Firewall Wizards mailing list archives
Re: How automate firewall tests
From: Jean-Denis Gorin <jdgorin () computer org>
Date: Mon, 21 Aug 2006 12:02:07 +0200
Marcus J. Ranum wrote: Isaac Van Name wrote:You have referred to packet-based firewalls as being outdated.I'm not sure if they're "outdated" as much as "never were particularly good to begin with"
I agree. There is a reminder for the younger. Take a look at that Brent Chapman's paper from 1992: Network (In)Security Through IP Packet Filtering (http://www.greatcircle.com/pkt_filtering.html) And that paper from 14 years ago told us that "testing and monitoring filters is difficult". And 14 years ago, all those firewall-friendly (HTTP-tunneling)application did not even exist! JDG. _______________________________________________ firewall-wizards mailing list firewall-wizards () listserv icsalabs com https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards
Current thread:
- Re: How automate firewall tests, (continued)
- Re: How automate firewall tests Patrick M. Hausen (Aug 21)
- Re: How automate firewall tests Paul D. Robertson (Aug 21)
- Re: How automate firewall tests Patrick M. Hausen (Aug 21)
- Re: How automate firewall tests Paul D. Robertson (Aug 21)
- Re: How automate firewall tests Oliver Humpage (Aug 21)
- Re: How automate firewall tests Marcus J. Ranum (Aug 21)
- Re: How automate firewall tests Isaac Van Name (Aug 21)
- Re: How automate firewall tests Shahin Ansari (Aug 20)
- Re: How automate firewall tests Avishai Wool (Aug 22)
- Re: How automate firewall tests Bill Royds (Aug 21)
- Re: How automate firewall tests Chuck Swiger (Aug 21)
- Re: How automate firewall tests Bill Royds (Aug 22)
- Re: How automate firewall tests ArkanoiD (Aug 22)