Quote:
Originally Posted by Jinto Lin
Good firewalls work with software fingerprints. So if you or a trojan or virus tries to alter i.e. the Opera.exe the registered fingerprint won't work anymore, and the new Opera.exe will be blocked until the user confirms, that it is allowed to use port x for incoming/outgoing/both/certain protocol connection. But basically a FW is as secure as the programs that have granded access to the internet by the firewall.
|
Even with this function, the user should be told to be careful. This is a good technology, but some software updates more often than others, and start making the user click on "allow" button faster than they can really think. Reflex is a scary thing. The general opensource way of thinking is "release early and often," and that's actually working against making the systems secure in this instance.