I added a simple "custom" rule to ZAP's Internet Zone, allowing outgoing TCP on the ports neccesary for HTTP, FTP, POP, etc.

ZAP has thus far worked fine, recent Windows Updates notwithstanding.

In light of this (seemingly) simple solution, I find ZA's recommended workarounds a bit surprising...


>> Option 1: Move Internet Zone slider to Medium

That somewhat defeats the purpose of having ZA in the first place, doesn't it?

Doesn't it make more sense to keep ZA at "High" and just add the simple custom rule?


>> Option 2: Uninstall the hotfix

From what I understand, the Windows Update addresses some fairly serious security issues, thus it would seem that uninstalling it as a bad idea.

Again, doesn't it make more sense to keep Windows as patched up as possible, and just add the simple custom rule?


>> 3 (advanced technical skills required): Add your DNS servers to trusted zone


Are there advantages/disadvantages (in either the long term or the short term,) to doing it this way, as opposed to way that I did it?

Thanks for all insights!!

Alan

Operating System:Windows XP Pro
Software Version:7.0
Product Name:ZoneAlarm Pro