Often, your anti-virus suite offers the client firewalls as an inexpensive upgrade. You may already have the tool and it isn’t turned on. A free firewall, especially good for your computers at home, is described here: https://fosterinstitute.com/blog/powerful-windows-firewall/

You might find it fascinating how, when I’m performing audits, I discover that many organizations have the technology for client-side firewalls and the firewalls are turned off. Maybe your IT professional(s) are just too busy to enable and configure the firewall? If so, that is a priority management problem.

Please post your comments on this blog.

The post Stop Attackers Who Bypass Your Firewall: Firewall or Failwall? appeared first on Foster Institute.

Your IT professionals have a great deal of control over what is, and is not, allowed into your computers. Furthermore, there is a great deal of control over what information is allowed out of a machine. These advanced settings can make the difference between your network being infected or not.

In case you wonder, your IT professionals can keep those users from modifying the firewall settings on their own. And, because of robust support for something IT professionals call GPOs, your IT professionals can configure all or even a subset of the computers in your organization rapidly and with just a moment’s notice.

As an executive, unless you already have a robust firewall in place, the “already included with Windows 7” firewall is worth serious consideration.

Please post your comments on this blog.

The post A powerful Windows built-in firewall appeared first on Foster Institute.

Sometimes it is even better to have a buffer zone in-between your local network and the DMZ. In other words, for traffic to get into your network, the traffic will have to get past at least three firewalls.

Since this blog post is directed towards an executive level audience, I’ll invite IT professionals to contact me for more details. And, for any of you who are interested, click here to download a diagram that provides both a clear visual and also the details you will find helpful.

Please post your comments on this blog.

The post Build a better firewall? appeared first on Foster Institute.

Firewalls are still important—be sure to keep them!

Most of you know that https:// sites use encryption to protect your information from snoopers during transmission.

What will happen when one or more of your users receive an “urgent” e-mail that does its best to compel them to click on an https:// link inside the e-mail? Maybe most of your users would recognize the danger; however it only takes one user to click.

When the user clicks on the link, malicious code could be installed on the user’s machine and, consequently, possibly reach your servers and entire network.

Normal perimeter defenses, such as basic firewalls, cannot read the encrypted traffic to watch for that malicious code.

You could configure a firewall to disallow all https:// encrypted traffic; however, no one in your organization could easily access https:// web sites, such as banking sites.

Some people would argue that the best firewalls these days are firewalls that can examine even encrypted data—sometimes known as proxy or application firewalls or Layer 7 (no, that is not a brand name) firewalls.

Keep your firewalls, but don’t count on them too much.

Please post your comments on this blog.

The post Firewalls offer less protection than you think appeared first on Foster Institute.