I do apologise for being of the topic and I mean no offence, but I am
happy you don't audit anything for me or anyone I know, if you really
have to ask these questions...
Perhaps you should consider hiring some reasonably experienced
systems administrator instead of posting these trivial questions?
Reading a few manuals and perhaps a visit to the local library or
bookshop could also prove usefull in gaining basic knowledge.
[EMAIL PROTECTED] wrote:
>
> I have several more questions that need answered for a UNIX firewall, I am an
> auditor who understands the questions that need to be asked, I just do not
> understand what all the reasons are:
> 1 - I have read that the DNS should not be on the firewall yet I read that one
> expert says that is not important, is it an important control?
> 2 - What controls does COPS bring to the picture that the ISS suite do not?
> 3 - What proof should I request that there are no rhosts running on the
> firewall?
> 4 - For a secure environment how many and which ports should be open or not?
> 5 - What is the product EXCEED?
> 6 - What are CGI scripts? What are their control weakness?
> 7 - Should their be logging externally (outside)of the firewall?
> 8 - Are extended ACL's a security risk and how?
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
