Gigabyte or Abit or Asus

Archived from groups: alt.comp.hardware.overclocking.amd,alt.comp.hardware.pc-homebuilt,alt.comp.periphs.mainboard.asus (More info?)

Try these links:

http://www.hexus.net/content/revie [...] 9JRD0xMDA5
http://www20.tomshardware.com/moth [...] index.html
http://www.anandtech.com/mb/showdoc.aspx?i=2358

Archived from groups: alt.comp.hardware.overclocking.amd,alt.comp.hardware.pc-homebuilt,alt.comp.periphs.mainboard.asus (More info?)

"FG" <personne@videotron.cam> wrote in message
news:vEB%d.8633$aQ.552907@wagner.videotron.net...
> Are you sure you have used the correct BIOS settings ?
>
> Could it be a software problem ? Have you tried repairing
> Windows, if that is the system you use ?
>

This only happened when I upgraded my motherboard and processor. At first I
had WinXP64 on it and thought that might be the problem. So I took that off
and installed my own Win XP Home (after a reformat) and the problem
persisted.
I have uninstalled all the drivers and reinstalled again to be met by the
same problem. Could it be a power supply problem?

I have the BIOS settings changed and changed back, even using the BIOS's
Optimized settings.

Scott

Archived from groups: alt.comp.hardware.overclocking.amd,alt.comp.hardware.pc-homebuilt,alt.comp.periphs.mainboard.asus (More info?)

Getting back to the question at hand, it is necessary that you decide what
your upgrades are going to be. If you are looking at the Nvidia Chipset with
a 939 pin CPU them the highest rated motherboards on the market are the MSI
and DFI brands. If you intend on staying with the Via Chipset then both the
Asus and Abit motherboards are rated very high, and will still be able to
use AGP video cards.

Be careful, because in the 939 pin selection of motherboards there are the
new SLI boards which will require an upgrade to the new PCI-Express Video
Cards which are not cheap.

I currently have the Asus A8V Deluxe Revision 2.0 with an AMD 64 3500+
Winchester CPU and I am very pleased with it. Installation was easy and I
currently have it overclocked to 2419 mhz (10% Overclock) with auto
settings. It is rock stable and I didn't have to upgrade my ATI Graphics
Card to PCI-E as previously stated.

Read the latest reviews on this matter at the following address:
http://www.anandtech.com/mb/showdoc.aspx?i=2128
It will help you decide which route to take.
Good luck and happy shopping!

"Colonel Blip" <colonel.blip@removethespambigfoot.com> wrote in message
news:423ec54a$1_2@127.0.0.1...
> Hello, All!
>
> I'm interested in getting a 939 socket m/b and an Athlon64 3000+. I've
> always been an Asus m/b person, but thought I would at least test the
> waters
> on views of the Asus vs. other m/b's. Any views on 'best' of these three
> manufactures for socket 939?
>
> Thanks.
>
> Colonel Blip.
> E-mail: colonel.blip@removethespambigfoot.com
>
>
>
> ----== Posted via Newsfeeds.Com - Unlimited-Uncensored-Secure Usenet
> News==----
> http://www.newsfeeds.com The #1 Newsgroup Service in the World! 120,000+
> Newsgroups
> ----= East and West-Coast Server Farms - Total Privacy via Encryption
> =----

Archived from groups: alt.comp.hardware.overclocking.amd,alt.comp.hardware.pc-homebuilt,alt.comp.periphs.mainboard.asus (More info?)

Hello, Roy!
You wrote on Mon, 21 Mar 2005 18:38:24 GMT:

Thanks. I'll take a look at the site. Definitely have no intention of
replacing my AGP at this time which is why I was considering the A8V Deluxe.

ColBlip.
E-mail: colonel.blip@nospampleasebigfoot.com

R> Getting back to the question at hand, it is necessary that you decide
R> what your upgrades are going to be. If you are looking at the Nvidia
R> Chipset with a 939 pin CPU them the highest rated motherboards on the
R> market are the MSI and DFI brands. If you intend on staying with the Via
R> Chipset then both the Asus and Abit motherboards are rated very high,
R> and will still be able to use AGP video cards.

R> Be careful, because in the 939 pin selection of motherboards there are
R> the new SLI boards which will require an upgrade to the new PCI-Express
R> Video Cards which are not cheap.

