Bennett Todd [mailto:[EMAIL PROTECTED]] wrote:
> But if you're using something like CheckPoint, you
> really need to relax your standards of "disclosure";
> using a closed-source proprietary firewall is saying
> that you completely trust the vendor to keep you
> secure, and are willing to relinquish responsibility
> for things like reviewing the design and implementation
> of their product to them.
>
> This is the main reason that some of us do not specify
> proprietary code for critical security barriers.
Just a minor point of clarification, but one that is critical in relating
our position to others that are not in the security field: We do NOT
"completely trust the vendor", we are inherently distrustful, but we have
deemed the product, with all its potential shortcomings, provided by the
vendor to be an acceptable risk in our total security solution.
Mike
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
