Firewall Wizards mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Paper: Unverified Fields - A Problem with Firewalls & Firewall Technology Today

From: Mikael Olsson <mikael.olsson () enternet se>
Date: Mon, 16 Oct 2000 08:37:35 +0200

Ofir,

Ofir Arkin wrote:


The following problem (as discussed in this paper)
has not yet been identified. Certain firewalls today,
will not authenticate the validity of certain protocol
fields, within the packet they are processing.


You make very broad, sweeping allegations in your
paper. For instance:


The firewall devices presented in today’s market simply 
do not supply us with the solution.


Could you be a little more specific? Which firewalls
have you tested except for FW-1? It has a very broad 
installed base, which indeed makes your probes a 
large-scale problem. However, it is _not_, contrary 
to popular belief, the product to define the term
"firewall" by. 

Regards,
Mikael Olsson

-- 
Mikael Olsson, EnterNet Sweden AB, Box 393, SE-891 28 ÖRNSKÖLDSVIK
Phone: +46 (0)660 29 92 00         Direct: +46 (0)660 29 92 05
Mobile: +46 (0)70 66 77 636        Fax: +46 (0)660 122 50
WWW: http://www.enternet.se/       E-mail: mikael.olsson () enternet se

On bosses and technology: "There are bosses who don't know, and there 
are bosses that don't know that they don't know" /Anonymous techie

_______________________________________________
firewall-wizards mailing list
firewall-wizards () nfr net
http://www.nfr.net/mailman/listinfo/firewall-wizards
Previous By Date Next
Previous By Thread Next

Current thread: