On 12/9/05, Lindsay Hill <[EMAIL PROTECTED]> wrote: > > Think carefully about the implications of having a session that never > times out. What would happen if the session was not properly closed > down by the client/server? Your connection tables would eventually > fill up with old connections. > > > Besides that, there are security implications as well: remember that if a connection stills there in the connnections table and if an attacker knows you're no longer there, then it's a connection easier/interesting to spoof and hijack, with a valid session already running...
That's why they say that misconfiguration is often the firewall's #1 problem :-| - Martín. -- ** Mi página web: http://gama.fime.uanl.mx/~mhoz/ * "Somos consecuencia del pasado, y causa de nuestro futuro." * "Este mundo no nos ha sido legado por nuestros padres, sino lo hemos recibido prestado por nuestros hijos..." * "E no final das contas, como diz um sábio persa, o amor é uma doença da qual ninguém quer livrar-se". Paulo Coelho ** My Linux - http://www.slackware.com == My BSD - http://www.openbsd.org ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
