>>>Thanks Alex. I guess the reason why I entertained the idea of more than one f/ws was tha, as they were free, maybe each wasn't as up-to-the-minute as it could be so that each may complement the other deficiencies.
>>
>>Actually, the up-to-the-minute feature is the reason I'm using abandonware firewall. Any hacker out there will be inventing tricks to fool ZA et al, but what's the appeal to crack something that isn't even supported anymore, that very few people actually use?
>
>Yes but, if it's not up-to-date then how does it combat those naughties that want in your 'puter?
>It's one thing trying to hack past a f/w - another being able to just step over the stile.

It's a bit boring, because it doesn't come with any sort of in-built intelligence. The initial set of rules is just the old rules of thumb, i.e. your typical settings. So it does nag you with questions a lot in the beginning - but then you're in control. Also, whenever you load a new version of something, if you've set it to check versions of dlls as they load, it will ask you whether you'll allow the new version to access the network. It'll also ask a seemingly stupid question when you shellexecute() a browser from your app - "application hijacking detected, allow?", but then I just feel better knowing it won't happen behind my back.

I don't know how would that play with automatic Windows updates - I've turned them off permanently. They're all about security, IE, Outlook, WMP and introducing new bugs. I found it more worth while to worry about security myself and live with bugs I know, and not use any of those three.