R> I currently have the Asus A8V Deluxe Revision 2.0 with an AMD 64 3500+
R> Winchester CPU and I am very pleased with it. Installation was easy and
R> I currently have it overclocked to 2419 mhz (10% Overclock) with auto
R> settings. It is rock stable and I didn't have to upgrade my ATI Graphics
R> Card to PCI-E as previously stated.

R> Read the latest reviews on this matter at the following address:
R> http://www.anandtech.com/mb/showdoc.aspx?i=2128
R> It will help you decide which route to take.
R> Good luck and happy shopping!

R> "Colonel Blip" <colonel.blip@removethespambigfoot.com> wrote in message
R> news:423ec54a$1_2@127.0.0.1...
??>> Hello, All!
??>>
??>> I'm interested in getting a 939 socket m/b and an Athlon64 3000+. I've
??>> always been an Asus m/b person, but thought I would at least test the
??>> waters
??>> on views of the Asus vs. other m/b's. Any views on 'best' of these
??>> three manufactures for socket 939?
??>>
??>> Thanks.
??>>
??>> Colonel Blip.
??>> E-mail: colonel.blip@removethespambigfoot.com
??>>
??>> ----== Posted via Newsfeeds.Com - Unlimited-Uncensored-Secure Usenet
??>> News==----
??>> http://www.newsfeeds.com The #1 Newsgroup Service in the World!
120,000+
??>> Newsgroups
??>> ----= East and West-Coast Server Farms - Total Privacy via Encryption
??>> =----



----== Posted via Newsfeeds.Com - Unlimited-Uncensored-Secure Usenet News==----
http://www.newsfeeds.com The #1 Newsgroup Service in the World! 120,000+ Newsgroups
----= East and West-Coast Server Farms - Total Privacy via Encryption =----

Archived from groups: alt.comp.hardware.overclocking.amd,alt.comp.hardware.pc-homebuilt,alt.comp.periphs.mainboard.asus (More info?)

On Mon, 21 Mar 2005 06:56:24 -0600, Colonel Blip wrote:

> I'm interested in getting a 939 socket m/b and an Athlon64 3000+. I've
> always been an Asus m/b person, but thought I would at least test the waters
> on views of the Asus vs. other m/b's. Any views on 'best' of these three
> manufactures for socket 939?
>
Who makes the board doesn't really matter much. What matters is the
chipset and features the board supports. That's why I bought a Jetway
board for the A64 over a year ago and I'm still happy with it today.

--
Abit KT7-Raid (KT133) Tbred B core CPU @2400MHz (24x100FSB)
My server http://wesnewell.no-ip.com/cpu.php
Verizon server http://mysite.verizon.net/res0exft/cpu.htm

Archived from groups: alt.comp.hardware.overclocking.amd,alt.comp.hardware.pc-homebuilt,alt.comp.periphs.mainboard.asus (More info?)

On Mon, 21 Mar 2005 19:30:44 -0800, "Ed Light" <nobody@nobody.there>
wrote:

>
>"Wes Newell" <w.newell@TAKEOUTverizon.net> wrote in
>
>> Who makes the board doesn't really matter much. What matters is the
>> chipset and features the board supports. That's why I bought a Jetway
>> board for the A64 over a year ago and I'm still happy with it today.
>
>If you're overclocking then it matters. Some boards barely overclock, some
>go whole hog, with the same chipset.

Ya I noticed DFI seems to be getting some good OCing reviews lately...
http://www.madshrimps.be/?action=g [...] ticID=305)
The DFI will run very stable at 300 x 8 using TCCD 512x2 @1T, achieving
300 x 9 with simple air-cooling credits to how well the BIOS, memory
controller and the quality of this board to work in concert with each
other. This board is simply splendid in reaching the best possible
performance.

Ed

Archived from groups: alt.comp.hardware.overclocking.amd,alt.comp.hardware.pc-homebuilt,alt.comp.periphs.mainboard.asus (More info?)

"Tim" <Tim@NoSpam.com> wrote in message news1nheu$vkv$1@lust.ihug.co.nz...
> Try a repair install and if that does not work, do a fresh install. Backup
> your data first.
>
> What you describe sounds like a software problem, not a motherboard
> problem.
>
> I would also do a full virus and spyware scan.
>
> - Tim
>
>

I'll do just that. Will report back.

Scott

Archived from groups: alt.comp.hardware.overclocking.amd,alt.comp.hardware.pc-homebuilt,alt.comp.periphs.mainboard.asus (More info?)

