=2>Subject: Re:
[Full-Disclosure] [OFFTOPIC] Zone Alarm</FONT> </P><BR>
<P><FONT size=2>On Wed, Jun 04, 2003 at 08:35:05PM -0700, morning_wood
said:</FONT> <BR><FONT size=2>> </FONT><BR><FONT size=2>> Theres nowhere
for the packets to go.. and please, when was </FONT><BR><FONT size=2>the last
time</FONT> <BR><FONT size=2>> anyone here had to flash a personal style
router / switch</FONT> <BR><FONT size=2>> within the past 2 years... dont
go esoteric on us now..</FONT> </P>
<P><FONT size=2>Perhaps you should read security bulletins more often.</FONT>
</P>
<P><FONT size=2><A href="http://www.idefense.com/advisory/10.31.02a.txt"
target=_blank>http://www.idefense.com/advisory/10.31.02a.txt</A></FONT>
<BR><FONT size=2><A
href="http://www.opennet.ru/base/netsoft/993631863_204.txt.html"
target=_blank>http://www.opennet.ru/base/netsoft/993631863_204.txt.html</A></FONT>
</P>
<P><FONT size=2>That's just two. Should I spend another 30 seconds
searching and get</FONT> <BR><FONT size=2>you some more?</FONT> </P>
<P><FONT size=2>Or are you going to argue that Linksys and Netgear are
"esoteric"?</FONT> </P><BR>
<P><FONT size=2>-- </FONT><BR><FONT size=2>Shawn
McMahon | Let every nation know, whether it wishes us
</FONT><BR><FONT size=2>well or ill,</FONT> <BR><FONT size=2>EIV
Consulting | that we shall pay any price, bear any
</FONT><BR><FONT size=2>burden, meet any</FONT> <BR><FONT size=2>UNIX and
Linux | hardship, support any friend, oppose any </FONT><BR><FONT
size=2>foe, to assure</FONT> <BR><FONT size=2><A href="http://www.eiv.com|"
target=_blank>http://www.eiv.com|</A> the survival and the success of liberty.
- JFK</FONT> </P>
<P><FONT size=2>_______________________________________________</FONT>
<BR><FONT size=2>Full-Disclosure - We believe in it.</FONT> <BR><FONT
size=2>Charter: <A href="http://lists.netsys.com/full-disclosure-charter.html"
target=_blank>http://lists.netsys.com/full-disclosure-charter.html</A></FONT>
</P>
<P><B><FONT size=2>Visit our web site @ www.twowaytv.com
</FONT></B><BR><B><FONT size=1>This e-mail and its attachments are intended
for the above named recipient(s) only and may be confidential, legally
privileged and protected by law. If you are not a named addressee or have
received this transmission in error, please notify us immediately at
postmaster@twowaytv.co.uk and then delete this e-mail. As Internet
communications are not secure we do not accept legal responsibility for the
contents of this message or responsibility for any change made to this message
after the original sender sent it. Save for this legal notice, the
contents or opinions contained within this e-mail are solely those of the
sender and do not necessarily represent those of Two Way TV Ltd unless
otherwise specifically stated. </FONT></B></P></BLOCKQUOTE></BODY></HTML>