You subscribe to your vendor security update and get the most recommended OS for your firewall.
Of course, you need to have a testing appliance to deploy the patch or upgrade . If you dont have any, always confirm with your vendor or consultant if the release is recommended .
Also, you have to take note and read the Release Notes thoroughly. Find what is required on your environment and read it carefully ...
Sent from my BlackBerry® smartphone from du
-----Original Message-----
From: Phil Hanna <subscription (at) geeksvictoria.com (dot) au [email concealed]>
Sender: listbounce (at) securityfocus (dot) com [email concealed]
Date: Fri, 10 Aug 2012 22:29:18
To: <security-basics (at) securityfocus (dot) com [email concealed]>
Subject: Firewall Patching - Best Paractices
Hi All,
I'm looking for opinion for what are the industry's best paractice for
managing the upgrdae/patches to the firewalls. I'm devloping a process
to have the firewall updated/checked for patches regulary but looking
for opinion how other folks are doing it. My ideas are following:
- A mailing list for the company with all InfoSec community part of it
and then subscripte that list for updates from Cisco, Checkpoint.
* for Cisco, I've found the lists but for Checkpoint I couldn't figure
out where to subscribe.
- Infosec reffers the update/patch to the network teams and they
consider the risk factor and asses if the patch needs to be
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.
Of course, you need to have a testing appliance to deploy the patch or upgrade . If you dont have any, always confirm with your vendor or consultant if the release is recommended .
Also, you have to take note and read the Release Notes thoroughly. Find what is required on your environment and read it carefully ...
Sent from my BlackBerry® smartphone from du
-----Original Message-----
From: Phil Hanna <subscription (at) geeksvictoria.com (dot) au [email concealed]>
Sender: listbounce (at) securityfocus (dot) com [email concealed]
Date: Fri, 10 Aug 2012 22:29:18
To: <security-basics (at) securityfocus (dot) com [email concealed]>
Subject: Firewall Patching - Best Paractices
Hi All,
I'm looking for opinion for what are the industry's best paractice for
managing the upgrdae/patches to the firewalls. I'm devloping a process
to have the firewall updated/checked for patches regulary but looking
for opinion how other folks are doing it. My ideas are following:
- A mailing list for the company with all InfoSec community part of it
and then subscripte that list for updates from Cisco, Checkpoint.
* for Cisco, I've found the lists but for Checkpoint I couldn't figure
out where to subscribe.
- Infosec reffers the update/patch to the network teams and they
consider the risk factor and asses if the patch needs to be
immediately applied for at some regular cycle.
thanks,
P
------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.
http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442
f727d1
------------------------------------------------------------------------
[ reply ]