Firewall Wizards mailing list archives
Re: Firewall Audit Programme/checklist
From: tqbf () secnet com
Date: Mon, 16 Mar 1998 19:18:26 -0600 (CST)
Has anyone found or got an Audit Program for firewalls? or an audit checklist for firewalls?
We're working on one in CASL (our programming language for audit tool
construction); our scanner has a subsystem called CAPE that fires off
arbitrary TCP/IP packets a la ipsend, and it has a series of checks as
well; you can see the checklist we have in our old CAPE product at
http://www.secnet.com/ballista/cape.html
I am actively looking for input on what good checks would be for packet
filter tests. I have a few ideas myself, if people are interested in
discussing this.
-----------------------------------------------------------------------------
Thomas H. Ptacek Secure Networks, Inc.
-----------------------------------------------------------------------------
http://www.enteract.com/~tqbf "mmm... sacrilicious"
Current thread:
- Re: NTp config - for the databases :}, (continued)
- Re: NTp config - for the databases :} Kees Hendrikse (Mar 13)
- Re: NTp config - for the databases :} Bret Watson (Mar 13)
- Re: NTp config - for the databases :} Joseph S. D. Yao (Mar 13)
- Re: NTp config - for the databases :} John Painter (Mar 14)
- Firewall Audit Programme/checklist Bret Watson (Mar 16)
- Re: Firewall Audit Programme/checklist Marcus J. Ranum (Mar 16)
- Re: Firewall Audit Programme/checklist Chad Schieken (Mar 16)
- Re: Firewall Audit Programme/checklist Bret Watson (Mar 17)
- Re: Firewall Audit Programme/checklist Marcus J. Ranum (Mar 17)
- Re: Firewall Audit Programme/checklist blast (Mar 17)
- Re: Firewall Audit Programme/checklist tqbf (Mar 16)
- Re: Firewall Audit Programme/checklist kant (Mar 16)
- Re: DNS -vs- the firewall: security thoughts Bennett Todd (Mar 12)