>Date: Sun, 27 Dec 1998 15:30:29 -0500
>To: "Brian Steele" <[EMAIL PROTECTED]>
>From: Clyde Williamson <[EMAIL PROTECTED]>
>Subject: Re: Re: Let the Games Begin!
>In-Reply-To: <007b01be314a$524a6220$[EMAIL PROTECTED]>
>
>At 23:37 12/26/1998 -0400, you wrote:
>>
>>>>than 10 year's experience with securing the vehicle, people are
>>still
>>>>finding relatively easy ways to get past the locks and run off with
>>>>the car. Interestingly enough, other manufacturers duplicate his
>>>>design, complete with flaws. Would you purchase from this
>>>>manufacturer?
>>>>Congrats, you've just written off UNIX.
>>>
>>>How is this relevent?
>>
>>Let me try again - how about this quote from LAN Times' Aug 98 test on
>>NT Firewalls: "Contrary to commonly held opinions, Windows NT is now
>>(at last) a reasonably secure computing platform,
>
>REASONABLY???!!! You're willing to base your security on a trade rag that
claims an OS is NOW REASONABLY secure????? First of all, I'm speaking less
of NT than of Proxy... stay on the subject... Because NT is JUST NOW
CONSIDERED RELATIVELY SECURE, makes me afraid to trust MS Proxy 2.x as a
firewall (past performance again)!
>
>>and installing and
>>configuring a firewall on NT is often more simple than on its Unix
>>brethren.
>
>Security by obscurity and an easy to configure firewall, typical of
Admin's or are not that concerned with security. The fact that a box is
easy to config, has the best GUI, or simple to install, means nothing if
it's not secure!
>
>>Unix firewalls, BECAUSE OF THE OS'S OPEN ARCHITECTURE AND
>>LONG LEGACY OF SECURITY HOLES (my caps), are not really any more
>>secure, either. "
>
>Notice the fact that "Architecture" and "LONG LEGACY OF SECURITY HOLES"
are seperated by the word AND, the *NIX architecture is not where security
holes are, it's at the app. level. Contrary to NT.
>
>>
>>http://www.lantimes.com/testing/98compare/pcfirewa.html
>
>IMHO- A firewall that's GUIless or at least looks unfriendly is a great
thing for firewalls. If it's a user-friendly interface, too many people
consider themselves configuration experts because they can point-and-click....
D. Clyde Williamson
http://www.interhack.net/people/dclydew/
--------------------------------------------
Quidquid latine dictum sit, altum viditur. |
(Anything in Latin sounds profound.) |
--------------------------------------------
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
