'Electronic attack that firewalls do not protect against'
There's that new funky laser-coathanger gun that can kill computers from 25
yards (or something).
Attacks from the inside are not touched by firewalls.
You need to remember that firewalls only look at the perimeter and attempts
to cross it, and not what is going on inside it.
You could have a trojan on your computer that initiates outbound
connections, that is not suspicious and so is ignored.
Cheers,
Joe Dauncey
[EMAIL PROTECTED]
----- Original Message -----
From: Ryan Russell <[EMAIL PROTECTED]>
To: Southnet <[EMAIL PROTECTED]>
Cc: <[EMAIL PROTECTED]>
Sent: Sunday, October 24, 1999 11:10 PM
Subject: Re: Firewall weaknesses
>
>
>
> > I am a student of information science at Otago University, and have
been an
> >avid subscriber to the list for almost a year now. I am soon to sit an
exam
> >and one of the questions relates to those types of electronic attack that
> >firewalls do not protect against. If anyone has any ideas in this area,
they
> >would be much appreciated. I am not looking for instructions obviously,
just
> >general classes of attack that firewalls fail to counter.
>
> If there is a simgle answer to this question, it has to be client-side
holes.
> Things like mail viruses, browser holes, etc.. Some firewalls can
> be configured to help with this, but usually only after the client
> hole has been identified, and used on someone.
>
> >For example I have
> >heard on a number of occasions that SYN flooding, due to its location in
the
> >connection initiation defies firewall protection. I am a little skeptical
> >myself, but any input would be much appreciated...
>
> Most firewalls should be able to be made resistant to SYN floods. FW-1,
> for example, ahs a SYN defender feature.
>
> Ryan
>
>
>
>
> -
> [To unsubscribe, send mail to [EMAIL PROTECTED] with
> "unsubscribe firewalls" in the body of the message.]
>
>
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
