Luketan/firewall

There are not many free vista ready personal firewalls besides Zonealarm, Pctools firewall and Comodo v3 (beta). Webroot (makers of Spysweeper) now add a fourth with their webroot desktop.

It is a rebrand of Private firewall . Because private firewall has the HIPS DSA (dynamic security agent) built in it is pretty strong on leak tests.

Only Jetico firewall v1 (now abandoned v2 is payware), Online Armor free (to be released soon) and of course Comodo firewall does better in leak tests.

It's unclear how long this free offer will last.

It is ranked "very good" against leak tests.

The firewall is pretty standard. You can set different settings for interact with the internet, and for the intranet/network. There are also 3 standard profiles, for home use (including home networks), office (when network is protected by a company gateway firewall) and remote (when connecting to to a company network with no firewall in place or if you are connecting to a local network where you do not know what security is in place).






There are 2 standard levels of security , high/low but you can also customize what rules are turned on, by checking the boxes (see next screenshot).







By default, there are rules for system services, internet explorer, windows explorer, telent client, ftp client, outlook express, LSA, generic host process for win32, service controller app etc. But you can always create your own. But this is accessible only via the '''applications''' section (see next screenshot).






As shown above, you can set each application to allow all, block all, or filter (which imposes the usual rules for the app). Each application can have different network connections rules, which you can change by selecting "customize rules"







The above for example shows the rules that are imposed on internet explorer. The columns "H" and "L" on the extreme right, control whether these rules will be turned on or off when the security setting is set "high" or "low" (see first screenshot).







The above shows the standard options when creating a new network rule for internet explorer.





The above shows a standard prompt warning you of an application trying to connect outwards. Clicking on details/options will give you the next screenshot (you can customize it so it always shows all details as below).





An interesting function that this firewall has is that it attempts to monitor attempts to gain network access through other applications. For example, the next screenshot shows a prompt when this occurs.







Instead of gaining access directly to the net, wallbreaker tries to go through internet explorer and this is reported.

Looks like there is a new version of this interesting freeware firewall. It has some fairly interesting features that are not usually found for firewalsl for personal users..

It is geared for multiple user and network setups.




Including privacy features and adblocking...






However it's not good at leak tests, so if that is a concern , this may not be for you

From the page: "Windows Personal Firewall analysis"

Free powerful sandboxing software. Protect your browser from leaking malware

Now full version is freeware (formerly free version lacked some features) DriveSentry differs from other HIPS like System Safety Monitor in that it focuses on file and folder level protection. You can choose to monitor changes (read,write e) to certain file/folders and to approve or deny them.You can give full rights to trusted programs or give more limited rights

Features (from website)

Prevent malicious programs attacking data in your folders.

DriveSentry can protect data from malicious attack in selected folders (including sub-folders) on your drives. DriveSentry will automatiically recommend trusted programs to help reduce user interferance from warning pop-ups. DriveSentry creates a virtual firewall that only allows trusted applications write access to your data.


DriveSentry can monitor any file type (e.g documents) from being modified on all your drives regardless of their location.

DriveSentry can automatically associate trusted programs to their file types to reduce warning pop-ups. Any un-trusted program attempting to write to your protect file-type will result in a warning pop-up from DriveSentry to allow or deny access.

Protect your removeable storage devices.

DriveSentry can safeguard data on removeable media such as USB keys, media players and memory cards. Un-trusted programs are challenged if they attempt to write to your drives which safeguards your data from malicious attacks.

Protect your system settings.

DriveSentry can protect your system settings from modification by un-trusted programs. Common system settings are protected by only allowing trusted programs to update them.


Permit only trusted programs to write to your data.

DriveSentry automatically determines trusted programs that can access related file types e.g Microsoft Word® writing to documents (docs). DriveSentry allows you to get detailed advice on each program by connecting to the Advisor server. DriveSentry Advisor provides information and feedback on thousands of popular programs.
Features in DriveSentry (Pro) Version:


Control how programs write to your drives.

DriveSentry (Pro) allows you to control how applications write to your drives. Determine write access by filename, filetype, directory and drive. DriveSentry allows you to restrict applications writing out certain filetypes but allow others access. This allows you to do things such as block email clients writing out certain file types or blocking media content being saved to a drive. DriveSentry also allows you to control access to removeable media by allowing or blocking individual programs.


Monitor any file, directory, file-type or registry key.

DriveSentry allows you to further safeguard your data by monitoring any file, filetype, directory or registry key for modifications. Automatically allow, deny or be prompted of any activity. This allows you to totally customize the control of your PC. DriveSentry can be configured to ignore trusted applications and focus on possible malicious programs.

Examine what writes to your drives.

DriveSentry displays in real-time a log and chart of each application writing to your drives and registry. The real-time log and chart shows all allowed and denied writes in real-time and can be configured to update in a set time