On Thu, Feb 22, 2001 at 09:04:41PM -0500, [EMAIL PROTECTED] wrote:
> Always stay up to date on latest patches for the Firewall AND the OS.
Any competent administrator is already doing this for whatever systems are
being protected behind the firewall. If you've made a decent choice of
hardware and software for your firewall, you're already covering this by
keeping up on your systems.
> As for the comment on bugs with ASIC's, yes that is absolutley true.
> But there are bugs with Firewalls, OS and maybe even NIC card drivers that
> you have to keep up with compared to software based...
Whereas here, you're at the firewall vendor's mercy on whether *they* are
keeping up with things. Very few vendors are writing their own code
completely from scratch these days. If they are, then how likely is it
that they are thoroughly testing their code every time news of some new
vulnerability or issue comes through without some high-paying customer
jumping up and down on them to do so?
--
Devin L. Ganger <[EMAIL PROTECTED]>
"You really know you're in trouble when your boss decides upon a suicide
pact... and agrees to go first." -- Chris King
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
