You should have no worries about attacks from outside with Kaspersky's firewall on the job. In testing, it blocked all port scan tests and other Web-based tests I threw at it. It was also unusually effective at blocking attempts to exploit vulnerabilities in the browser and OS. I hit it with two dozen attacks using the Core Impact penetration tool; none compromised the test system's security. Better still, Kaspersky clearly reported that it blocked specific exploits. I like that—if a website attacks my system, I want to know about it even if the attack fails.
The bad guys won't crack your protection by taking down the firewall, either. I tried to disable it by changing Registry settings, but it wouldn't let me. Killing its processes with Task Manager just got "access denied." Sometimes I've succeeded at setting a product's essential service to Disabled and then crashing the system, but Kaspersky wouldn't let me change anything about its services. It's tough! The very best thing about Kaspersky's firewall, however is its application control. The earliest personal firewalls popped up queries whenever a new program attempted to access the Internet or network, making the user decide what to do. Kaspersky completely handles that confusing decision itself, and does so very intelligently.
The application control system assigns programs categories: trusted, low restricted, high restricted, and untrusted. Known good programs and those digitally signed by trusted vendors are trusted—they're free to access the Internet and sensitive system areas. Untrusted programs can't even launch. Restricted programs have limited access; in some cases, Kaspersky may pop up an intelligent query that specifies the program's restricted status and reports what it's trying to do. When these popups appear, they're significant—unlike the deluge of popups from simple-minded firewalls.
Each application control category has specific rules. If the rules cause problems for a particular program, you can change its different category or edit its rules. In particular, the rules control whether a program can access your "digital identity"—user files, browser settings, and other personal data. These items get additional protection, and you're free to expand on definition of digital identity. source pcmag.com
The bad guys won't crack your protection by taking down the firewall, either. I tried to disable it by changing Registry settings, but it wouldn't let me. Killing its processes with Task Manager just got "access denied." Sometimes I've succeeded at setting a product's essential service to Disabled and then crashing the system, but Kaspersky wouldn't let me change anything about its services. It's tough! The very best thing about Kaspersky's firewall, however is its application control. The earliest personal firewalls popped up queries whenever a new program attempted to access the Internet or network, making the user decide what to do. Kaspersky completely handles that confusing decision itself, and does so very intelligently.
The application control system assigns programs categories: trusted, low restricted, high restricted, and untrusted. Known good programs and those digitally signed by trusted vendors are trusted—they're free to access the Internet and sensitive system areas. Untrusted programs can't even launch. Restricted programs have limited access; in some cases, Kaspersky may pop up an intelligent query that specifies the program's restricted status and reports what it's trying to do. When these popups appear, they're significant—unlike the deluge of popups from simple-minded firewalls.
Each application control category has specific rules. If the rules cause problems for a particular program, you can change its different category or edit its rules. In particular, the rules control whether a program can access your "digital identity"—user files, browser settings, and other personal data. These items get additional protection, and you're free to expand on definition of digital identity. source pcmag.com
No comments:
Post a Comment