What the kinhell you runnin two firewalls for?
Why run SP2 firewall AND Norton??
Think you will be better protected?
That's like wearin a belt and suspenders

"Scott" <pawsandclawsremovethis@btconnect.com> wrote in message
news1os2i$abm$1@sparta.btinternet.com...
>
> "Tim" <Tim@NoSpam.com> wrote in message
> news1nheu$vkv$1@lust.ihug.co.nz...
>> Try a repair install and if that does not work, do a fresh install.
>> Backup your data first.
>>
>> What you describe sounds like a software problem, not a motherboard
>> problem.
>>
>> I would also do a full virus and spyware scan.
>>
>> - Tim
>>
>>
>
> I'll do just that. Will report back.
>
> Scott
>

Archived from groups: alt.comp.periphs.mainboard.asus (More info?)

On Mon, 21 Mar 2005 06:56:24 -0600, "Colonel Blip"
<colonel.blip@removethespambigfoot.com> wrote:

>Hello, All!
>
>I'm interested in getting a 939 socket m/b and an Athlon64 3000+. I've
>always been an Asus m/b person, but thought I would at least test the waters
>on views of the Asus vs. other m/b's. Any views on 'best' of these three
>manufactures for socket 939?
>

Why doesn't any here mention the real amd64 king: msi

I don't like the cooler solution of abit nf4 s939 board (these 2 small
40 mm fans) , and I don't like the socketed power printcard on the
gigabytes.

On overclocker forums you don't see many asus users post. Per example
this winchester OC thread:
http://www.xtremesystems.org/forum [...] hp?t=44570

Most use MSI and recently also DFI.

best regards

John

Archived from groups: alt.comp.hardware.overclocking.amd,alt.comp.hardware.pc-homebuilt,alt.comp.periphs.mainboard.asus (More info?)

"Roger Hamlett" <rogerspamignored@ttelmah.demon.co.uk> wrote in
message news:JCW%d.56$nc3.42@newsfe3-win.ntli.net...
>
> "Scott" <pawsandclawsremovethis@btconnect.com> wrote in message
> news1p7v8$766$1@hercules.btinternet.com...
> >
> > "Nero" <nero@rome.it> wrote in message
> > news:4240181a$0$8744$db0fefd9@news.zen.co.uk...
> >> What the kinhell you runnin two firewalls for?
> >> Why run SP2 firewall AND Norton??
> >> Think you will be better protected?
> >> That's like wearin a belt and suspenders
> >>
> >
> > I'm running two firewalls for extra protection. It's fine to
run two
> > firewalls, but not two virus scanners and one virus scanner
will read
> > the others virus definitions and possibly delete them.
> > I like to be careful just incase someone cracks through one of
them, at
> > least I'm protected that little bit more.
> >
> > Do you not recommend this?
> Personally, when it comes to virii, you need belt, braces,
suspenders, and
> super-glue!.
> There are some viruses, that specifically have been targetted to
penetrate
> particular virus scanners. Multiple firewalls is less worthwhile,
since in
> general how effective this is is entirely 'down' to how well the
package
> is set up. However the XP firewall, is pretty basic, and adding a
version
> that offers better configuration, is often a good idea.
> Virus scanners should be perfectly capable of working without
interfering
> with one another. This is down to placing the definition files in
seperate
> directories. It is pointless to run two, if they are based on the
same
> type of detection algorithm, however systems are available that
> deliberately 'cascade' multiple testers using different search
> algorithmns. I use an external commercial scanner on the server,
and then
> a seperate system on the PC for exactly this reason.


Have you EVER run two virus scanners simultaniously? The speed hit
is unbelievable. And they are not going to protect you against
brand new virii that nobody has definitions for.

Now if there were some kind of arrangement where your
router/gateway could run a virus scanner, and your computer could
run one, that is something completely different.

There's nothing wrong with two firewalls, except that if something
isn't working you have to dick with two of them to fix it.

--
LTP

When the llama speaks you listen. Unfortunately the llama hasn't
spoken yet.

Archived from groups: alt.comp.hardware.overclocking.amd,alt.comp.hardware.pc-homebuilt,alt.comp.periphs.mainboard.asus (More info?)

Just as a point of reference for you, I've had 3 ASUS boards (all AMD)
and they've been grand. Twice I went for ABIT boards and both times they
were faulty and had to go back in replacement for said ASUS boards.

Hope that helps your decision a little

Sandi

Archived from groups: alt.comp.hardware.overclocking.amd,alt.comp.hardware.pc-homebuilt,alt.comp.periphs.mainboard.asus (More info?)

