Re: Need help! Regarding internet security.

• To: MOHAMED HABIB MOHAMED EUSOFF <HABIB@klse.com.my>
• Subject: Re: Need help! Regarding internet security.
• From: Frank Willoughby <frankw@in.net>
• Date: Sun, 21 Jul 96 08:13:20 -0400
• Cc: www-security@ns2.rutgers.edu

At 02:42 PM 7/15/96 +0800, MOHAMED HABIB MOHAMED EUSOFF <HABIB@klse.com.my>
wrote:

>Need help! Regarding internet security.
>
>Anyone has paper/doc/info how much security provided by ROUTER that's
connected to the
>net? 
>

Habib,

While your mail is about WWW security, another mailing list can provide you
more detailed info on this subject.  Try sending a mail to:

        majordomo@GreatCircle.com

leave the subject field blank and put the following in the body of the text:

        subscribe firewalls


Additional references for info include the following books:

Firewalls and Internet Security
Cheswick & Bellovin
ISBN: 0-201-63357-4

Building Internet Firewalls
Brent Chapman
ISBN: 1-56592--124-0


To partially answer your question:

While Cisco makes some fine equipment, a packet filter (regardless 
of vendor) isn't adequate to protect a company from the hazards of 
the Internet.  If you are currently depending on this, I would 
recommend that purchase an Application Gateway type of firewall - ASAP.

You can still use the Cisco router by placing it between the firewall 
and the Internet.  Set it up to block all traffic that you know the 
firewall will reject anyway.  This will help to improve the performance 
of the firewall as it won't have to answer every invalid request.

FWIW, there are @70 firewalls on the market today - of which only >5< 
are adequate to protect a company from the hazards of the Internet.
Do your research & choose carefully.

BTW, before anyone asks, Fortified Networks is a vendor-neutral 
Information Security Consulting company.  It doesn't sell firewalls 
or any other security products, so I have the freedom to call things 
like I see them.

I hope the above was of some use to you.

Further answers to your questions can be found on the firewalls mailing 
list.  See you there.

>Thanks.
>
>habib

Best Regards,


Frank
Any sufficiently advanced bug is indistinguishable from a feature.
	-- Rich Kulawiec

<standard disclaimer>
The opinions expressed above are of the author and may not 
necessarily be representative of Fortified Networks Inc.

Fortified Networks Inc. - Information Security Consulting 
http://www.fortified.com     Phone: (317) 573-0800     FAX: (317) 573-0817     
Home of the Free Internet Firewall Evaluation Checklist

• Previous: unsubcribe
• Next: unsubcribe
• Index(es):
  • Index
  • Thread