On Thu, 17 Jan 2002, Alvin Oga wrote:
>
> simple way.... pierce your own firewall ..if you can...they can too
> - power off your machine... you're now offline/dead
> ( no skills needed... a janitor at night can take you offline )
>
> - 80% of hacking/attacking is gonna be internally created
>
> - if you have telnet/ftp/pop/user accounts enabled on your
> firewall, time to go back to basics and harden the server first
One of the reasons we prefer to do a thourough aduit rather then
"piercing" or pen testing. A thourough audit of policies, assest,
CONFIGURATION, known vulnerabilites, it often yeilds better info in a
resource diminished environment then either of the other two. It
certainly grants one definate useful info as to what needs fixing and
hardening in time and resource constraints in a quicker manner, while
educating the folks involved.
Thanks,
Ron DuFresne
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
"Cutting the space budget really restores my faith in humanity. It
eliminates dreams, goals, and ideals and lets us get straight to the
business of hate, debauchery, and self-annihilation." -- Johnny Hart
***testing, only testing, and damn good at it too!***
OK, so you're a Ph.D. Just don't touch anything.
_______________________________________________
Firewalls mailing list
[EMAIL PROTECTED]
http://lists.gnac.net/mailman/listinfo/firewalls
