Re: Firewall-Wizards Digest V1 #311

[dreamwvr <dreamwvr () dreamwvr com>]

Hi,
  non other than the humble Linux Box as you blow off the dusk 
on the old 486 with 8 meg ram remember ! to turn it off:-)
At 08:27 PM 6/1/99 -0700, Ryan Russell wrote:
> Proxies can't do this without an extra shim of some sort,
> FW-1 doesn't do it.. which firewalls do?   I believe most
> rely on the OS to take care of it, or expect it shut off at the
> routers.  Besides, you want to be able to configure that off
> in the OS, as another item on your hardening list to make
> it fail closed, or as closed as possible.
>
>                         Ryan
>
>
>
>
>
>
> The ablity to detect source route packets is
> "generally" provided by the firewall software that one
> installs. The driver in most of the firewalls detcts
> the IP options in the IP packet and takes a decision
> on the necessary action as configured.
> The NT OS or the Unix OS do not detect source
> routed packets. So one would need another software
> to detect such packets, and one would in all
> probability do this with a firewall software....
Reuters, London, February 29, 1998: 
Scientists have announced discovering a meteorite which will strike the 
earth in March, 2028.  Millions of UNIX coders expressed relief for being 
spared the UNIX epoch "crisis" of 2038.
_______________________________________________________________________

************** DREAMWVR.COM - TOTAL INTERNET SERVICES ****************
  TOTAL DESIGN - DEVELOPMENT - INTEGRATION - SECURITY - Click Here..
           <http://www.dreamwvr.com/services/MAX_SEC.html>
   DREAMWVR.COM - The Console of Many... 24 X 7 Evolution Internet
<http://www.dreamwvr.com/dynamicduo.html> <mailto:dreamwvr () dreamwvr com>
 -> Linux-Mandrake Solution Provider and North American Distributor <-
        <http://www.dreamwvr.com/mandrake/mandrake-dist.html>
  "As Unique as the Company You Keep."        "===0 PGP Key Available  
________________________________________________________________________