Saturday, September 30, 2006

Firewall

No other single product class seems to cause as much angst to average users in their installation and day-to-day use as Firewalls. For such users Kerio Personal Firewall is my top recommendation as it seems to cause the fewest problems yet manages excellent protection as well.

Kerio dropped the product in late 2005 but thankfully Sunbelt Software, the makers of the excellent CounterSpy anti-spyware scanner, picked it up and will continue making it available under the name of Sunbelt Kerio Personal Firewall [1] . Note that the free and paid versions of Sunbelt Kerio are the same. If you don't buy the product some advanced features are automatically turned off after 30 days. The product will also nag you every time you start it. For some this is a small price to pay for a great free firewall. For others it's a real turn-off.

An alternative product that's also reasonably easy to use is the latest free version (V6) of the ZoneAlarm firewall [2] however I'm reluctant to give it my full recommendation. First, it can be a troublesome program on some PCs. Second, it's a very basic product compared to the commercial ZoneAlarm Pro version. The leak-test performance of the latest free version is in fact, quite poor while the Pro version is excellent.

If performance rather than ease-of-use is your criterion then the Comodo firewall [3] is the top contender. The firewall itself is very robust and it comes with a well designed intrusion detection system as well. Comodo also supports internet connection sharing, while the free versions of Kerio and ZoneAlarm do not. On the minus side the IDS is initially rather talkative and this can unnecessarily alarm inexperienced users. Additionally Comodo has been known to conflict with some other security products though more recent versions seem to be better in this respect. For the technically initiated this is an outstanding free product and an easy first choice. Note that Comodo requires Windows 2000 or XP SP2.

Also technically impressive is the Jetico Firewall [4]. It rates highest on the leak tests of all firewalls but personally I find it awkward to use. It may however, be just your cup of tea.

Another tricky product is NetVeda Safety.Net firewall [5] however its performance is quite outstanding and it offers application control and content filtering as well. This highly capable product deserves to be better known and experienced users should definitely put it on their short list.


[1] http://www.sunbelt-software.com/Kerio.cfm (7.3MB)
[2] http://www.zonelabs.com/store/content/company/products/znalm/freeDownload.jsp (9.0MB)
[3] http://www.personalfirewall.comodo.com/ (8MB)
[4] http://www.jetico.com/index.htm#/jpfirewall.htm[ (2.7MB)
[5] http://www.netveda.com/consumer/safetynet.htm (6.3MB)

Friday, September 29, 2006

Anti-Virus Software

There are two equal recommendations in this category. First there is AVG Antivirus 7.0 Free Edition. This product [1] has been continuously refined since it was first released in 1991 and now offers solid protection capabilities. Additionally, it's relatively small, light on resources, has regular automatic updates and handles email scanning. There is a free and a pro version, the only difference being that the free version has a few non-critical features disabled and has no direct technical support.

Equally effective is the free Avast! scanner [2] though its funky media player style interface is not to everyone's taste. Avast! also required periodic re-registration while AVG does not. However Avast! does not seem to suffer the signature file update problems that plague some AVG users.

A possible third choice is the AOL Anti Virus Shield. This is a cut down version of the top rated Kaspersky AV and is being made available for free to all uses not just AOL members.

On first sight it seems like an unbeatable deal but it's not quite what it seems. First this really is a "lite" version. It lacks the important html and heuristics modules present in the full Kaspersky product so the protection afforded against hostile web sites is actually inferior to AVG and Avast!. Gone, too, is the ability to create rescue disks and to fully manage the quarantine area. The configuration options are also more limited.

Secondly the End User License Agreement is worrying. AOL basically reserves the right to spam you so think first before installing.

On the subject of installing AOL AVS automatically installs the AOL search bar in Internet Explorer as part of the AVS install. You are not giving the option at any stage of opting out though to be fair, you can afterwards un-install the search bar if you wish.

So on balance I'm cautious about recommending AOL AVS. If you can however, live with the limitations then you'll be rewarded with a first class scanner.

Both AVG and Avast! are excellent free products that will meet the needs of most users. However neither can be considered to be the best in their class. That title belongs to commercial products like NOD32, F-Secure, the full version of Kaspersky AV and others. They are however capable packages and offers the financially challenged a real alternative to the major anti-virus suites.

However if you use these free products in conjunction with a free on-demand scanner, you can achieve a level of detection approaching that of the best commercial products. Further improvement is possible by creating a layered defense using additional free security products such as Ewido.

On-demand scans should be run regularly, at least weekly, to check for viruses that may have been missed by your main scanner. My top recommendation as on on-demand scanner is AntiVir Personal Edition Classic [3]. It offers significantly better detection rates than either AVG or Avast! but the lack of email scanning precludes recommendation as a primary scanner. However as an on-demand scanner, it's first rate. If you use it in this role, make sure you disable its resident virus guard during installation to prevent it interfering with your main AV scanner. Note that the recently released V7 unfortunately introduces a time limited license though apparently this will be renewable.

Another good option for on-demand scanning is the free version of the commercial AV product BitDefender [4]. It's a first class product with outstanding detection rates but as the free version lacks an email scanner and a resident virus guard, it's only really suited for use as an on-demand scanner rather than your main AV product. There are some other limitations as well. First it has an annoying habit of detecting malware products that have been quarantined by other security products and you can't exclude these areas from subsequent scans. Second it is only available on a one year non-renewable license.


[1] http://free.grisoft.com/freeweb.php/doc/2/ (16.0MB)
[2] http://www.avast.com/eng/avast_4_home.html (8.8MB)
[3] http://www.activevirusshield.com/antivirus/freeav/index.adp? (13.9MB)
[3] http://www.free-av.com (8.7MB)
[4] http://www.bitdefender.com/PRODUCT-14-en--BitDefender-8-Free-Edition.html (13.2MB)

Thursday, September 28, 2006

Anonymous Surfing Service

There are lots of reasons folks have for wanting to surf anonymously, ranging from simple paranoia to possibly being murdered by a malevolent foreign government. Whatever the reasons, commercial services that offer anonymity are doing real well. However one of the best services JAP [1], is totally free. In fact JAP is perhaps a little too good. That's why the German Police insisted in 2004 that a backdoor be put into the product to allow interception of child pornographers. This was done but subsequently removed as a result of court action by JAP.

An alternative to JAP is a system called Tor [2]. It not only allows anonymous browsing but anonymous P2P, email, IM, and IRC chat as well. Given the US Navy origin of Tor, the suspicion arises that this system may indeed have a permanent backdoor. However the source code is now publicly available so that suspicion can perhaps be set aside. More worrying was a raid by German police in September 2006 involving the seizing of some Tor servers in that country. Again, pedophiles were the supposed target but who really knows.

Whatever, both JAP and Tor offer a level of secrecy that is better than many commercial systems though not watertight. However expect your surfing to slow down as you'll be relayed through a chain of servers particularly with Tor which has been ground to a near standstill by BitTorrent users seeking to hide from the RIAA. Note: the latest V5 release of JAP now allows Tor users to use JAP as a software access point.


[1] http://anon.inf.tu-dresden.de/index_en.html
[2] http://tor.eff.org/