Re: Firewall Memory Key

jKILLSPAM.schipper_at_math.uu.nl
Date: 11/26/05 

Date: 26 Nov 2005 13:17:59 GMT

nospam@nospam.com wrote:
>> Erm, I think of something that has a USB connection and a bit of storage
>> stuff inside when I think of a memory key. If that's what you mean,
>> you'll need to find a way to add network connectivity and a processor
>> first...
>>
>> Joachim
>
> Sorry - didn't make this one very clear - can a usbkey be used as a read
> only device for firewall settings in the sense it can be a replacement
> software firewall ie becoming effectively a personal hardware firewall?

Storing the firewall configuration on an USB device is possible, and
there are a couple of devices that can even boot off them.

Either would allow you to, at least, influence the way the firewall is
run from a USB key. If you somehow manage to make the USB device
read-only - some way that cannot be circumvented in software - then you
have a somewhat reliable way of storing your configuration, or even your
entire system.

However, this has little to do with the distinction software-hardware
firewall, which is quite silly anyway (the only real hardware firewalls
I know of involve scissors, pulling plugs and the like). The main
distinction, really, is the place where the filtering software is run.
If it is run on the host that is being protected, this is not ideal, and
sometimes called a software firewall. If it is run on another host, this
is usually called a hardware firewall, especially if the 'other host' is
some sort of specialized device.

The question of storing firewall settings on a USB device is orthogonal
to this, though. Storing (parts of) the system on read-only media has
it's merit, especially in firewalls, but if you plan on plugging the
USB device into a Windows XP machine to make it more secure, that
wouldn't help much.

(And anyway, writable CDs are much cheaper... and many Linux- or
*BSD-based firewalls can run off a floppy. No need to mess around with
expensive devices which need expensive connectors and all that if
getting an old CD drive is pretty easy.)

                Joachim

Relevant Pages

  • Re: Problem with AS 4.1 and USB
    ... I have as said in my first post, set in my firewall to allow both tcp/udp ... Where do find the USB to check on phone? ... > And a UDP outgoing port of. ... >>> Connection? ...
    (microsoft.public.pocketpc.activesync)
  • Re: Connecting using Activesync 3.7.1...HELP!
    ... The USB Device manager shows Windows CE USB device ... but Activesync 3.7.1 is not connecting to the device. ... > posts, like disabling antivirus/firewall, and deleting the USB connection ... If you are able to synchronize successfully with the firewall shut, ...
    (microsoft.public.pocketpc.activesync)
  • Re: unable to obtain server IP address
    ... Don't think I have ever seen that with a USB based AS connection. ... turned off Windows firewall, ... IPs that it uses are fixed and the same for everybody. ...
    (microsoft.public.pocketpc.activesync)
  • Re: Connect geode Board and a Desktop PC with Activesync USB.
    ... Now i want to use the USB connection, ... If your board has no USB device port (and most of PCs don't have this ... PC using ActiveSync or any kind of software only solution. ...
    (microsoft.public.windowsce.platbuilder)
  • Re: ActiveSync 4.2 & iPAQ
    ... the USB Controllers often include a line saying ... would subsequently recognice the device (HPC) & then proceed to re-establish ... Yes, the HPC is set to use a USB connection, ie the USB box for connections ... the firewall & rebooted the laptop pc & softbooted the device. ...
    (microsoft.public.pocketpc.activesync)