Re: Server Firewall
From: Ida (fake_at_rogers.com)
Date: 06/11/03
- Previous message: David Portholm: "Stoppong Kazaa With Trustix"
- In reply to: Wolfgang Kueter: "Re: Server Firewall"
- Next in thread: Wolfgang Kueter: "Re: Server Firewall"
- Reply: Wolfgang Kueter: "Re: Server Firewall"
- Reply: ObiWan: "Re: Server Firewall"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Tue, 10 Jun 2003 22:14:35 GMT
Hello Wolfgang,
> - Is the source code of the product availiable?
No, it is not open source software. Is the source code of CheckPoint open?
> - What kind of cryptographic algorithms are used in the product?
No, every proxy in ITShield firewall has to speak the corresponding
protocol. For example, proxy_ftp has to regenerate ftp data in plain.
Otherwise the client and server will not understand the data sent by the
firewall. Were you talking about VPN? Our IPSEC VPN and PPTP VPN have to
follow the corresponding protocols. Otherwise, IPSEC tunnel and PPTP
connection can not be establish.
> - What operationg system is used?
Linux
> - What kind of hardening of the operating system is nessessary?
ITShield firewall for Intel is based on Kernel 2.4.19, and ITShield firewall
for Sun 64-bit machines is based on Kernel 2.4.20. Some unnecessary
functionalities of the original kernel is disabled. The core part of the
firewall is loaded as a module called ip_firewall.
Ida
"Wolfgang Kueter" <wolfgang@shconnect.de> wrote in message
news:bc5hpp$9o4$1@news.shlink.de...
> Ida wrote:
>
> > Installing a personal firewall on the server using Windows OS may kill
> > your clients. But without a firewall, it is very dangerous because there
> > are so many known and unknow security problems in Windows OS.
>
> How do you know, have you analysed the source code? BTW, have you told
> Micro$oft about these security problems?
>
> > You'd better
> > put a firewall between your server and Internet, and set up strict rules
> > so that only specific traffic can go through the firewall.
>
> [x] Please define firewall.
>
> > There is a firewall called ITShield firewall (http://www.itshield.com).
>
> Oooops, a sales droid, how funny.
>
> > [itshield is said to do this and that]
>
> Could you please answer the following questions:
>
> - Is the source code of the product availiable?
> - What kind of cryptographic algorithms are used in the product?
> - What operationg system is used?
> - What kind of hardening of the operating system is nessessary?
>
> Sorry, but please do your sales training elsewhere, this is a technical
> group.
>
> Wolfgang
>
>
- Previous message: David Portholm: "Stoppong Kazaa With Trustix"
- In reply to: Wolfgang Kueter: "Re: Server Firewall"
- Next in thread: Wolfgang Kueter: "Re: Server Firewall"
- Reply: Wolfgang Kueter: "Re: Server Firewall"
- Reply: ObiWan: "Re: Server Firewall"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
