Posted here, sent as reply to PM yesterday but we need to keep this in the thread
Hi akramh
Firewalls are a very important part of basic security, you need a firewall as a first defence against intrusion. AntiVirus and AntiSpyware provides no defense from outside attacks at all, they have different functions.
There are over 64,000 ports into your computer and any one of them can provide an attacker access to your machine, the only way to monitor what accesses these ports is a good firewall, it's the first point of entry and therefore the first chance to keep out unwanted visitors.
You misunderstand what a hacker scanning for open ports means, the ping is a request for acknowlegment, not for Denial of Service attack, that's against web sites and business servers not usually home machines but they could do that too if they wanted. Once a hacker receives an acknowledgement (ack) from a port(s) on your machine in the range he's scanning for, he basically has you right where he wants you and you'll never know it. A good firewall will make you invisible to this scan, basically a black hole where the ack request simply disappears with no reply.
Without a good port firewall, any hacker can find you and silently compomise your computer, and then do whatever they want. You may participate in a DOS attack against someone without you ever knowing about it. Those kind of hackers can aquire several thousands of machines and then turn them on all at once to attack a site or server with one simple command. Or they can steal your passwords to your bank site and clean you out before you know what hit you. I really don't have time to go too deeply into what & why a firewall is important, so I hope this is enough.
You need a firewall my friend, but not Windows firewall unless you like configuring advanced rules manually because the default config is rather open. Probably the best and least intrusive is Comodo Firewall Pro (CIS), it's also free. You need to d'load the Comodo Internet Security pack but you can install just the firewall if that's all you need. Run the installer in Comaptibility mode (Vista..no SP) and with Admin rights or the firewall will not function. Right click > Compatibility tab, check the box and select Vista. Ok it then right click again and Run as Admin option. Don't worry it works fine with W7 but just not the installer is fully compatible.
Install it Without Comodo AV (not good enough yet), decline the Ask toolbar and Comodo search options, and if you simply want an Enterprise strength firewall with minmum intrusion, install it as "Firewall Only" (without HIPS). On first run it'll ask to scan your system for known problems, I suggest you allow it unless you just clean installed and KNOW it's clean. Also, decline their offer that pops up on first run and you'll never see that again either.
Comodo has compiled a huge "white list" of known safe apps, so much of what you have will probably be recognized and the rules configured automatically. It also recognizes all known safe Windows services, front end loaders, and hosts so they're all configured right away too. You can join the Threatcast Community also (option in setup) where you can see what others are doing with certain program requests. For the first few days you will get some requests when you open new apps it doesn't recognize, if you know you're allowing a program access, clicl the "remember my answer" box before clicling Allow and you'll never see it again.
Out of the box, Comodo's default ruleset is perfectly fine for 90% of users, only really critcal users need to make advanced rules in Comodo, and that's very simple too. It also recognizes your network interface and configures that, usually without any action needed by you except maybe just saying Yes, configure my network settings.
I sure hope I've gotten you to change your tune on firewalls here, they're really important because millions of people run automatic port scanners 24/7 looking for people just like you...
Also, never run 2 software firewalls at once as they'll conflict, so make sure WinFirewall is disabled. You can however run a hardware and software firewall together (router and firewall) as they compliment each other.
Good luck
Dave
BTW, post your PM question into the thread and I'll post this reply, that way other members can learn from it as well. We like to keep all this open in the threads as PM help is frowned upon.
Thanx
