Another option is to go with a Trusted OS instead of just a hardened
one. If you do, you can close some potential holes in ways you can't
do with just hardening or with SeOS. OTOH, the importance of the OS
diminishes the more you keep the firewall simple and isolated from
the networks it is defending and blocking. A Trusted OS can help here
as well, but it will be less significant a component if you can just
use low-level components and keep user-space programs to a minimum.
paul
---------------------------------------------------------
Paul McNabb Argus Systems Group, Inc.
Vice President and CTO 1809 Woodfield Drive
[EMAIL PROTECTED] Savoy, IL 61874 USA
TEL 217-355-6308
FAX 217-355-1433 "Securing the Future"
---------------------------------------------------------
> From [EMAIL PROTECTED] Tue Apr 20 10:03:56 1999
> Date: Tue, 20 Apr 1999 22:29:46
> To: [EMAIL PROTECTED]
> From: Technical Incursion Countermeasures <[EMAIL PROTECTED]>
> Subject: Re: Firewall 1 hardened kernel
> Cc: [EMAIL PROTECTED]
>
> At 07:10 20/04/99 -0400, you wrote:
> >We are evaluating Checkpoint's Firewall 1. The OS of preference would be
> Sun's
> >Solaris. I have read nothing about how the Solaris OS kernel should be
> hardened,
> >either by the vendor or by us. Is this not required.
>
> Normally I recommend that the Solaris be hardened.. either by simply going
> through following Sun's instructions.. or by running SeOS - which is
> somewhat the same thing IMHO...
>
> >firewall is running on a hardened SCO box that was certified by the vendor. I
> >understand that Firewall-1 has in access of 50% of the market, but from
> the very
> >limited access I have had with the product I don't see that much of an
> >advantage. Also, any comments on their support would be
> appreciated...thanks in
> >advance...Jerry
>
> Umm you said it Jerry... Microsoft has a vast percentage of the PC market..
> it doesn't make it the best though... FW-1 seems to be OK as far as
> firewalls go.. it does actually perform to specs and tends to have good
> support - which is often the key item in any IT purchase. The latest
> version is actually easy to setup (well to a degree - I wish they would
> have all the settings in one app.. not several though)
>
> hopes this help..
>
> Cheers,
>
> Bret
> Technical Incursion Countermeasures
> [EMAIL PROTECTED] http://www.ticm.com/
> ph: (+61)(041) 4411 149(UTC+8 hrs) fax: (+61)(08) 9454 6042
>
> The Insider - a e'zine on Computer security Vol 3 Issue 1 out now
> http://www.ticm.com/info/insider/index.html
> -
> [To unsubscribe, send mail to [EMAIL PROTECTED] with
> "unsubscribe firewalls" in the body of the message.]
>
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
