How Secure is Windows Firewall?

Garret writes "Though Microsoft is doing their part in protecting Windows users from internet attacks by including a firewall in their latest service pack, one has to wonder just how secure is the Windows Firewall from XP Service Pack 2? Not too good according to Flexbeta. Their recommendation is to turn off Windows Firewall and get an alternative such as ZoneAlarm or Sygate PF. Simply the fact that Windows Firewall can be turned off by another application is enough to tell me Microsoft has goofed again." PCWorld also has a story about the new firewall capability.

I turned it off.

[sqrt(2)]

With the firewall, and the security center it was using an extra ~20 MB of memory that I need to play Doom3 faster!

Three letters

GRC - Shields Up: If you aren't stealthed, the evil boogeyman will get you... and your children!

Wow.

[rokzy]

If you want to train Firefox not to accept cookies from the usual advertisers, then go to that Flexbeta site. Seems to ask for cookies for every media company on the web.

wow, neat.

[LBArrettAnderson]

So if it couldn't be turned off by software that would mean...? that would mean that MS is abusing their monopoly.

The whole point of the firewall is so that bad applications (like the ones that would turn a firewall off) don't get installed in the first place.

And as far as I can tell, all the article is talking about is the fact that it asks you if you want to keep blocking a program or not. And it DOES ask you for every program that uses the LAN/internet/whatever.

And do you honestly think that it's impossible to turn off Zone Alarm and those other ones with an application? I'm willing to bet that it's possible

Re:Get a grip

My box has never been hacked into.

This can also be read as:

I never got a popup reading "ZOMG! J00ve b33n h4xx043d by da ch1n33z3!!1!1one!eleven lolololz"

Re:SP2 is a security hole in itself.

2. The OS should not allow input when there isn't anyone logged in.

lemme tell you, that'll make it a bitch to log in.

Re:Zone Alarm? Blech

Please, Windows firewall works so much more elgantly than kerio personal Firewall.

The main technique microsoft is using is that they made a shitty firewall so it would get mentioned in the IT topic section of slashdot. They knew all of the would be hackers would read it, and have their eyes burned out by the hidious brighter than the sun sand brown color scheme. How clever Bill, how clever.

Re:Zone Alarm? Blech

but would it protect me from udp packets sent to tcp port 1? windows firewall would!

Re:I am a wiseass

Care to post your IP address?

127.0.0.1

Have fun.

Re:I am a wiseass

dude, i just scanned that ip address. they are so weak! nothing blocked. im gonna have fun haX0ring that all night! thanks d00d!

Re:Zone Alarm? Blech

yes, a sense of humour.

Re:Actually....

[whiteranger99x]

I actually do this when I play UT2004 on one of my old boxes that's still running windows. Of course I also disable the network connection when I do this and restart the firewall when I'm done....

It must be a royal bitch to play UT2004 online ;)

Re:Zone Alarm? Blech

[Jameth]

Doesn't let WindowsME boot? Sounds like it's working fine.

Re:Stealth? *ARGGGH*

[germinatoras]

Because STEALTH is how you security your compooter!! Bill Gates is the smartest man on earth and he is smarter than those evil H4CK0RZ who are trying to break is pretty WIND0WZ!! I think GRC is the best web site ever made and if it says "Stealth" then that means I have securitieied my compooter! Stoopid Lunix doesn't have a Stealth mode You can't even install McAfee Firewall on Lunix! Lunix sucks, Windows is the best OS ever because it has STealth.

Re:Stealth? *ARGGGH*

[jez9999]

Any windows user with even a hint of clue would unbind Netbios from their internet facing card.

How are you defining 'hint of a clue'?

Re:Zone Alarm? Blech

[kgbspy]

Or change it to clit.slashdot.org.

*cough*
Actually, on second thoughts, then most of the slashdot readers wouldn't be able to find the article...