Hi, so I’m a little confused as to what a firewall can truly prevent and/or detect, specifically between an attack like an intrusion vs a Trojan horse. If a firewall can’t prevent an intrusion and/or Trojan horse, could you please explain why and what firewalls can do in terms of attacks or preventing malware from entering a PC? Any help would be greatly appreciated.
In: Technology
a firewall says “Ok, this program, is allowed to open/receive a network connection to/from this port on this url” or any combination of that information.
So, if there is a strict firewall, the trojan will try to connect to the remote server to open the backdoor (or open a port for it) and the firewall will say “Hey, you cant open that port!”
The problem is, no firewall should block access to port 443 (the port the https uses) on arbitrary URLs otherwise web browsing will not work well. And now aday many non web browsers are actually web browsers, so its really hard to design a firewall filter that counters any trojan while also allowing the user to use the computer
Latest Answers