From: "Paul Ranson" 

I think you're living in a dream world. I own your machine. I can turn your
firewall off or reconfigure it, just like you can. I can disable a warning
message because I own your machine. I can do anything because I own your
machine. This is just another example of a wannabe trolling a mailing list.

More to the point anything bad I want to do with your machine and the
network I can do with ports you already have open, so why do I care about
the firewall and making myself obvious by generating traffic on unusual
ports?

Paul

"Geo"  wrote in message
news:4327932a$1{at}w3.nls.net...
> "Paul Ranson"  wrote in message
> news:4327067b{at}w3.nls.net...
>
>> FWIW is there any firewall that the administrator or root cannot turn
>> off?
>> Would it be sensible software design to disallow the machine's owner from
>> configuring it?
>
> It would make sense to assume that software trying to get out would be
> able
> to add a simple text registry entry and perhaps they should consider
> encrypting the data in those entries  so that only the firewall can
> write/read it?
>
> Or oh here's a unique idea, when the firewall detects a change ASK THE
> USER
> if it's ok.
>
> I mean heck this is really piss poor, so I install a new program and with
> a
> simple registry edit it allows itself to go out thru my firewall and I
> don't
> even get a friggin warning? Why even bother blocking outbound?
>
> Geo.
>
>

--- BBBS/NT v4.01 Flag-5