Security Basics mailing list archives
RE: Patching a Firewall
From: "Thomas F. Szabo" <tszabo () diamondtech net>
Date: Sun, 14 Sep 2003 23:53:18 -0400
IMHO, it's a HUGE security risk. First of all you would be putting an awful lot of faith in the fact that the firewall is configured properly. Second if an attacker manages to get around the firewall rule set one way or another you are now effectively screwed. Aside from staying up to date with patches you should also properly lock down the OS running the firewall. Windows NT for example will probably be running services by default that are not necessary for any firewall software to work properly. No need to take unnecessary chances, right? Tom Szabo -----Original Message----- From: Robert Mezzone [mailto:Robert.Mezzone () PJSolomon Com] Sent: Friday, September 12, 2003 8:16 AM To: 'security-basics () securityfocus com' Subject: Patching a Firewall I want to start off by saying my Firewall is fully patched. That being said my question is... Is it a big security risk if the OS (say Windows) running the firewall box, is not fully patched? My reasoning that it isn't is because the firewall should be configured to drop any connections to itself. Or being the firewall has to at least initially accept the packet in order to inspect it, enough to exploit a vulnerability. Robert ------------------------------------------------------------------------ --- Captus Networks Are you prepared for the next Sobig & Blaster? - Instantly Stop DoS/DDoS Attacks, Worms & Port Scans - Precisely Define and Implement Network Security - Automatically Control P2P, IM and Spam Traffic FIND OUT NOW - FREE Vulnerability Assessment Toolkit http://www.captusnetworks.com/ads/42.htm ------------------------------------------------------------------------ ---- --------------------------------------------------------------------------- Captus Networks Are you prepared for the next Sobig & Blaster? - Instantly Stop DoS/DDoS Attacks, Worms & Port Scans - Precisely Define and Implement Network Security - Automatically Control P2P, IM and Spam Traffic FIND OUT NOW - FREE Vulnerability Assessment Toolkit http://www.captusnetworks.com/ads/42.htm ----------------------------------------------------------------------------
Current thread:
- Patching a Firewall Robert Mezzone (Sep 12)
- Re: Patching a Firewall Jimi Thompson (Sep 15)
- RE: Patching a Firewall dave kleiman (Sep 16)
- RE: Patching a Firewall Jimi Thompson (Sep 16)
- Re: Patching a Firewall James Fields (Sep 19)
- RE: Patching a Firewall dave kleiman (Sep 16)
- Re: Patching a Firewall Birl (Sep 15)
- <Possible follow-ups>
- RE: Patching a Firewall Thomas F. Szabo (Sep 15)
- Re: Patching a Firewall Robert Mezzone (Sep 15)
- Re: Patching a Firewall Ansgar Wiechers (Sep 16)
- RE: Patching a Firewall Gino Genari (Sep 16)
- RE: Patching a Firewall brossini (Sep 17)
- Re: Patching a Firewall Jimi Thompson (Sep 15)