Its things like this that you need to look out for when studying using
boson. As I stated in a previous post, there are several questions (at least
in the CCSE study exam) that have incorrect answers. However, if you are
going to pass the CCSE, you should be able to spot these quickly.
Interestingly, Boson references the page numbers in the courseware, so armed
with the courseware and boson, you SHOULD at least get a better score on the
CCSE.
Frank
-----Original Message-----
From: Lance Spitzner [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, January 17, 2001 9:25 AM
To: [EMAIL PROTECTED]
Subject: [FW1] Boson FW-1 Admnistrator Exam
Recently, I was asked a question about a "Boson"
FW-1 Administrator exam. I have no idea what this
exam is, nor who sponsors it. However, if the
material quouted below is true, then this question
greatly disturbs me. I wanted to know if anyone
else has ran into this.
--- snip snip ---
I have always thought that it is necessary to harden the OS for the firewall
server. However, I was doing the Boson Checkpoint FW-1 Administrator
practice exams when I came across this question:
Question: Why is it unnecessary for Firewall-1 to harden the OS?
Answer: Firewalls that do not analyze the packet until it gets to the
application layer need to protect themselves from the lower layer attacks.
Firewall-1 protects itself by analyzing all the layers of the packet.
Therefore it is unncessary for the administrator to harden the OS for
Firewall-1 server.
Is this true????
--- snip snip ---
This is absolutely NOT true. If an exam is making these assumptions,
then it shows that the author has a total lack of security knowledge.
No firewall is impervious to vulnerabilities, Bugtraq demonstrates this
again and again. Also, base OS armoring protects the firewall against
rulebase or administrative misconfigurations. I highly recommend OS
armoring for all firewalls, regardless of the vendor. Part of security
is reducing risk at all levels.
--
Lance Spitzner
http://project.honeynet.org
============================================================================
====
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
============================================================================
====
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
