Educause Security Discussion mailing list archives

Re: Firewall Administration

From: "Davis, Thomas R." <tdavis () IU EDU>
Date: Wed, 15 Jun 2005 15:25:59 -0500

 
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ----Original Message----
From: Hart, Lee Anne [mailto:LeeAnne.Hart () MONTGOMERYCOLLEGE EDU]
Sent: Wednesday, June 08, 2005 12:29 PM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: [SECURITY] Firewall Administration

who maintains your firewalls - hardware and operating system, 
not the firewall software?


Our network engineers maintain the hardware and operating systems on
our network firewalls.  In fact, they are also responsible for
maintaining the firewall software and rule sets.  We have read access
only to the firewall configuration and logs (and that's the way I
prefer it).  Our role is to recommend what policies should be in
place on the firewall and then they implement those policies.

We have an excellent working relationship with our networking staff. 
And, as others have mentioned, that is key to making such an
agreement work.

- -- 
Tom Davis, IT Security Officer, CISSP, CISM, GCIA
Office of the VP for Information Technology, Indiana University
PGP key or S/MIME certificate: https://itso.iu.edu/Tom_Davis

-----BEGIN PGP SIGNATURE-----
Version: PGP 8.0.3

iQA/AwUBQrCO1nMQ7XQGtBENEQIKDQCg4X+onw5rDeYDXk7/MpT0U72lOBUAoK0O
YTbk/4IYJCsMH+IPAOoQLxsw
=JavP
-----END PGP SIGNATURE-----

Current thread:

Firewall Administration Hart, Lee Anne (Jun 08)
- <Possible follow-ups>
- Re: Firewall Administration Steven Johnson (Jun 08)
- Re: Firewall Administration Cal Frye (Jun 08)
- Re: Firewall Administration Parker, Ben C (Jun 08)
- Re: Firewall Administration Geoff Nathan (Jun 08)
- Re: Firewall Administration Greg Schaffer (Jun 08)
- Re: Firewall Administration Sarah Stevens (Jun 08)
- Re: Firewall Administration Willis Marti (Jun 08)
- Re: Firewall Administration Davis, Thomas R. (Jun 15)