Tiny Personal Firewall is also an integral part in Tiny Software’s new Centrally Managed Desktop Security (CMDS) system awarded a contract by the US Air Force to encompass about 500,000 desktop computers. The following descriptions demonstrate the simplicity of use, yet powerful features of Tiny Personal Firewall.

Download security software: Tiny Personal Firewall 2005 6.5.70

Intrusion Detection

Personal Firewall includes an easy-to-use wizard that detects unknown activity and prompts the user for setup information. After the setup is complete, a new rule is applied to the filter rules list. This option may be disabled.

Application Filter

To protect from Trojan horse and other unauthorized applications, Personal Firewall includes an application filter. The wizard will detect when an application attempts to bind to a port for communication and create a filter rule based on the users input. Users may permit applications manually from the filter rules. Tiny Personal Firewall also provides a database of common applications that use known ports.

MD5 Signature Support

To ensure that Trojan horse applications cannot pose as a trusted application, Tiny Personal Firewall offers the option to check for an MD5 digital signature for trusted applications.

Syslog

Log information can be sent to a central syslog server for reporting purposes. This too will be an integral component of Tiny Software's new centrally managed desktop security system used by the US Air Force.

Trusted Addresses

Users may create filtering rules that apply to user-defined, trusted address groups. Multiple address groups, based on a single IP, a subnet, or range may be created in the trustful addresses.

Remote/Secure Administration

In addition to login authentication, Tiny Personal Firewall allows for full remote configuration of security policies. This will be an important element for the centrally managed desktop security system as it will allow remote configuration of each user's security policies through a centrally managed console server.

Time Intervals

Filter rules can be arranged so that they are only valid during specific hours.

Tiny Personal Firewall includes many other firewall features and is an ideal security solution for home/business stand-alone and network computers.

The Windows Security engine protects the computer resources against unwanted and suspicious accesses and changes. The Windows Security engine allows you to set your own list of trusted application and their access rights to the system. The Windows Security engine isolates the applications minimizing their impact on system resources.

The most attractive features include:

• code injection prevention prevents malicious processes to misuse trusted applications
• process spawning control prevents malicious processes from starting other applications
• complete file protection preventing unwanted changes to your file system
• complete registry protection preventing unwanted changes to your registry;
• system service installation control preventing trojans installing themselves as a system service
• device protection preventing misusing of USB devices, COM ports, modems, and other devices
• complete Dll loading control allows to specify which dlls may be loaded by which applications - no more undetectable trojans
• ... and many more

The system security of Tiny Firewall 6.0 is provided by the set of several guards. Each guard may be selectively enabled or disabled for particular application in order to achieve the compatibility where you might see potential problems (remember - not all application you install are coded correctly):

File Access Guard
By accessing the file system, a hostile process could gain access to all your data and files. Windows system files, contacts and all personal and work files should be protected against unknown applications. Why should some new executable downloaded from the internet have the opportunity to modify pictures from your digital camera or your documents?
To make the things easier for those managing computers for others Tiny Firewall 6.0 incorporates the support for special vaiables special variables like %RemovableDrives%, %CdRoms% or %SystemRoot% in addition to absolute paths such as "C:\MyWorkDocs" and also wildcards "C:\*.doc".

Registry Guard
The windows operating system saves the system and application configurations within the registry database. If a hostile process changes settings within the registry database, it might leave applications or your entire system unusable or create a security hole at least. By changing the registry database a hostile application can also gain unwanted access to the resources on your computer. The default TF6 configuration prevents applications other then trusted to modify the most dangerous areas in your registry such as Run keys (misused by trojans to autostart themselves at the system start).

Process Spawning Guard
With Process Spawning Guard you could define whether particular process could be started by some other process or by the user only. You could also define whether the new application would run in the security context of the parent application or its own. This can prevent misuse of trusted applications by a hostile code. Typical example of how to misuse known application is to start "cmd.exe del *.*" without any control of the user. Without TF6 you can say good bye to your files!

Dll Loading Guard
Some applications are able to dynamically execute external code by loading a supplied dll and executing a predefined exported method in it. This is a case of rundll32.exe process as well as of all applications capable of containing plugins or ActiveX (such as Internet Explorer). Of course, knowing that behavior, malicious application can force its own dll to be executed by such trusted application thus hiding the malicious activity. Another use of Dll Loading Guard is to prevent loading of custom dlls by a particular application if they are changed.

OLE/COM Guard
Similar to Dll Loading Guard, OLE/COM Guard can prevent to load an unknown code (usually a COM dll) into an otherwise trusted application. However, in this case, rather then identifying the unknown code by a dll checksum or name, CLSID is used instead. Current version of the TF Administration Center makes the CLSID selection much easier by displaying all present COM objects on the computer in human readable form (names). Another use of OLE/COM guard is to avoid controlling one application from another through known COM interface of the target application.

Services Control Guard
One of the most dangerous events that might happen on your computer is to let a malicious application install itself as a service. This will lead into that application acting as a part of the operating system itself, thus completely bypassing the operating system security. TF6's Services Control Guard prevents just that from happening. 

Device Access Guard
In teh very near future we shall see trojans or applications sending the information to the internet using raw IP access thus completely bypassing traditional firewalls. We could see trojans now attempting to format the harddrives. Device access control prevents these and other events from happening. Also - if an Administrator wants to prevent other users to connect their flash or portable hard disks to a computer or using modems, infrared or computer serial/parallel ports, here is the place to do so.

System Privileges
A malicious application can hide communication to the Internet and other malicious activities by injecting a code into a trusted process. Then the activity thus seems to be done by the target trusted application and one would only wonder why suddenly would certain application communicate. Or a hostile process might attempt to acquire debug system privilege thus gaining unlimited control over the target application. By terminating applications such as firewalls, anti-virus etc., a hostile application can thus get rid of some obstacles preventing it to do the malicious actions. Not with Tiny Firewall 6.0 though...

Check for unknown processes
All processes starting on the computer are inspected by TF's Windows Security engine and compared with the records of known applications in the Application Repository. If the process does not have the record in the application repository the user may be shown the dialog with the choices to run application once, enroll it permanently into Application Repository or terminate it. Thus user is having complete control over the processes running on his computer.

Integrity Guard
The Integrity Guard settings are available in the Administration Center in the Application Repository. You can prevent loading a known executable as well as dll first identified by their names and paths when their checksum was altered.