-=PCTechTalk=- Re: More Firewall

• From: "DH (Rick) Holmes" <hayvan@xxxxxxxxxx>
• To: pctechtalk@xxxxxxxxxxxxx
• Date: Sun, 29 Sep 2002 17:00:34 +1200

Suzanne,  you raise a number of interesting points there, and I agree 
with some, but don't disagree with any, just reserving my judgment on 
those. I await a bit of discussion here.

Thanks for your reply

All the best
Rick

suzanne wrote:

>hey Rick... I don't have any more answers to your questions... but a few
>comments that maybe someone else can answer here.  a few comments on your
>set up tho, I would tell sygate to ASK when dial up is trying to connect...
>go ahead, say I am paranoid... but I've seen some nasty little programs that
>will try to overtake your dial up settings and call out to whomever....  I'm
>not all that familiar with ME but don't see why COM services need to go out
>either, or what SDP services are.... maybe someone else with more ME
>experience can shed some light?
>
>Filename: C:\WINNT\system32\NTOSKRNL.EXE  is always attempting to go out
>upon connecting with my DSL acct.  I deny it each time, as it doesn't make
>sense to me WHY it would need to communicate outside my system.  I run
>win2k, and your W32Kernel is the ME or Win9x version of the kernel - which
>is the major component of the operating system.  the only thing that I can
>think of is that my ISP is tracking log ons or this is something that MS has
>instituted for it's updates - which I only do manually by going to the
>windows update site.
>
>to investigate more [which I have been wanting to do for a long time now] I
>went thru my log [which sygate gives a back trace function], the hops that
>ntoskrnl is trying to take go like this -  bellsouth [my isp];  uunet
>[houston] x 2 ; uunet backbone x4;  uunetcblk [?]; cable & wireless loopback
>[chicago!] x 3; C & W [Elk Grove?]; C & W [no location info] x 2; unety
>[chicago] and then the last stop at PowerNet/PowerUser Inc.... man... that's
>alot of hops just to get an internet connection!  17 in total.... and I
>don't see the point in letting my kernel register these hops...  any advise
>from internet gurus???
>
>my other comment is on WinAmp - why does it need to access the net every
>time I fire it up to play a song?  music match juke box doesn't do this...
>and when I do not allow it to connect to the net, WinAmp shuts down on me...
>why is it calling home I wonder???
>
>to further explore the winamp issue, I disconnected my DSL line and started
>up WinAmp... it wanted to go out, and this time I said yes - so that it
>wouldn't shut down on me... went to options --> preferences --> internet
>and unchecked the box to check for new versions of at start up.  now it
>doesn't register wanting a net connection when I start it up.  I prefer to
>all my updates to all my applications manually...  I've seen too many
>systems get hosed by doing auto updates.
>
>~s
>
>
>----- From: "DH (Rick) Holmes"
>  
>
>>Eric...it's Rick, not that it matters.  Thank you for your directions.
>>   I must have a different version to you because,  in
>>Tools/Applications/Advanced there is a box, (already checked) with
>>'Allow ICMP traffic'.  Because of this I presume that no specific rule
>>is needed.  Please confirm.
>>
>>What I have now is:- ( With my comments in brackets)
>>
>>DialUp Networking App  ...........Allow      This I think is how ir
>>should be.
>>Distributed COM services..........Ask        Could I block this?
>>Microsoft AutoUpdate.................Ask         I usually deny this but
>>occasionally say OK.
>>Netscp.exe.................................Allow       OK I should thionk
>>Sky Media 200D..........................Allow        Yes, needed
>>SDP Service on Windows Millenium.......Ask       Don't know.
>>W32Kernel core component..........Block               Should be OK??
>>because ICMP is enabled
>>WinAmp3............................. Ask                 I can't see
>>that this is needed now.  Should I block it?
>>
>>If you don't mind just letting me know if the options chosen above are
>>right, I would be much obliged, thanks.
>>
>>    
>>
>
>To unsub or change your email settings:
>http://www.freelists.org/webpage/pctechtalk
>
>To access our Archives:
>http://groups.yahoo.com/group/PCTechTalk/messages/
>http://www.freelists.org/archives/pctechtalk/
>
>
>  
>


To unsub or change your email settings:
http://www.freelists.org/webpage/pctechtalk

To access our Archives:
http://groups.yahoo.com/group/PCTechTalk/messages/
http://www.freelists.org/archives/pctechtalk/

• References:
  • -=PCTechTalk=- Re: More Firewall
    • From: Eric Skeen
  • -=PCTechTalk=- Re: More Firewall
    • From: DH (Rick) Holmes
  • -=PCTechTalk=- Re: More Firewall
    • From: suzanne

Other related posts:

• » -=PCTechTalk=- Re: More Firewall
• » -=PCTechTalk=- Re: More Firewall
• » -=PCTechTalk=- Re: More Firewall
• » -=PCTechTalk=- Re: More Firewall
• » -=PCTechTalk=- Re: More Firewall
• » -=PCTechTalk=- Re: More Firewall
• » -=PCTechTalk=- Re: More Firewall

• » Related posts
• » Previous by Date
• » Next by Date
• » This Month's Archive
• » Main Archive Page

• » View list details
• » Manage your subscription