The first thing most users notice after installing a firewall is the amazing number of intrusion attempts it reports. Open Door Networks’ Who’s There Firewall Advisor 1.0 cuts through the confusing multitude of firewall alerts to reveal important events, improving security by identifying hackers and reporting them to their ISPs.
To use Firewall Advisor, you need to have either Open Door’s DoorStop or Symantec’s Norton Personal Firewall. When you launch Firewall Advisor, it reads, analyzes, and displays the firewall’s log, translating access attempts into plain English and categorizing them as high, medium, or low risk. (You can’t open multiple listing windows, though, so reviewing more than one event at a time is cumbersome.) When you want to report an intrusion attempt, Firewall Advisor performs an Internet “whois” search, displays the source of the attack on a map, and e-mails the ISP in question to help it catch the hackers.
Tattletale: Who’s There Firewall Advisor finds an intruder’s ISP and generates a warning letter.