Is Windows XP Firewall Really Good Enough for your Machine ?
| 8 comments ]

This is one question which many people ask and there are many answers which people give . Some say the XP firewall is more than enough especially for a basic user who does some minimal web browsing , some say XP firewall is like no firewall . Both answers are true and false in their own ways . In this post i hope to tell you why i think windows xp firewall isn't a good enough firewall AT ALL even for the most basic user who uses the internet . So here's what i think :



I did a few tests with a windows xp machine which has the default firewall . I tried it with various modes like bridged mode and pppoe mode . Basically just wanted to see how intelligent windows XP firewall really is . But unfortunately XP firewall didnt really prove to be efficient . The reason being most common ports like for example port 139 is left OPEN by default in windows xp firewall . Now a days many users use the bridged mode in windows . In the bridged mode you basically use a windows xp dialer to connect to the internet. Now when in bridged mode its important to know that ALL your ports and traffic are forwarded to your machine . The only protection you will have is from your software firewall . Now windows xp firewall allows port 139 by default (also port 445) even if its from a client on the internet . Port 139 is the NET BIOS port which is used for Windows XP file and printer sharing . So if you have enabled file and printer sharing on your pc which is mostly the case as many of us have local area networks then you have put yourself in big risk . The reason being since file and printer sharing is enabled , then port 139 is OPEN . Windows firewall doesnt block it .



So all a hacker needs to do is look for this open port . This is one of the most dangerous ports which MOST of the people on the internet have OPEN . Thus all their data is exposed on the internet . This data can be stolen, can be manipulated , deleted , hackers can insert viruses to your C or D drive etc . So thats why windows xp firewall is definetly not enough for even the most basic internet user . Port 139 is just one of the ports , there dozens of other ports like 445 which if OPEN can be very dangerous.

SUMMARY :
People using windows xp firewall with setups like this are at high risk :

1)Having a Router with NAT-DMZ enabled therefore having all ports opened to one ip address
2)Setting up your router in bridged mode and using a dialer in windows xp to connect
3)Connecting to an unknown insecure wifi network which can be very insecure
4)Connecting to a VPN server which you dont fully trust
5)And a lot other similar setups..

SOLUTION :
Well the solution , is pretty obvious , look for a 3rd party firewall software . There are so many FREE firewalls available , they are more than enough you dont need to invest on a software firewall. I recommend Zonealaram , i think they have one of the finest firewall software and that too its absolutely FREE . So incase your interested in installing that CLICK HERE .



CONCLUSION :
In today's world it is very important to protect your computer from such attacks . Installing the right kind of security tools is very important . Hopefully soon i would be able to tell you about windows vista firewall , which is a lot more different!!

If you want to receive Latest Articles In your Email CLICK HERE

8 comments

Anonymous said... @ April 7, 2009 at 11:07 AM

I have been using ZA for many years. On some windows machines it drags the system speed down which caused problems for a while - esp with those machines that had a lot of services and software running at boot. As for the built in fw, its useless. It lets certain programs access even after I tell it not to. That really sucks!

Another AWESOME! firewall is Comodo.
http://personalfirewall.comodo.com/
Its not for beginners and isnt as easy as ZA but its massively powerful.

Prash Babu said... @ April 7, 2009 at 11:24 AM

Hello wadesmart,
Zonealarm can take a lot of resources . Comodo is again a nice alternative..

lordryan said... @ July 16, 2009 at 6:14 AM

good work.how abt avg?

Prash Babu said... @ July 16, 2009 at 10:53 PM

AVG too is really good and its FREE i guess.. I guess there a lot of good firewalls , just look at the brands like avg,zonealarm,mcafee,norton etc they usually come up with good products.. Although i personally am not a fan of norton as they use up a lot of system resources and is not free. But they do provide a security solution!!

Anonymous said... @ September 8, 2009 at 5:23 AM

I personally very afraid of firewalls.
the reason behind this I install Sunbelt-Personal-Firewall which banned all downloads. :(

Prash Babu said... @ September 8, 2009 at 8:43 AM

Well some firewalls require some very complex configuration as you manually have to configure each and every RULE , whereas some firewalls are intelligent enough to realize which protocols can be allowed safely and which not!!

ajay bisht said... @ December 25, 2009 at 11:05 AM

its realy a very helpfull Articles for Beginners like me... i became a fan of u sir.. keep doing good work...

Prash Babu said... @ December 26, 2009 at 8:38 PM

Glad you liked it!!

Post a Comment