Re: [fw-wiz] Evolution of Firewalls

From: Frederick M Avolio (fred_at_avolio.com)
Date: 03/08/04

  • Next message: Stiennon,Richard: "RE: [fw-wiz] AIM to iChat AV" 
    To: <skpoo@pacific.net.sg>, <firewall-wizards@honor.icsalabs.com>
Date: Sun, 07 Mar 2004 20:48:12 -0500

    At 11:56 PM 3/4/2004 +0800, skpoo@pacific.net.sg wrote:
    >... Our team is currently debating if Stateful Deep Inspection firewall is
    >going be the new technology to replace the Application Proxies firewall
    >which deem to be most secure currently. ...

    At the risk of being obvious -- or worse, being called a dinosaur :-), It
    depends. Do you care more about usability or security? When push comes to
    shove is it more important to never stop a connection at the risk of the
    possibility of something bad slipping through? It really is as simple as
    that. I tell people in one of my classes, you hear about it if you
    misconfigure your firewall to reject a required action, but will rarely
    hear about if if you allow too much through. (I stated it as "You always
    hear about conservative errors but rarely about liberal ones," but that
    could be taken wrong now-a-days.)

    Fred

    _______________________________________________
    firewall-wizards mailing list
    firewall-wizards@honor.icsalabs.com
    http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

  • Next message: Stiennon,Richard: "RE: [fw-wiz] AIM to iChat AV"

    Relevant Pages

    • Re: IP GAPPING - Tricky one
      ... port scan, which came back with zero ports open. ... So I guess its kind of like a stateful firewall ... >> "IP Gap Technology ensures access to the connected ... >> computer system is disabled as it creates a virtual GAP ...
      (microsoft.public.win2000.security)
    • [fw-wiz] GIDS, Intrusion Prevention: A Firewall by Any Other Name
      ... intrusion detection pattern matching rules to the content they see ... To me, this is a firewall. ... I am *not* criticizing the technology. ... proprietary "intrusion prevention" technologies (i.e. I've forgotten the ...
      (Firewall-Wizards)
    • [fw-wiz] Fw: [Full-Disclosure] DCOM Exploit MS03-026 attack vectors
      ... >> their Ericsson phones, and surfing from the airport and WIFI cafes of ... > This is just the technology we already have on hand. ...
      (Firewall-Wizards)
    • Re: what should I do when....
      ... My initial reaction to this is that you should block all IP addresses belonging to that company *if* you do not need to communicate with them via the internet. ... My secondary reaction is to tell you not to advertise what sort of technology you are using in public forum. ... firewall logs, from a specific ip based in Canada, the log is showing a ... Although the good thing is that the firewall is detecting them therefore stopping them, I'm getting worried of hacker activity, I've already done ip lookup, and dns whois query both of those point to ip and host in Canada it seems to be a company as I got their public website and also private network.....could anyone advice me what's the proper course of actions in this case?.... ...
      (Security-Basics)
    • Re: Firewall vs. IPS - Differences now (ISS, Intrushield 2.1?)
      ... I think what you meant is the SOCKS firewall. ... somebody enlighten us with this technology in a layman ... FREE Network Security Webinar - How to implement IPSec security into VPN appliances ... Join the security experts from SafeNet on August 26 at 1:00 PM, and learn how to successfully integrate IPSec security into VPN processors and appliances to provide powerful yet cost-effective VPN solutions for your customers. ...
      (Focus-IDS)