Cyber Security Awareness 10/07/07

Increasingly I have seen Host-Based firewalls being brought up on the corporate radar in those arenas that have to deal with such things as VPN's, other remote computing solutions, and thusly trojans, worms, and other auto-spreading malware.

Host-Based firewalls are basically exactly what they sound like (excuse me for taking a step back for everyone's benefit), a firewall that resides on the HOST itself. Your computer. The Machine you using right now. Whether it be Windows, OSX, *nix, or *bsd variant, there is a firewall available for every OS, and every OS has one built in. Some better than others (in the interest of full disclosure, I am typing this on a PowerMac, which has a built in firewall, and one that needs a bit more tweaking). As firewalls should be (IMHO) "Deny All, Permit by Exception".

When my parents or a friend asks me what kind of "free firewall" to install on their Windows machine, I usually go with "at least turn on the built in one! (Which is now on by default as of XPSP2)", and then if more assistance is needed I usually go with ZoneAlarm. I'm not partial to any one firewall in particular, whichever gets the job done quickly and efficiently. Basically I say all that to make this point: Host-Based firewalls (especially for home users) are a great idea, they come in a lot of variants, and should be deployed.

	SLAC Computer Security	Search SLAC

SLAC Home \| Computing Home \| Computing Outages \| Help

Cyber Security Awareness Month