"Mike" <mikethebike@hooters.com> wrote in message
news:T6%%d.13010$nK.708318@news20.bellglobal.com...
> Too bad you're intent on getting an Athlon board, otherwise I would
> suggest you buy a P4 board made by Supermicro
> www.supermicro.com
> Whenever you want a superior board - these are the ones to buy.
> I will never buy GIGABYTE ever again.
> ASUS - in my opinion are quickly losing their reputation for stable and
> well-designed boards. I've never seen so many problems with ASUS boards
> as I have in the past year. (both AMD and P4 boards).
> ABIT are up and down. You never know when you'll get a well designed and
> trouble-free board.
> MSI quality control is questionable.
>
>
> Bottom line......
> If you've got the cash - go for a Supermicro's board
>
>
> ike -------------------------------------------------------------------------
>
> "Colonel Blip" <colone
> l.blip@removethespambigfoot.com> wrote in message
> news:423ec54a$1_2@127.0.0.1...
>> Hello, All!
>>
>> I'm interested in getting a 939 socket m/b and an Athlon64 3000+. I've
>> always been an Asus m/b person, but thought I would at least test the
>> waters
>> on views of the Asus vs. other m/b's. Any views on 'best' of these three
>> manufactures for socket 939?
>>
>> Thanks.
>>
>> Colonel Blip.
>> E-mail: colonel.blip@removethespambigfoot.com


In case no one has noticed, 32-bit is dead. Long live 64-bit! <G>

Seriously, I'll bet the next version of Win XP will be a 64 bit version.

Newegg.com is selling Intel 64-bit consumer level CPU's and there are even a
few motherboards available for these chips.

I just bought an AMD Athlon 64 3200+ on sale just to be able to run the 64
bit versions of Win XP and Sonar music production program (both available
free in beta). Yeah, I know it is choked down to 32-bit at the bus, but it
didn't cost $2000 either.

It may be a while until there are lots of 64-bit programs, but the old stuff
will run on them too.

Ed Cregger
--
Into quilting? Know a quilter that needs a novel, inexpensive gift?

Please visit http://www.quigleyquotables.com/ for the latest in modern, easy
to quilt patterns.

Archived from groups: alt.comp.hardware.overclocking.amd,alt.comp.hardware.pc-homebuilt,alt.comp.periphs.mainboard.asus (More info?)

"Nero" <nero@rome.it> wrote in message
news:4240181a$0$8744$db0fefd9@news.zen.co.uk...
> What the kinhell you runnin two firewalls for?
> Why run SP2 firewall AND Norton??
> Think you will be better protected?
> That's like wearin a belt and suspenders

If one catches something the other doesn't one time, and the other catches
something the one doesn't another time, it was worth it.

Although I let ZoneAlarm tell me to abandon the win xp firewall, last year I
found one thing that the win firewall caught that ZA didn't. I think ZA
caught up, though.


--
Ed Light

Smiley :-/
MS Smiley :-\

Send spam to the FTC at
uce@ftc.gov
Thanks, robots.

Archived from groups: alt.comp.hardware.overclocking.amd,alt.comp.hardware.pc-homebuilt,alt.comp.periphs.mainboard.asus (More info?)

"Ed Light" <nobody@nobody.there> wrote in message
news:7830e.60658$xt.2270@fed1read07...
> Maybe you could put each antivirus in the other's exclude list, if it
> includes folders.
>
Good point

Scott

Archived from groups: alt.comp.hardware.overclocking.amd,alt.comp.hardware.pc-homebuilt,alt.comp.periphs.mainboard.asus (More info?)

Ed Light wrote:

> "Nero" <nero@rome.it> wrote in message
> news:4240181a$0$8744$db0fefd9@news.zen.co.uk...
>
>>What the kinhell you runnin two firewalls for?
>>Why run SP2 firewall AND Norton??
>>Think you will be better protected?
>>That's like wearin a belt and suspenders
>
>
> If one catches something the other doesn't one time, and the other catches
> something the one doesn't another time, it was worth it.
>
> Although I let ZoneAlarm tell me to abandon the win xp firewall, last year I
> found one thing that the win firewall caught that ZA didn't. I think ZA
> caught up, though.
>
>

Well, now, that's an interesting 'observation'. What do you mean by
"caught?" That you got a popup *telling* you something was being blocked or
that it let data through on a closed port? And, if you mean it let data
through on a closed port, how did you determine that?

Archived from groups: alt.comp.hardware.overclocking.amd,alt.comp.hardware.pc-homebuilt,alt.comp.periphs.mainboard.asus (More info?)

