Firewall Wizards mailing list archives
Re: Paper: Unverified Fields - A Problem with Firewalls & Firewall Technology Today
From: Mikael Olsson <mikael.olsson () enternet se>
Date: Mon, 16 Oct 2000 08:37:35 +0200
Ofir, Ofir Arkin wrote:
The following problem (as discussed in this paper) has not yet been identified. Certain firewalls today, will not authenticate the validity of certain protocol fields, within the packet they are processing.
You make very broad, sweeping allegations in your paper. For instance:
The firewall devices presented in todays market simply do not supply us with the solution.
Could you be a little more specific? Which firewalls have you tested except for FW-1? It has a very broad installed base, which indeed makes your probes a large-scale problem. However, it is _not_, contrary to popular belief, the product to define the term "firewall" by. Regards, Mikael Olsson -- Mikael Olsson, EnterNet Sweden AB, Box 393, SE-891 28 ÖRNSKÖLDSVIK Phone: +46 (0)660 29 92 00 Direct: +46 (0)660 29 92 05 Mobile: +46 (0)70 66 77 636 Fax: +46 (0)660 122 50 WWW: http://www.enternet.se/ E-mail: mikael.olsson () enternet se On bosses and technology: "There are bosses who don't know, and there are bosses that don't know that they don't know" /Anonymous techie _______________________________________________ firewall-wizards mailing list firewall-wizards () nfr net http://www.nfr.net/mailman/listinfo/firewall-wizards
Current thread:
- Paper: Unverified Fields - A Problem with Firewalls & Firewall Technology Today Ofir Arkin (Oct 15)
- Re: Paper: Unverified Fields - A Problem with Firewalls & Firewall Technology Today Mikael Olsson (Oct 16)