In PC Magazine's review of Kerio firewall they say that it's "fairly easily disabled by malicious software".
Would somebody comment about that?

http://www.pcmag.com/article2/0,1895,1864604,00.asp

Thanks.

All software firewalls are, some easier than others. I saw a trojan on a security site that disables all including ZA Pro, Sygate Pro, NIS etc... thats if it gets passed your antivirus undetected in the first place.

I wouldn't give that comment by PC Mag too much credence.. As mentioned already, just about all firewalls can be disabled by nasty software if it's determined enough. You have to ask how likely is this to happen I guess. I personally have never worried about it, but then again, I'm not in the habit of having terrible stuff execute on my machine either, so there you go..

I wouldn't give that comment by PC Mag too much credence.. As mentioned already, just about all firewalls can be disabled by nasty software if it's determined enough. You have to ask how likely is this to happen I guess. I personally have never worried about it, but then again, I'm not in the habit of having terrible stuff execute on my machine either, so there you go..

IMHO, this is something to be concerned about. I checked out DiamondCS's APT program and it easily shut down kerio. I've tried it on a friends computer who had Zone Alarm installed and it withstood it, and Outpost survived most of them. Kerio didn't survive any of the tests. Clearly, compared to other firewalls this is a valid point by PC Mag in my opinion.

That said, I use AppDefend right now and with it running Kerio was unaffected by any of the tests. DiamondCD also offers a free version of Process Guard that protects processes from being terminated. Perhaps the program IS overkill, and I'm sure they have their weaknesses as well... but with 0-day virii and trojans out there you can't always rely on your AV program and if your firewall is easily shut down what's the point of even running it?

That's why I run HIPS anyway, on the downside... they do get to be annoying with popup messages and constant configuring. But then again, a few weeks back our home network got infected by a worm. Every computer got nailed except for mine. It's not always paranoin.

Hi Freegoo
I tend to agree with you. It is a defect. If Zonealarm can resist these attacks I would expect Kerio be able to do the same (or better) An update to Kerio to fix this problem & the blue screen crash is overdue.
Come on Sunbelt - when will these problems be fixed ?

By running these tests, you have to take into account that you've already downloaded and run these "malicious" programs from your computer. In real life, it depends on your surfing habits but would you download something that you wasn't sure about (and run it). If your downloading illigal software, then your asking for trouble .

get processguard free version yeah after ever so attack it says u've had a million and directs u to the webpage with its popup even if u click yes/no or X to close it..other than that once its set up and locked and that's also locked into processguards own grip..it won't be easily disabled and neither will ur antivirus if u add it to be protected by processguard. It has a demo to test it out. If its in learning mode (IE the Process guard) it will close...but set it up, lock it, let it detect ur items and itta protect it..also can be used to add programs such as antitrojans adaware scanners and the like from being shutdown when scanning by malicious processes..