Firewall vendors with comprehensive bug/issue databases

From: Mark Guzowski (Guzowski_Mark@MSN.baz)
Date: 08/13/02

• Next message: T.A.: "Is there a way to use an old 386 as a firewall?"
• Previous message: : "Re: Is the an online firewall check?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

From: "Mark Guzowski" <Guzowski_Mark@MSN.baz>
Date: Tue, 13 Aug 2002 03:02:25 -0400

It can easily be argued that for something as important as a firewall it is irresponsible & unprofessional of vendors *not* to
provide a searchable and/or indexed database of known bugs and issues associated with their firewalls.

Both Microsoft & Cisco do provide such. Microsoft's support database is rather painless to search, and the fixes present in service
packs/security rollups seem to always be available for inspection. Cisco's software library repository likewise has comprehensive
bug information of a direct & informative nature.

If you have something truly valuable to protect, absence of such information from your potential firewall vendor should be a source
of concern.

-----

Mark Guzowski
Guzowski_Mark@MSN.com
eZine/Homepage: http://groups.msn.com/magWorks

A few of the words I live by: "Live life day to day, on your own terms (not someone else's). Set your own moral compass, let it
not be set for you. Define your own self worth, let it not be defined for you. Your creativity (i.e., intellectual property) is
yours to do with as you please; in absence of an explicit agreement to the contrary (signed by you) it is not for others to do with
as they please."

About the email content: This email reflects my opinions. If the content offends, and you are a member of law enforcement (e.g.,
local police, fbi, nsa, or rcmp), first ask yourself if you have a legal wiretap. If not, stop reading the email Ass. Otherwise,
chill out - they're only my opinions after all.

---

• Next message: T.A.: "Is there a way to use an old 386 as a firewall?"
• Previous message: : "Re: Is the an online firewall check?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages RE: [fw-wiz] CERT vulnerability note VU# 539363 ... so vendors shoot for the former. ... > In my opinion if a stateful firewall claims it can filter at rate X ... > a stateless packet filter is going to be vulnerable to these sort ... (Firewall-Wizards) RE: [fw-wiz] so much for "deny all" ... >> vendors like Juniper Networks, Check Point and Fortinet employ a ... > This is very good publicity for firewall vendors not in the list who ... (if anyone in this politically correct time still indulges in multi-martini ... the company at which I did my first firewall install replaced the ... (Firewall-Wizards) Re: Running IPSec/kerberos & Win2K/XP? (part III) ... Isn't it sort of sad how a deadly serious perimeter HW firewall can be bought for a reasonable price that inspires ... > A few of the words I live by: "Live life day to day, on your own terms. ... This email reflects my opinions. ... (comp.security.misc) Re: Running IPSec/kerberos & Win2K/XP? (part III) ... Isn't it sort of sad how a deadly serious perimeter HW firewall can be bought for a reasonable price that inspires ... > A few of the words I live by: "Live life day to day, on your own terms. ... This email reflects my opinions. ... (comp.security.firewalls) Re: How to choose an IDS/FW MSS provider ... > plenty of other competent vendors out there are doing R&D. ... > Firewall vendors are trying to catch up on the Layer 7 analysis. ... With the obvious success of IPS technologies at the perimeter, ... (Focus-IDS)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(10)