Firewall Wizards mailing list archives

Re: Auditing a firewall rulebase

From: "R. DuFresne" <dufresne () sysinfo com>
Date: Mon, 26 May 2008 17:16:23 -0400 (EDT)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


also comments, any rule with out a comment gets deleted, if it wasnt
important enough to have a comment, its not important enough to still
be here.

Hmm, I can see this causing an alert and investigation, but not adeletion. straight out decisions like this are security incidents waitingto happen as well.


Thanks,


Ron DuFresne

- --~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

        admin & senior security consultant:  sysinfo.com
                        http://sysinfo.com
Key fingerprint = 9401 4B13 B918 164C 647A  E838 B2DF AFCC 94B0 6629

...We waste time looking for the perfect lover
instead of creating the perfect love.

                -Tom Robbins <Still Life With Woodpecker>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)

iD8DBQFIOyiqst+vzJSwZikRAjtJAJ4zbdj668uLVHcasgge5ulYF5WgEgCfYTqg
I4WY48OLDOwP85ajQTwyXU0=
=Idan
-----END PGP SIGNATURE-----
_______________________________________________
firewall-wizards mailing list
firewall-wizards () listserv icsalabs com
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards

Current thread:

Auditing a firewall rulebase arvind doraiswamy (May 19)
- Re: Auditing a firewall rulebase Darden, Patrick S. (May 20)
  - Re: Auditing a firewall rulebase Chuck Benson (May 27)
- Re: Auditing a firewall rulebase kevin horvath (May 20)
- null routes and VPN's Kerry Milestone (May 20)
  - Re: null routes and VPN's Lord Sporkton (May 27)
- Re: Auditing a firewall rulebase Lord Sporkton (May 20)
  - Re: Auditing a firewall rulebase R. DuFresne (May 27)
- Re: Auditing a firewall rulebase Paul Melson (May 20)