The AMD 3500+ is a nice processor. I'd recommend buying the 90nm
Winchester version. I currently have it overclocked to 2.5GHz -- and
it's at 35c. I'm sure using Arctic Silver's ceramic thermal compound
has helped.

Archived from groups: alt.comp.hardware.overclocking.amd,alt.comp.hardware.pc-homebuilt,alt.comp.periphs.mainboard.asus (More info?)

Ed Light wrote:

> "David Maynard" <nospam@private.net> wrote in message
> news:1143gheckem802f@corp.supernews.com...
>
>>Ed Light wrote:
>>
>>
>>>"Nero" <nero@rome.it> wrote in message
>>>news:4240181a$0$8744$db0fefd9@news.zen.co.uk...
>>>
>>>
>>>>What the kinhell you runnin two firewalls for?
>>>>Why run SP2 firewall AND Norton??
>>>>Think you will be better protected?
>>>>That's like wearin a belt and suspenders
>>>
>>>
>>>If one catches something the other doesn't one time, and the other
>>>catches something the one doesn't another time, it was worth it.
>>>
>>>Although I let ZoneAlarm tell me to abandon the win xp firewall, last
>>>year I found one thing that the win firewall caught that ZA didn't. I
>>>think ZA caught up, though.
>>>
>>>
>>
>>Well, now, that's an interesting 'observation'. What do you mean by
>>"caught?" That you got a popup *telling* you something was being blocked
>>or that it let data through on a closed port? And, if you mean it let data
>>through on a closed port, how did you determine that?
>>
>
> Using online tests that check on ports.
>
>

What port did zone alarm let through that it wasn't supposed to?

Archived from groups: alt.comp.hardware.overclocking.amd,alt.comp.hardware.pc-homebuilt,alt.comp.periphs.mainboard.asus (More info?)

Ed Light wrote:
> "David Maynard" <nospam@private.net> wrote in message
> news:1143gheckem802f@corp.supernews.com...
>
>>Ed Light wrote:
>>
>>
>>>"Nero" <nero@rome.it> wrote in message
>>>news:4240181a$0$8744$db0fefd9@news.zen.co.uk...
>>>
>>>
>>>>What the kinhell you runnin two firewalls for?
>>>>Why run SP2 firewall AND Norton??
>>>>Think you will be better protected?
>>>>That's like wearin a belt and suspenders
>>>
>>>
>>>If one catches something the other doesn't one time, and the other
>>>catches something the one doesn't another time, it was worth it.
>>>
>>>Although I let ZoneAlarm tell me to abandon the win xp firewall, last
>>>year I found one thing that the win firewall caught that ZA didn't. I
>>>think ZA caught up, though.
>>>
>>>
>>
>>Well, now, that's an interesting 'observation'. What do you mean by
>>"caught?" That you got a popup *telling* you something was being blocked
>>or that it let data through on a closed port? And, if you mean it let data
>>through on a closed port, how did you determine that?
>>
>
> Using online tests that check on ports.
>
>

LOL

--
spammage trappage: replace fishies_ with yahoo

I'm going to die rather sooner than I'd like. I tried to protect my
neighbours from crime, and became the victim of it. Complications in
hospital following this resulted in a serious illness. I now need a bone
marrow transplant. Many people around the world are waiting for a marrow
transplant, too. Please volunteer to be a marrow donor:
http://www.abmdr.org.au/
http://www.marrow.org/

Archived from groups: alt.comp.hardware.overclocking.amd,alt.comp.hardware.pc-homebuilt,alt.comp.periphs.mainboard.asus (More info?)

"David Maynard" <nospam@private.net> wrote
> What port did zone alarm let through that it wasn't supposed to?
I can't remember. It was some sort of Windows related port.

I'll be gone from newsgroups until mid-April.


--
Ed Light

Smiley :-/
MS Smiley :-\

Send spam to the FTC at
uce@ftc.gov
Thanks, robots.

Archived from groups: alt.comp.hardware.overclocking.amd,alt.comp.hardware.pc-homebuilt,alt.comp.periphs.mainboard.asus (More info?)

"David Maynard" <nospam@private.net> wrote
> What I'm trying to figure out is if it really 'leaked' a port or if it's
> simply that one was properly enabled and you just didn't realize it.

The online test said the port was visible, or something.

It was shields up or something like that.


--
Ed Light

Smiley :-/
MS Smiley :-\

Send spam to the FTC at
uce@ftc.gov
Thanks, robots.

