I have several more questions that need answered for a UNIX firewall, I am an
auditor who understands the questions that need to be asked, I just do not
understand what all the reasons are:
1 - I have read that the DNS should not be on the firewall yet I read that one
expert says that is not important, is it an important control?
2 - What controls does COPS bring to the picture that the ISS suite do not?
3 - What proof should I request that there are no rhosts running on the
firewall?
4 - For a secure environment how many and which ports should be open or not?
5 - What is the product EXCEED?
6 - What are CGI scripts? What are their control weakness?
7 - Should their be logging externally (outside)of the firewall?
8 - Are extended ACL's a security risk and how?
Jeffrey Loewenstein
[EMAIL PROTECTED]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
