while on the topic of security, I almost see it as a necessity of any
good administrator (depending on your function(s)) to be a part of the
BUGTRAQ security mailing list. This has been an excellent resource for
many years, that eventually most exploits and security problems make it
to, whether Unix, NT, application, or network device related. There
have been many exploits on many firewalls, router OS's (a few on IOS
too!), switches, talks about bypassing VLAN's over trunks, ARP spoofing
code and discussions, and many other topics related to postings I've
seen on this list. I have learned quite a lot by just subscribing to
this list for the past 5 years.
BUGTRAQ is archived at www.geek-girl.com (among others I'm sure) for
those interested.
David
Richard Holland wrote:
>
> This is a bit off-topic, but I recall a discussion of using Checkpoint
> firewall, and thought I'd share a SANS security newsletter concerning
> checkpoint.
>
> "It's possible to use various fragmented packets (such as those generated by
> Jolt2.c) to cause the firewall to crash or operate at 100% CPU utilization.
> Firewall rules are ineffective for defense. More information is in this
> issue as item {00.24.025} ("Check Point FireWall-1 fragmentation DoS")."
>
> I could forward the complete message to anybody interested.
___________________________________
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
