Thomas,
#Would you say that SINIX is more secure than Solaris? After all, I can
#hardly remember any published vulnerability. *g* And this is exactly the
#point that I have forgotten to make: Up to now probably not that many
#whitehats have bothered to closely examine firewalls apart from
#FireWall-1, since you hardly find any at customer sites. (Although I am
#told such things exist. *g*) Same with DG/UX. So, at the moment, I would
#recommend people to prefer FireWall-1 over Gauntlet _because_ the
#vulnerabilites have been found and FireWall-1 now has _less_
#vulnerabilites than before.
Perhaps a lot of holes are found in Firewall-1 because there are a lot
of holes in Firewall-1. Personally, I would prefer to go with a firewall
product that has better quality right from the beginning. If a car is
designed with a flaw in it that causes the gas tank to explode when rear
ended do I want to rush out and buy that car after they fix that one flaw?
I don't want to drive a car that was designed by engineers who can't even
stop the gas tank from blowing up. I also don't want to buy firewalls that
Dug Song and friends can make swiss cheese of. If those engineers wrote a
product with that many problems in it to begin with then I don't trust the
product. Basically, my whole point is don't buy cars with exploding gas
tanks:-)
Regards,
Jeffery Gieser
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
