ZoneLabs Won't Fix Hole In Free Firewall

from the if-it's-free,-you-should-suffer-through dept

ZoneLabs provides the most popular "free" firewall product out there. It seems to be the standard product that people recommend, but now that a security vulnerability has been found, ZoneLabs only response is that people should upgrade to the paid-for version. They won't fix the free version, because it would be too much trouble, and they don't think the security hole is that big (basically begging hackers to exploit the hole). I can understand not adding new features to a free version, but leaving open a known exploit for a security product doesn't seem too smart. It wouldn't make me that comfortable using either version. If I were a competing company like Kerio (which also offers a similar free-for-home-use personal firewall), I'd be out there promoting how my solution was more secure than the market leader's.


Reader Comments (rss)

(Flattened / Threaded)

  1.  
    identicon
    CHIA GARCIA, Jul 2nd, 2003 @ 8:54am

    No Subject Given

    Zone Alarm used to be a freeware product. Then they started messing with lite and full editions. I stopped using their products then. When I upgraded my zone alarm to find that half of the features in the free version were disabled. I was pissed! Why should I bother with a company that pulls this kind of crap???

     

    reply to this | link to this | view in thread ]

  2.  
    identicon
    Aaron Anderson, Jul 2nd, 2003 @ 9:30am

    Is there some evidence that Kerio is not vulnerabl

    Quote from the ExtremeTech article: "... since the vulnerability was tied to Windows, the vulnerability would also affect other firewall manufacturers and not just ZoneAlarm."

    I searched Kerio's website for some mention of the ShellExecute vulnerabilty and they make no reference to it. Similarly a few simple Google searches yeilded no results.

    I'm not sure if this problem warrants everybody picking on only ZoneAlarm just yet.

     

    reply to this | link to this | view in thread ]

  3.  
    identicon
    bob, Jul 2nd, 2003 @ 2:17pm

    Re: Is there some evidence that Kerio is not vulne

    eeerm, if it WASNT just zonealarm and was a windows problem

    1: why would the 'pro' paid for version of zonealarm not have the problem
    2: why would they be telling people to upgrade to the paid for version

     

    reply to this | link to this | view in thread ]

  4.  
    identicon
    CraweN, Jul 2nd, 2003 @ 3:49pm

    No Subject Given

    Read the Article on ExtremeTech. It is a problem in windows as stated previously and of course if it takes to many resources(money) to fix versus how hard it is getting the hack to work, i fell he's right. why fix it! Would be a great advertisement fixing it though.

     

    reply to this | link to this | view in thread ]

  5.  
    identicon
    Vigil, Jul 3rd, 2003 @ 5:47am

    Re: Is there some evidence that Kerio is not vulne

    Whether it is a Zonealarm specific bug is neither here nor there. The fact remains that they are using the threat of this bug to virtually blackmail people. Either pay them money or be vulnerable. Or use someone else's product.

     

    reply to this | link to this | view in thread ]

  6.  
    identicon
    gravy, Jul 3rd, 2003 @ 12:04pm

    Re: Is there some evidence that Kerio is not vulne

    OR......you can go get emule plus and go to www.sharereactor.com and look under the software category for a ed2k link to the full pro version.

    you get what Zone Labs says you should to fix it and you don't have to pay for it. HA!

     

    reply to this | link to this | view in thread ]

  7.  
    identicon
    kenzo, Aug 18th, 2003 @ 8:42pm

    Re: zonealarm freeware features disabled

    I worked there when this decision was made by sales/marketing. It was a conscious marketing ploy to try and trick/force people to have to buy the full version after they thought they were doing an update to the free version...

     

    reply to this | link to this | view in thread ]

  8.  
    identicon
    Ivan Barnes, Feb 4th, 2004 @ 5:26pm

    ZZZoneLabs

    What is free ? Ever tried 3.7 version

     

    reply to this | link to this | view in thread ]

  9.  
    identicon
    gootoo, Jan 20th, 2007 @ 8:16am

    Re: Re: Is there some evidence that Kerio is not v

    is emule pro free? if it is, on on my way mate!!

     

    reply to this | link to this | view in thread ]


Add Your Comment

Have a Techdirt Account? Sign in now. Want one? Register here
Get Techdirt’s Daily Email
Save me a cookie
  • Note: A CRLF will be replaced by a break tag (<br>), all other allowable HTML will remain intact
  • Allowed HTML Tags: <b> <i> <a> <em> <br> <strong> <blockquote> <hr> <tt>
Follow Techdirt
A word from our sponsors...
Essential Reading
Techdirt Reading List
Techdirt Insider Chat
A word from our sponsors...
Recent Stories
A word from our sponsors...

Close

Email This