Recently irked that I had to permit java.exe permissions to run rampant through my home firewalls…
(In this case it was so the kids could play Minecraft oven the home LAN…)
At least I could set permissions up for private (as opposed to public) network traffic.
It did awaken some thoughts I’d had before about how we’ve entered a world requiring more security, but even secure solutions (Java being arguably the best and worst example in this case) aren’t keeping up.
Per application firewall rules are simple, generally effective (since even spawned processes should run under the same parent process) and what I would expect to be available to home users…
And, let’s be clear, although I’m picking on Java here, the same could be true of applications running under Ruby, Python, NodeJS or similar… it’s just not as likely there would be a desktop application written in the others that wasn’t mashed into a system executable (typically bundled with a partial, or even full, language runtime).
Ultimately, I just find it remarkably disappointing that I’d need to conduct fully-fledged firewall configuration (i.e. ports, protocols, and who knows what else) to support a game — especially in this era of computing.
I even consulted the internet for a fix, but was sad to see the response here:
(Copy and rename a Java interpreter for each application you want to run, and never upgrade…)
Similar advice from Minecraft players (i.e. let java.exe through or shut off your firewall entirely), though thankfully these usually came with the caveat that shutting off your firewall is most certainly a bad thing to do.
Surely somebody has a better solution than this?