Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: Never disable your firewall, no matter how good it sounds - SANS Internet Storm Center SANS ISC InfoSec Forums


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Never disable your firewall, no matter how good it sounds

On a very slow rainy day here throughout the US (hitting both coasts today) I thought I'd share this tidbit of wisdom that we should never let go of: NEVER disable your home or personal firewalls, no matter the reason.  If there is a site that won't work because of your firewall, they need to figure out how to make it work for you.  It is the site that wants 'you' and 'your business' so they need to post instructions to aide in you safely and securely configuring your home and personal firewalls.  If they won't, do a bit of research, ask a friend, or ask a computer pro to assist with a packet capture and find out what needs to be done.  We here at the ISC are always willing to help with that sort of thing as well.  But please, please, *please* don't disable the firewall!

 

Tony

Tony

150 Posts
ISC Handler
How about myriad of games and security software (personal firewalls, antivirus) which also want to disable my personal firewall or antivirus before install? And still these programs need online connection for registration or for downloads.
Anonymous
To your question, LaFuu, that's when you need hardware firewalls. If you're on a laptop and away from home or work where you have the hardware firewalls, unplug while the install is in process. Once it is done, re-enable your firewall and allow the downloads. If it won't let you do that, don't install it!
Jason

9 Posts
Two observations:

1. Multiple software firewalls can be almost as bad as no firewall. If your machine has more than one active, then WHICH one will service the traffic?

2. Small, hardware firewalls are, now-a-days, more than portable and there is no excuse not to have one in your portable computing kit.

FBIG
BezantSoft

14 Posts

Sign Up for Free or Log In to start participating in the conversation!