Re: [fw-wiz] X server in a Firewall
- From: "Paul D. Robertson" <paul@xxxxxxxxxxxx>
- Date: Tue, 24 Jan 2006 22:17:51 -0500 (EST)
On Tue, 24 Jan 2006, Brian Loe wrote:
> Can you elaborate on what you're saying here?
Sure, in-band management provides an attacker with a vulnerability surface
that's difficult to stop and gives the defender tunneling issues that are
difficult to defend against. Look at the phone system in the 70's-
in-band signaling made for widespread phreaker abuse.
> And what's the proxy running on the firewall doing?
Hopefully content analysis, protocol enforcement and transport layer
re-creation.
Paul
-----------------------------------------------------------------------------
Paul D. Robertson "My statements in this message are personal opinions
paul@xxxxxxxxxxxx which may have no basis whatsoever in fact."
http://fora.compuwar.net Infosec discussion boards
_______________________________________________
firewall-wizards mailing list
firewall-wizards@xxxxxxxxxxxxxxxxxx
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
- References:
- Re: [fw-wiz] X server in a Firewall
- From: Brian Loe
- Re: [fw-wiz] X server in a Firewall
- Prev by Date: Re: [fw-wiz] Recommendations on modeler/change manger for PIX & FWSM
- Next by Date: Re: [fw-wiz] RE: In defense of non standard ports
- Previous by thread: Re: [fw-wiz] X server in a Firewall
- Next by thread: Re: [fw-wiz] X server in a Firewall
- Index(es):
