|
|
Dan Albrich
Manager, Microcomputer Services
dalbrich@uoregon.edu
The problem with demo software in general is that it expires in 30 or 90 days and then asks you to pay to continue to use it. Because NIS is a firewall software product, it disables the built-in Windows firewall by default. In addition, it also disables the Security Center messages for Windows XP Service Pack 2 users. If people later become annoyed with NIS and disable it because it's blocking a network application they wish to use, or if they simply refuse to pay when the demo period expires, they will end up completely deprived of all firewall and security center protection.
Firewall protection is too important for the health of your PC to be ignored. Firewalls block all incoming unsolicited connections, and without a firewall, your PC will automatically run services that wait for connection from arbitrary Internet hosts. (Obviously, this is a bad idea when the current generation of computer viruses and worms can infect your PC the very instant you connect to the Internet!) And you needn't worry that enabling a firewall will bar you from accessing such favorite services as web and email: you'll still able to access whatever services you choose.
Microsoft spent a billion dollars developing Windows XP Service Pack 2 and its updated firewall product, and in our estimation it does a great job for the average user. Service Pack 2 blocks unsolicited incoming connections by default. If you try to use software that requires a firewall exception, XP SP2 prompts you for permission to make the change. This makes it easy for you to use the network applications you desire, even when exceptions to the firewall must be made to accommodate them. (Note that any firewall exception presents a risk. However, it's always better to allow a few exceptions than to disable a firewall entirely.)
A practical example of this is the Cisco IP/TV client. When the user runs it the first time, Windows asks the user if it is OK to make an exception to the firewall configuration to allow this program to run. If the user selects "allow," then the exception is made for them. It's important this process be uncomplicated. Prior to Service Pack 2 for Windows XP, most users would completely disable firewall protection any time it "got in their way."
NIS has some advanced settings, like the ability to block both inbound and outbound connections. If you're very computer savvy and want to create custom firewall rules, then it may be the right software for you. Other users who benefit from third-party firewall software are those running a Windows version prior to XP which by default lacks firewall protection. If you want to get a nice free- for-personal-use firewall package for an older version of Windows, see Zone Alarm at http://zonelabs.com/
If you have Windows XP, disable NIS, then uninstall it. To disable NIS:
After disabling NIS, you can use the Add/Remove Programs control panel to finish the removal process. Then, open the Firewall control panel (Start -> Control Panel ->Security Center -> Windows Firewall) and make sure the "ON (Recommended)" setting is selected.
If you do not have a Security Center control panel, this means you lack Service Pack 2, which is an important update for XP. This update can be had free of charge. Please see http://micro.uoregon.edu/security/windows/ for details.
A note about Internet Explorer. Because Microsoft Internet Explorer (IE) has become a well-known vector for many viruses and worms, NIS includes a popup blocker for Internet Explorer. Service Pack 2 also includes an updated IE with built-in popup blocking. Even if you are running NIS or Service Pack 2, however, it's still a good idea to consider using an alternate browser, such as Firefox, for general-purpose browsing. You'll find Firefox included on the 2004 Duckware CD, which is free to UO faculty, staff, and currently enrolled students. If you don't already have a copy, please go to the Microcomputer Services Help Desk in 151 McKenzie Hall.