"Security" appliance testing

From: Stan Hanks (stan@tta.com)
Date: 08/21/01 

Date: Mon, 20 Aug 2001 22:01:19 -0700
From: Stan Hanks <stan@tta.com>
To: pen-test@securityfocus.com
Subject: "Security" appliance testing
Message-ID: <20010820220119.B31960@lurp.tta.com>

All this talk of 802.11 got me to thinking -- I'm seeing a ton of new
appliance type devices that are combo mini-firewall/print server/802.11 AP
coming from the usual players like Netgear, Farallon, SMC, etc.

Anyone have any experience whacking on them? It strikes me as sort of
oxymoronic to have an "open" 802.11 AP on the secure side of a firewall
appliance, but I'm willing to bet that there are a ton of oversights in
the code architecture these things use...

Stan

----------------------------------------------------------------------------
This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities please see:
https://alerts.securityfocus.com/

Relevant Pages

  • Re: Exchange 2003 - Multiple SSL Certs
    ... I agree and the bigger plan is for an appliance to be introduced once ... OWA will thenbe visible and this is not allowed, ... anything for their security. ... open to the Internet on one site than on the other. ...
    (microsoft.public.exchange.design)
  • 2 site exchange over x.400?
    ... The primary site has a security appliance for mail inside the ... problem with the exchange site to site mail flow. ... think using the x.400 connector between the exchange sites would work? ...
    (microsoft.public.exchange2000.connectivity)
  • [NEWS] Sophos Email Security Appliance Cross Site Scripting Vulnerability
    ... Get your security news from a reliable source. ... Sophos Email Security Appliance Cross Site Scripting Vulnerability ...
    (Securiteam)
  • Re: [fw-wiz] Proverbial appliance vs software based firewall
    ... >> applies to any firewall or security product in existance. ... What people don't seem to understand is that "appliance" is ...
    (Firewall-Wizards)
  • RE: Insurance
    ... property--data beign deemed "intangible" for the purposes of insurance. ... for physical security testing there are often 3rd parties ... For more information on SecurityFocus' SIA service which ... This list is provided by the SecurityFocus Security Intelligence Alert ...
    (Pen-Test)