From the news.com(cnet) article: The firewall component in Microsoft’s Windows OneCare security bundle has holes, experts have warned.
Comments?
Well, I guess that should have been expected since most of us know how the Windows firewall works. 
Not a big deal, Microsoft defends it pretty well I thought. The argument was put out by McAfee which is going to be bias, and simply deny a lot of Microsoft’s claims.
Exactly… and I am 110% sure we will see those claims even more often in the future… As long as Microsoft lives, there will be someone to attack it no matter what. Worst of all, they will keep attacking them even sometimes when they have no reason at all. I am happy with my configuration, and everybody else is free to use what they want… yet, it never ever crossed my mind to attack some opponent software house, OS or something third. Freedom of choice, as well as variety of choices…
Hi malware fighters,
Here you can read the One Care Fw is also failure for the home user: http://www.agnitum.com/news/securityinsight/issues/june2006
The OneCare Fw failed all "leak tests"but the simplest, and offers no standard intrusion detection prevention;
The OneCare Fw database of approved applications is so small, so the user is urged to change the pre-defined settings over and over, and reboot the system.
The OneCare FW’s rulebase are limited to two rules “approved” and “not approved”, other rule settings are not possible. Same for remote desktop operation, and network settings.
The Anti-Spyware component makes start up of the FW slow, and has another update scheme than other One Care components.
This is not attacking a fw solution because of bias. It is just a lousy FW.
polonus