RE: Firewall configuration statistics
Date: 06/08/03

  • Next message: Maher Odeh: "RE: URL Scan - allowing asp scripts"
    Date: Sat, 7 Jun 2003 19:15:51 -0400

    That makes absolutely no sense. Plus I am not looking for a philosophical
    answer. I was looking statistics for marketing. Does anyone know of a good
    reference site for firewall and other security statistics.


    -----Original Message-----
    From: Justin Pryzby []
    Sent: Friday, June 06, 2003 6:18 PM
    Subject: Re: Firewall configuration statistics


    100% of firewalls are misconfigured. I guarantee that no firewall
    administrator has considered all of the posibilities that are out there.
    Moreover, there are guaranteed bugs in the firewalling software itself.

    No firewalls are misconfigured. Computers do what they are told, and
    the occasion cosmic ray bitflip is insignificant compared to human
    error. FW admins who use broken software or write bad FW policies
    deserve to suffer the consequences.

    Take your pick. As a user, I think all firewalls suck because at best
    they are another layer for things to get f()'d up, and at worst they
    prevent me from doing stuff. As an admin, I know of no more problems in
    my current firewall configuration (-j DENY), but let me check.

    Unless you elaborate on whichever number you quote, it is meaningless.
    Anyone who has ever deal with a firewall will know that. You will,
    however, impress 99% of everone with a cool word like ''firewall''.


    On Sat, Jun 07, 2003 at 12:42:26AM +0000, wrote:
    > I remember once reading that X amount of firewall's are misconfigured.
    > anyone know where I can get this statistic from? We are making some new
    > marketing material and I would like to include this stat in it. A quotable
    > source would be great.
    > Thanks
    > SKP

    Evaluating SSL VPNs' Consider NEOTERIS, chosen as leader by top analysts!
    The Gartner Group just put Neoteris in the top of its Magic Quadrant,
    while InStat has confirmed Neoteris as the leader in marketshare.
    Find out why, and see how you can get plug-n-play secure remote access in
    about an hour, with no client, server changes, or ongoing maintenance.
    Visit us at:

  • Next message: Maher Odeh: "RE: URL Scan - allowing asp scripts"