Security Basics mailing list archives

Re: Distributed Firewall

From: "Kendric" <Kendric () hotpop com>
Date: Wed, 23 Apr 2003 19:03:03 +0100

The distributed firewall is the second line of protection after the gateway
firewall... The central management console is the building block of the
distributed firewall and that is where additional security measures should
be placed to protect it. But if you think of it in another sense, it
actually adds an additional layer of security after the traditional
firewall. An attack/intrusion on a single machine does not mean you have
compromise the security of the entire network.

kendric

----- Original Message -----
From: "Shadow" <shadow () trugeek net>
To: "Kendric" <Kendric () hotpop com>
Cc: <security-basics () lists securityfocus com>
Sent: Wednesday, April 23, 2003 6:21 PM
Subject: Re: Distributed Firewall

Sounds like a good idea but I see some flaws. Even with such a set up
there is always the vulnerability of the remote console and the
vulnerability of it being mimicked by a remote attack. Anything with a
central control has the inherent weakness of the power of that control
- which is one of the flaws that is trying to be avoided by a
distributed firewall. Just my 2c.

Nate ~ guildmaster () gotrpg org

List Email - shadow () trugeek net

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Guild Master of GOTRPG

Guild site:     http://www.gotrpg.org
Personal site:  http://www.trugeek.net

"There will always be skeptics.
There will always be disbelievers.
And there will always be Apple to
prove them wrong."
~Apple Computer
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~





---------------------------------------------------------------------------
Attend Black Hat Briefings & Training Europe, May 12-15 in Amsterdam, the 
world's premier event for IT and network security experts.  The two-day 
Training features 6 hand-on courses on May 12-13 taught by professionals.  
The two-day Briefings on May 14-15 features 24 top speakers with no vendor 
sales pitches.  Deadline for the best rates is April 25.  Register today to 
ensure your place.  http://www.securityfocus.com/BlackHat-security-basics 
----------------------------------------------------------------------------

Current thread:

Distributed Firewall Kendric (Apr 23)
- Re: Distributed Firewall Nathan Ryan Milford (Apr 24)
  - Re: Distributed Firewall Hannes Tschofenig (Apr 24)
    - Re: Distributed Firewall Chris Burton (Apr 25)
- RE: Distributed Firewall David Gillett (Apr 24)
  - Re: Distributed Firewall Kendric (Apr 24)
  - Re: Distributed Firewall Hannes Tschofenig (Apr 24)
  - RE: Distributed Firewall A Packard (Bugtraq) (Apr 24)
  - RE: Distributed Firewall Ken Kousky (Apr 25)
- Re: Distributed Firewall Shadow (Apr 24)
  - Re: Distributed Firewall Kendric (Apr 24)
  - RE: Distributed Firewall Jared Valentine (Apr 25)
- RE: Distributed Firewall Conor F. Sibley (Apr 24)
- Re: Distributed Firewall Marcelo Olguin (Apr 24)
- Re: Distributed Firewall Joerg Over (Apr 24)
- Re: Distributed Firewall Hannes Tschofenig (Apr 24)
- <Possible follow-ups>
- RE: Distributed Firewall Chris Peden (Apr 25)
- RE: Distributed Firewall JAVIER OTERO (Apr 28)
- RE: Distributed Firewall Seth Knox (Apr 28)