Archived from groups: alt.comp.hardware.overclocking.amd,alt.comp.hardware.pc-homebuilt,alt.comp.periphs.mainboard.asus (More info?)

"David Maynard" <nospam@private.net> wrote in message
news:1146rvibrhghgea@corp.supernews.com...
> Ed Light wrote:
>
>> "David Maynard" <nospam@private.net> wrote
>>
>>>What I'm trying to figure out is if it really 'leaked' a port or if it's
>>>simply that one was properly enabled and you just didn't realize it.
>>
>>
>> The online test said the port was visible, or something.
>>
>> It was shields up or something like that.
>>
>>
>
> Ok. Doesn't sound like we're going to get much farther on that one.


Here's Shields Up.
http://grc.com/

After searching a bit I found a note to myself that universal plug and play
opens up a port to the internet despite ZoneAlarm. Note dated 12-25-02. It
says to uninstall it.

http://grc.com/default.htm and scroll down to universal plug and pray.

I'll really be gone now, unless I come in for another session tonight, for a
couple of weeks.

--
Ed Light

Smiley :-/
MS Smiley :-\

Send spam to the FTC at
uce@ftc.gov
Thanks, robots.

Archived from groups: alt.comp.hardware.overclocking.amd,alt.comp.hardware.pc-homebuilt,alt.comp.periphs.mainboard.asus (More info?)

Ed Light wrote:
> "David Maynard" <nospam@private.net> wrote in message
> news:1146rvibrhghgea@corp.supernews.com...
>
>>Ed Light wrote:
>>
>>
>>>"David Maynard" <nospam@private.net> wrote
>>>
>>>
>>>>What I'm trying to figure out is if it really 'leaked' a port or if it's
>>>>simply that one was properly enabled and you just didn't realize it.
>>>
>>>
>>>The online test said the port was visible, or something.
>>>
>>>It was shields up or something like that.
>>>
>>>
>>
>>Ok. Doesn't sound like we're going to get much farther on that one.
>
>
>
> Here's Shields Up.
> http://grc.com/
>
> After searching a bit I found a note to myself that universal plug and play
> opens up a port to the internet despite ZoneAlarm. Note dated 12-25-02. It
> says to uninstall it.
>
> http://grc.com/default.htm and scroll down to universal plug and pray.
>
> I'll really be gone now, unless I come in for another session tonight, for a
> couple of weeks.
>

Ah, yes, uPnP. Well, that makes sense.

Archived from groups: alt.comp.hardware.overclocking.amd,alt.comp.hardware.pc-homebuilt,alt.comp.periphs.mainboard.asus (More info?)

[f'ups set to <alt.comp.periphs.mainboard.asus>, exclusively]

On Tue, 22 Mar 2005 13:52:40 +0000 (UTC), in
<alt.comp.periphs.mainboard.asus>, "Scott"
<pawsandclawsremovethis@btconnect.com> wrote:
>
[snip]
>
> "Nero" <nero@rome.it> wrote in message
> news:4240181a$0$8744$db0fefd9@news.zen.co.uk...
> > What the kinhell you runnin two firewalls for?
> > Why run SP2 firewall AND Norton??
> > Think you will be better protected?
> > That's like wearin a belt and suspenders
> >
>
> I'm running two firewalls for extra protection.
[snip]

You're kidding yourself.

First, these so-called "software firewalls" are ALL inherently flawed, by
simple virtue of the fact that they are running on the same system they
attempt to protect -- that is a functional oxymoron. A truism:

You can't block a port with software that runs on the same machine where
the attacks are aimed. That's like trying to stop bullets by shoving
Kevlar up your backside. By the time the bullet hits the Kevlar, the
damage has been done.
-- Morely 'Spam is theft' Dotes in NANAE, 13-AUG-2003

But beyond that, running TWO of them is just plain silly. If either
pseudo-firewall is intelligently designed and properly configured, then it
will by itself provide ALL the "protection" that any such pseudo-firewall is
capable of. And if it is *not* intelligently designed and properly
configured, then adding yet another grossly broken "firewall" isn't going to
buy you anything (except headaches, of course).

> I like to be careful just incase someone cracks through one of them, at
> least I'm protected that little bit more.
>
[snip]

No, you're not.

