I'm probably late to the party, but I must comment.
IMHO, by default, a firewall should DENY EVERYTHING that is inbound until
told to allow something in.
I wouldn't want a locksmith to sell me a lock that stops everything except
the standard key, unless I have it recored. Why should I want a firewall to
let people in that I didn't explicitly authorize?
-----Original Message-----
From: Joe Matusiewicz [mailto:[EMAIL PROTECTED]]
Sent: Thursday, April 22, 1999 8:16 AM
To: Rao, Prashanth; [EMAIL PROTECTED]
Subject: RE: Firewall 1 hardened kernel
It was a misconfiguration, but who is at fault depends on your point of
view. By default, Firewall-1 will allow DNS, RIP, and ICMP services to
pass unhindered and unlogged in both directions under its security policy
(Rule 0). Some folks reject the defaults. Diligence was able to establish
a Back Orifice connection through port 53 through Firewall-1 and it was not
blocked or detected by Firewall-1.
-- Joe
>> hi,
>> Take look at www.diligence.co.uk.I am sure this disappoints lot of
>> Firewall-1 's Fans.I know lot of firewall-1 fans are there in this
>> group.
>>
>> cheers
>> prashanth
>-
>[To unsubscribe, send mail to [EMAIL PROTECTED] with
>"unsubscribe firewalls" in the body of the message.]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
