Re: Firewalls and Security

From: Leythos (void_at_nowhere.com)
Date: 08/14/03

• Next message: kaptain kernel: "Re: Microsoft Worm"
• Previous message: .Saphyr: "Re: anyone heard of /escape vulnerability ?"
• In reply to: Dean Palladino: "Firewalls and Security"
• Next in thread: Dean Palladino: "Re: Firewalls and Security"
• Reply:(deleted message) Dean Palladino: "Re: Firewalls and Security"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Date: Thu, 14 Aug 2003 12:35:47 GMT

In article <MPG.19a4e247330a173898968d@netnews.comcast.net>,
please@askme.net says...
> I read the thread Firewalls about four or five posts deep and had to
> make a general comment: Firewalls refers to a specific technology, and
> therefore cannot be used to identify a router. Network Address
> Translation does provide protection from external sources until it
> itself is hacked into (turning off remote administration would make that
> impossible). But it is NOT a firewall.

I've agreed with this for a long time. One exception, turning off remote
administration - it's off by default in most all routers and would not
make any difference in most cases, it's port forwarding that gets most
people in trouble.

> It is easy in this field to interchange terminology, but when you deal
> with a customer, your terms have to be consistent. A firewall is a
> device that filters incoming IP packets to allow or disallow access --
> inbound or outbound.

You need to change this to "A firewall is a device/application that
filters ALL INBOUND and OUTBOUND packets to either allow or deny them
based on defined rules. By default ALL inbound and OUTBOUND packets are
blocked until rules are created to allow access in one or the other
directions."

Thx,
Mark

-- 
--
spamfree999@rrohio.com
(Remove 999 to reply to me)

---

• Next message: kaptain kernel: "Re: Microsoft Worm"
• Previous message: .Saphyr: "Re: anyone heard of /escape vulnerability ?"
• In reply to: Dean Palladino: "Firewalls and Security"
• Next in thread: Dean Palladino: "Re: Firewalls and Security"
• Reply:(deleted message) Dean Palladino: "Re: Firewalls and Security"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages Re: Unable to Receive Email from the internet ... Test from outside your firewall: ... one - known as Network Address Translation, and allow inbound SMTP ... Exchange Server 2007: internet email without Edge ... looking at the firewall inbound rules on my LHS. ... (microsoft.public.exchange.setup) Re: Microsoft update asking for security change - SP 2 firewall operation ... the firewall is still an inbound-only blocker. ... inbound traffic must be a response to something that previously went out. ... * For outbound TCP, inbound replies must come from the target IP address ... When the application binds to a socket, whatever port the ... (microsoft.public.security) Re: Networking over mains cables ... 'inbound and outbound, only if initiated by me' and ... the firewall so a webserver needs to allow inbound HTTP ... In this context the ports are conceptual. ... (comp.sys.acorn.networking) Re: New company installing a server on my lan ... I should add that for firewall configuration by far the safest strategy is ... > access to inbound ports from specific IP addresses instead of opening up ... > ports to the world. ... >> print services, but I don't want them to gain access to ... (microsoft.public.win2000.security) Re: New company installing a server on my lan ... >I should add that for firewall configuration by far the ... >> access to inbound ports from specific IP addresses ... >> ports to the world. ... (microsoft.public.win2000.security)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Newsgroups  > alt.computer.security  > 2003-08