--

Jay T. Blocksom
--------------------------------
Appropriate Technology, Inc.
usenet02[at]appropriate-tech.net

"They that can give up essential liberty to obtain a little temporary
safety deserve neither liberty nor safety."
-- Benjamin Franklin, Historical Review of Pennsylvania, 1759.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Unsolicited advertising sent to this domain is expressly prohibited under
47 USC S227 and State Law. Violators are subject to prosecution.

Archived from groups: alt.comp.periphs.mainboard.asus (More info?)

On Sun, 27 Mar 2005 12:07:53 +0100, in <alt.comp.periphs.mainboard.asus>, Ben
Pope <benpope81@_REMOVE_gmail.com> wrote:
>
> Jay T. Blocksom wrote:
[snip]

> > First, these so-called "software firewalls" are ALL inherently flawed, by
> > simple virtue of the fact that they are running on the same system they
> > attempt to protect -- that is a functional oxymoron. A truism:
> >
> > You can't block a port with software that runs on the same machine
> > where the attacks are aimed. That's like trying to stop bullets by
> > shoving Kevlar up your backside. By the time the bullet hits the
> > Kevlar, the damage has been done.
> > -- Morely 'Spam is theft' Dotes in NANAE, 13-AUG-2003
>
> I disagree. A software firewall is useful to block ports and hide
> servers (services) on your machine from the outside world.
[snip]

No, it can't, for precisely the reasons already cited.

If your system is poorly configured and/or you do not exercise good control
over what software is permitted to be installed/run/etc., then it *might* be
useful as sort of a "nagging nanny" to ride herd on the (clearly incompetent)
user. But if the user is dumb enough to need that, why presume that he/she is
smart enough to benefit from it? And besides, this is also the epitome of the
"treat the symptom" approach, as opposed to excising the disease.

> If these
> servers have a security flaw, then they could be exploited from outside,
> and the software firewall will be able to protect you.
[snip]

Wrong. For any "firewall" to be effective, it MUST stand *between* the threat
and the system being protected. So-called "software firewalls"
_by_definition_ expose at least part (usually, a large part) of the
"protected" system to the world.

> It's also good
> for blocking access to the internet from rogue software on your machine.
>
[snip]

See above cf. "nagging nanny".

> Of course, they can't defend your machine from a DoS style attack, but
> then a hardware firewall isn't going to help much more for the home user.
>
[snip]

You haven't seen my firewall's syslog output, have you?

--

Jay T. Blocksom
--------------------------------
Appropriate Technology, Inc.
usenet02[at]appropriate-tech.net

"They that can give up essential liberty to obtain a little temporary
safety deserve neither liberty nor safety."
-- Benjamin Franklin, Historical Review of Pennsylvania, 1759.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Unsolicited advertising sent to this domain is expressly prohibited under
47 USC S227 and State Law. Violators are subject to prosecution.

Archived from groups: alt.comp.periphs.mainboard.asus (More info?)

On Tue, 29 Mar 2005 22:59:27 +0100, in <alt.comp.periphs.mainboard.asus>, Ben
Pope <benpope81@_REMOVE_gmail.com> wrote:
>
> Jay T. Blocksom wrote:
[snip]
> >
> > If your system is poorly configured and/or you do not exercise good
> > control over what software is permitted to be installed/run/etc., then it
> > *might* be useful as sort of a "nagging nanny" to ride herd on the
> > (clearly incompetent) user. But if the user is dumb enough to need that,
> > why presume that he/she is smart enough to benefit from it? And besides,
> > this is also the epitome of the "treat the symptom" approach, as opposed
> > to excising the disease.
>
> You misunderstand what I wrote. To rephrase:
>
> A software firewall can prevent the outside world from seeing the
> services running on your machine.
>
[snip]

Not in the scenario you later described. Read on...

> > > If these
> > > servers have a security flaw, then they could be exploited from
> > > outside, and the software firewall will be able to protect you.
> > [snip]
> >
> > Wrong. For any "firewall" to be effective, it MUST stand *between* the
> > threat and the system being protected. So-called "software firewalls"
> > _by_definition_ expose at least part (usually, a large part) of the
> > "protected" system to the world.
>
> Such as?
[snip]

The so-called "software firewall" program itself, for starters -- and
therefore, all of the user space available to that program (which, in the case
of many if not most WinBoxen, is the whole machine).

