Re: Firewall for CF server

Mark W. Breneman wrote: What do the rest of you use for software firewall / packet inspection? IPSec policies. Jochem ~| Find out how CFTicket can increase your company's customer support efficiency by 100%

RE: Firewall for CF server

Administrator Vivid Media [EMAIL PROTECTED] www.vividmedia.com 608.270.9770 -Original Message- From: Jochem van Dieten [mailto:[EMAIL PROTECTED] Sent: Wednesday, January 12, 2005 9:50 AM To: CF-Talk Subject: Re: Firewall for CF server Mark W. Breneman wrote: What do the rest of you use

Re: Firewall for CF server

Mark W. Breneman wrote: IPSec policies do a good job of Packet Filtering, but they don't do packet inspection. (Unless I really missed something.) Correct. I am looking for a firewall that will block stuff like SQL injection attacks and buffer overflows. Forget it. Stopping SQL injection

RE: Firewall for CF server

PROTECTED] www.vividmedia.com 608.270.9770 -Original Message- From: Jochem van Dieten [mailto:[EMAIL PROTECTED] Sent: Wednesday, January 12, 2005 10:25 AM To: CF-Talk Subject: Re: Firewall for CF server Mark W. Breneman wrote: IPSec policies do a good job of Packet Filtering

Re: Firewall for CF server

I use IPCop (version 1.3 currently, but 1.4 is out), with intrusion detection turned on. As well, I'm running on an Apache server, so most URL based hack attempts just don't work (buffer overflows and such). I'm not sure how well IPCop handles SQL Injection (I've always understood this to be

Re: Firewall for CF server

The PIX doesn't block port scans??? My take on the buffer overflow blocking is that it sounds like a marketing angle more than anything. It can only work as well as some database is being kept current by the firewall vendor. If you stay on top of SW updates you'll probably be protected as