Re: [fw-wiz] Managed Firewall Service - Opinions

• Previous message: Sloane, David: "RE: [fw-wiz] PIX Licensed Connections Limit"
• Maybe in reply to: Fiamingo, Frank: "[fw-wiz] Managed Firewall Service - Opinions"
• Next in thread: R. DuFresne: "Re: [fw-wiz] Managed Firewall Service - Opinions"
• Reply: R. DuFresne: "Re: [fw-wiz] Managed Firewall Service - Opinions"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

From: Mike Hoskins <mike@adept.org>
To: firewall-wizards@honor.icsalabs.com
Date: Fri, 18 Apr 2003 11:36:15 -0700 (PDT)

From: "R. DuFresne" <dufresne@sysinfo.com>
To: Duncan Sharp <drsharp@pacbell.net>
Subject: Re: [fw-wiz] Managed Firewall Service - Opinions
> Most MSSP's will put into place the rules that your site asks for.
> This seems to mitigate the issue of whom is at fault for a breach based
> upon configuration. Now they <the MSSP> are 'supposed' to be the
> professionals, but, how many will actually caution the client when they
> want to make the rulebae turn their firewall into a router, or simply
> impliment a rule or two that are not considered 'safe' or secure?

That raises an interesting question. As 'professionals', one would assume
some code of professional ethics. I know, for example, that as a CISSP
there are certain guidelines you are supposed to follow. Perhaps the good
MSSP's (likely the ones that hire the good 'professionals') are the ones
that do caution the client. Afterall, if an MSSP is simply going to do
what the customer says with no questions asked or any attempt to
understand the client's requirements and implement the best possible
solution... Then why pay an MSSP? Sure they'll manage the equipment and
sift through logs for you, but the 'value-add' is greatly reduced IMCO.

-mrh

--
From: "Spam Catcher" <spam-catcher@adept.org>
To: spam-catcher@adept.org
Don't send email to the address listed here or you will be added
to a blacklist!  It is a TRAP for address harvesters.
_______________________________________________
firewall-wizards mailing list
firewall-wizards@honor.icsalabs.com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

• Previous message: Sloane, David: "RE: [fw-wiz] PIX Licensed Connections Limit"
• Maybe in reply to: Fiamingo, Frank: "[fw-wiz] Managed Firewall Service - Opinions"
• Next in thread: R. DuFresne: "Re: [fw-wiz] Managed Firewall Service - Opinions"
• Reply: R. DuFresne: "Re: [fw-wiz] Managed Firewall Service - Opinions"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: [fw-wiz] Managed Firewall Service - Opinions ... >> professionals, but, how many will actually caution the client when they ... > that do caution the client. ... certifying authority. ... (Firewall-Wizards) Re: ***Urgent Requirements for Software Professionals in INDIA*** ... Our client list includes fortune 500 companies. ... And yet you don't have your own email domain. ... PEOPLESOFT Professionals. ... Server or Open-Source Databases. ... (comp.lang.java.programmer) Re: ***Urgent Requirements for Software Professionals in INDIA*** ... We are rated as "One of the Top 500 Consulting Company" all over US. ... Our client list includes fortune 500 companies. ... We are looking for several software professionals, ... Client Server - Oracle PL/SQL, ... (comp.lang.java.programmer) ***Urgent Requirements for Software Professionals in INDIA*** ... We are a well established US based Software Consulting company.. ... Our client list includes fortune 500 companies. ... We are looking for several software professionals, ... Client Server - Oracle PL/SQL, ... (comp.lang.java.programmer) Re: ***Urgent Requirements for Software Professionals in INDIA*** ... Our client list includes fortune 500 companies. ... PEOPLESOFT Professionals. ... Client Server - Oracle PL/SQL, ... Server or Open-Source Databases. ... (comp.lang.java.programmer)