So, in addition to the vulnerabilities inherent in that "software firewall"
(cf.: <http://cert.uni-stuttgart.de/archive/bugtraq/2003/08/msg00056.html>,
<http://groups.google.co.uk/groups?selm=8d76ec03.0312071745.29f02d01@posting.google.com>,
<http://groups.google.co.uk/groups?selm=xp8Ab.31103%249O5.22721@fed1read06>,
<http://groups.google.co.uk/groups?selm=Jumsb.3342%24Tc2.25745@newsfep4-glfd.server.ntli.net>,
<http://groups.google.co.uk/groups?selm=630e418f.0312061738.716afa6d@posting.google.com>,
<http://www.kb.cert.org/vuls/id/634414>,
<http://www.kb.cert.org/vuls/id/682110>,
<http://www.kb.cert.org/vuls/id/637318>,
<http://samspade.org/d/persfire.html>, <http://samspade.org/d/firewalls.html>,
etc.), you basically expose ALL of Windows, with its chronic legion of slowly-
or never-patched vulnerabilities (cf.
<http://secunia.com/advisories/14512/print/>,
<http://secunia.com/advisories/12670/print/>,
<http://secunia.com/advisories/11482/print/>,
<http://www.techweb.com/article/printableArticle.jhtml;jsessionid=Q2AODUYJJKUOIQSNDBGCKH0CJUMEKJVN?articleID=59200229&site_section=700028>,
<http://www.internetweek.com/shared/printableArticle.jhtml?articleID=19205530>,
<http://secunia.com/advisories/10589/print/>,
<http://www.elixir.com.au/news/default.cfm?nav_id=2&id=40>, etc.) DIRECTLY to
the 'net.

Hence, this is pretty much the definition of "defeating the purpose".

Or, if it will make it any clearer to you, look at it from the other way
around: With any so-called "software firewall", you are in effect running
your general-purpose OS (typically Windows -- eeek!) *and* all of your
application programs *on* your firewall machine, which is directly
antithetical to proper security procedures: Rule #1 is to NEVER enable any
unnecessary processes or services, *especially* on a device which faces the
outside world.

> Obviously there eis some contact with the outside world... but
> you HAVE to do that in order to effectively do many of the things a user
> wants to do.
[snip]

Not true, at least not as stated. Your web-server scenario below is an
atypical exception; but even that need not engender the degree of exposure you
presume.

> Unless you are saying that a forwarded port from a
> hardware router offers more protection somehow...
>
[snip]

Of course -- at least presuming that "hardware router" is properly configured.
I'm not saying that it necessarily provides complete isolation (again, see
your "web server" scenario below); but it's definitely both another step
further removed from "the wild" *and* offers an opportunity to be selective
(think SPI) about what gets forwarded back and forth.

> I want to run a webserver, 2 in fact. So I need ports 80 and 82 to be
> accessable to the outside world.
[snip]

Which is not the case for the typical user, who does NOT need to run public
servers. But even assuming that scenario, those public servers should be on a
separate interface (sometimes called a "DMZ" or "Orange interface" ), where
they are both isolated from your "protected" network (sometimes called the
"Green interface" ), and where ONLY the traffic necessary for that service is
permitted through.

> If I sit behind a software firewall,
[snip]

But that's just it: You're NOT "behind" that so-called firewall; you're on
it, in it, in front of it, and all around it -- all at the same time.

> that only allows packets through on those two ports, then what is the
> difference between that and forwarding those two ports from a hardware
> router?
[snip]

You're assuming a perfect world.

The problem is not (so much) what happens when everything works as intended.
The larger problem is what happens when UNintended things happen. And in the
"software firewall" model, virtually any breach is by definition a
catastrophic disaster, simply because so much "other stuff" instantly becomes
available to the attacker.

> My machine is exposed to the world, on those 2 ports...
[snip]

Your machine is exposed to the world, period. The limitation to "on those 2
ports" is only valid in a very limited context.

> any
> software vulnarabilty in my firewall (be it hardware or software
> firewall) could pose a threat. As could any vulnerabilty in Apache or
> Jetty.
>
[snip]

That is correct. There is no such thing as a perfectly secure computer
system.

But the bigger problem is that, in the "software firewall" model, any
vulnerability in ANY software running on that box can (and will) *also* pose a
threat to the integrity of the firewall itself. In short, the whole thing is
a house of cards.

--

Jay T. Blocksom
--------------------------------
Appropriate Technology, Inc.
usenet02[at]appropriate-tech.net

"They that can give up essential liberty to obtain a little temporary
safety deserve neither liberty nor safety."
-- Benjamin Franklin, Historical Review of Pennsylvania, 1759.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Unsolicited advertising sent to this domain is expressly prohibited under
47 USC S227 and State Law. Violators are subject to prosecution.