Firewall Wizards mailing list archives
Re: Comparisons of Firewall-1 vs. PIX
From: "H. Morrow Long" <morrow.long () yale edu>
Date: Tue, 29 Sep 1998 22:29:46 -0400 (EDT)
Note that source ports should never be trusted -- particularly those source ports in packets from the 'outside' insecure network. And the fact that a source port is below 1024 (or above, or is any particular port number such as that used by a well known app) should not convey any special cachet when the packet comes from a host on a network outside your site and control. - H. Morrow Long
Current thread:
- Comparisons of Firewall-1 vs. PIX Chris Hughes (Sep 29)
- Re: Comparisons of Firewall-1 vs. PIX Mark Horn [ Net Ops ] (Sep 29)
- Re: Comparisons of Firewall-1 vs. PIX Jean-Christophe Touvet (Sep 30)
- <Possible follow-ups>
- Re: Comparisons of Firewall-1 vs. PIX H. Morrow Long (Sep 30)
- Re: Comparisons of Firewall-1 vs. PIX Mark Horn [ Net Ops ] (Sep 29)