Security Basics mailing list archives
Re: Distributed Firewall
From: "Kendric" <Kendric () hotpop com>
Date: Wed, 23 Apr 2003 19:03:03 +0100
The distributed firewall is the second line of protection after the gateway firewall... The central management console is the building block of the distributed firewall and that is where additional security measures should be placed to protect it. But if you think of it in another sense, it actually adds an additional layer of security after the traditional firewall. An attack/intrusion on a single machine does not mean you have compromise the security of the entire network. kendric ----- Original Message ----- From: "Shadow" <shadow () trugeek net> To: "Kendric" <Kendric () hotpop com> Cc: <security-basics () lists securityfocus com> Sent: Wednesday, April 23, 2003 6:21 PM Subject: Re: Distributed Firewall
Sounds like a good idea but I see some flaws. Even with such a set up there is always the vulnerability of the remote console and the vulnerability of it being mimicked by a remote attack. Anything with a central control has the inherent weakness of the power of that control - which is one of the flaws that is trying to be avoided by a distributed firewall. Just my 2c. Nate ~ guildmaster () gotrpg org List Email - shadow () trugeek net ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Guild Master of GOTRPG Guild site: http://www.gotrpg.org Personal site: http://www.trugeek.net "There will always be skeptics. There will always be disbelievers. And there will always be Apple to prove them wrong." ~Apple Computer ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
--------------------------------------------------------------------------- Attend Black Hat Briefings & Training Europe, May 12-15 in Amsterdam, the world's premier event for IT and network security experts. The two-day Training features 6 hand-on courses on May 12-13 taught by professionals. The two-day Briefings on May 14-15 features 24 top speakers with no vendor sales pitches. Deadline for the best rates is April 25. Register today to ensure your place. http://www.securityfocus.com/BlackHat-security-basics ----------------------------------------------------------------------------
Current thread:
- Distributed Firewall Kendric (Apr 23)
- Re: Distributed Firewall Nathan Ryan Milford (Apr 24)
- Re: Distributed Firewall Hannes Tschofenig (Apr 24)
- Re: Distributed Firewall Chris Burton (Apr 25)
- Re: Distributed Firewall Hannes Tschofenig (Apr 24)
- RE: Distributed Firewall David Gillett (Apr 24)
- Re: Distributed Firewall Kendric (Apr 24)
- Re: Distributed Firewall Hannes Tschofenig (Apr 24)
- RE: Distributed Firewall A Packard (Bugtraq) (Apr 24)
- RE: Distributed Firewall Ken Kousky (Apr 25)
- Re: Distributed Firewall Shadow (Apr 24)
- Re: Distributed Firewall Kendric (Apr 24)
- RE: Distributed Firewall Jared Valentine (Apr 25)
- RE: Distributed Firewall Conor F. Sibley (Apr 24)
- Re: Distributed Firewall Marcelo Olguin (Apr 24)
- Re: Distributed Firewall Joerg Over (Apr 24)
- Re: Distributed Firewall Hannes Tschofenig (Apr 24)
- <Possible follow-ups>
- RE: Distributed Firewall Chris Peden (Apr 25)
- RE: Distributed Firewall JAVIER OTERO (Apr 28)
- RE: Distributed Firewall Seth Knox (Apr 28)
- Re: Distributed Firewall Nathan Ryan Milford (Apr 24)