On Tue, Feb 02, 1999 at 08:07:54AM -0500, Gary D. Long wrote:
> Kevin,
>
> On the contrary, I am very helpful to the overall security and firewall community
> as a whole, having installed many systems and trained throughout the nation and the
> world. Being a security-minded individual, I am very skeptical of anyone
> requesting information that would point directly to the type of firewall I or my
> company utilizes. Security-minded individuals don't disclose this type of
> information at will.
Pfft. You're saying that I couldn't easily determine this information from a 5-10
second cursory scan of your network? TCP fingerprinting + looking for known proxies
does wonders. Every firewall product is readily detectable.
> In addition, since you have now disclosed that you are a Cisco employee, I would be
> less apt to provide you with any information regarding my security infrastructure.
> This appears to be some sort of "get rich" scheme on your behalf.
> My advice to the firewall community is to request co-ownership of the product
> before its development.
Heaven forbid anyone cooperate! I would certainly advise against revealing
privileged information such as supported services, trusted addresses, or behind-
firewall translated ip addresses. On the other hand, what the guy was looking
for was some logs. If you choose not to support him, that's fine. But I don't
think your rant was needed.. and I, personally, would appreciate it if you'd
take your little vendetta off list.
Mike
> Sincerely,
>
> --
> Gary D. Long
> Kindred Systems, Inc.
> 888-746-4574
> www.kindredsystems.com
> [EMAIL PROTECTED]
--
Michael P. Lyle
Security Architect
Exodus Communications, Inc.
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
