Mikael Olsson wrote:
>
> Ronneil Camara wrote:
> >
> > Hi everyone. We'll be starting the pre-staging of our project next week. I
> > was tasked to test the effectiveness of the IBM Firewall for AIX. So what
> > tools can you suggest to test against this IBM firewall?
>
> I'll be blunt here. If you need to ask that question, you aren't the
> right guy to test the effectiveness of the firewall. Sure, you can
> use nmap to test what would happen if someone does a more-or-less plain
> connect() through the firewall. But unfortunately, there is a great
> deal more to testing if a firewall is "good enough".
I agree with Mikael - but of course even if you aren't the `right guy'
to test the firewall, you may be the `only guy' available (unless you
want to outsource this, which could be very costly - although not
necessarily more costly than fluffing it).
Anyway, assuming that you will be doing the job, I suggest you take a
look at nessus (www.nessus.org) as well; nmap is a port scanner (and a
good one at that), but it isn't intended to be a security scanner, which
nessus is. It's a starting point, at least.
regards
gram
--
Dr Graham Wheeler E-mail: [EMAIL PROTECTED]
Director, Research and Development WWW: http://www.cequrux.com
CEQURUX Technologies Phone: +27(21)423-6065
Firewalls/VPN Specialists Fax: +27(21)424-3656
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
