Re: [fw-wiz] Query on OS hardening

From: m p (sumirati@yahoo.de)
Date: 02/17/03

  • Next message: Bruce Platt: "RE: [fw-wiz] insecurity in internet connection thro cable modems" 
    From: m p <sumirati@yahoo.de>
To: Tim Chettle <tim.chettle@orange.net>, firewall-wizards@honor.icsalabs.com
Date: Mon, 17 Feb 2003 14:41:29 +0100 (CET)

     --- Tim Chettle <tim.chettle@orange.net> schrieb:
    > My question is as to what methods people use to manage and monitor the
    > underlying Unix operating systems on the firewalls. SNMP doesnt seem the
    > best thing to be running on the Firewall itself so how would people suggest
    > that i monitore the OS

    At the last customer I worked for we developed a small program which takes
    connections via SSL. On the firewall was an access list for the managment
    servers to allow connections to that port. Upon connect the IP and a pre-shared
    secret was checked. A simple string was passed to the server. That string was
    checked against a list on a per IP base with allowed/disallowed parameters.
    Then predefined shell scripts with the correct parameter settings were
    executed. STDOUT of ps, df, du, .... was passed back to the client.

    2 weeks at max to write up the code again if you work fulltime on it. Sadly the
    company would not release the code to the public.

    Marc

    __________________________________________________________________

    Gesendet von Yahoo! Mail - http://mail.yahoo.de
    Bis zu 100 MB Speicher bei http://premiummail.yahoo.de
    _______________________________________________
    firewall-wizards mailing list
    firewall-wizards@honor.icsalabs.com
    http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

    Relevant Pages

    • Re: Win XP Pro Fax Doesnt Track Anything
      ... In november 2003 I installed the Norton Firewall 2004 and Norton Antivirus ... Monitor does not appear when you receive a fax call. ... If you see a NIS alert message for a file that is in the Microsoft Fax ...
      (microsoft.public.windowsxp.print_fax)
    • Re: Windows Update 9 July, and ZoneAlarm
      ... blocks all internet access. ... No firewall has ever told me anything. ... Does that mean that you don't monitor what is/isn't connecting to ... If you *do* monitor and control access without using a firewall, ...
      (alt.usage.english)
    • RE: amount of alarms generated by IDS
      ... Obviously to manage, control, and mitigate these types of attacks it is ... "They used to read the 3000ppm water monitor with a magnifying glass." ... amount of alarms generated by IDS ... The comparison is more appropriately made as a firewall with the ability ...
      (Focus-IDS)
    • Re: firewalls and installation stuff....
      ... If so what firewall would you recommend and what aptitude command will fetch ... How do I know that the firewall is on and working? ... Also I assume that if I go into the config box in Gnome then I should be ... monitor refresh information into Xwindows and then have the monitor work as ...
      (Debian-User)
    • Re: VRRP on NOKIA (CheckPoint)
      ... > For the VRRP setup, do I have to take into account eth3c0's??? ... Primary FW Configure the two data networks to monitor each other. ... Once the Primary network is back up, it will preempt (to use a cisco ... hsrp term) the Secondary Firewall and become Master again (as its ...
      (comp.security.firewalls)
    • Quantcast