I suspect the most common firewall weakness at all but
military sites is the result of policy and implementation.
A firewall providing the maximum security it is capable of
would be blocking every packet. It would be an open wire.
Anything less than that compromises the maximum security
attainable for communications purposes.
I suspect that many organizations continually open
holes for convenience, political appeasement, and
controversial functionality. Sometimes it is often
difficult to open holes for small segements of the
interior population so its opened globally.
Whenever I hear, "Oh, we just installed a firewall",
I always ask "Great, what do you let through?".
Firewalls in the construction industry are required to
be almost completely solid from the ground to the ceiling. :)
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
