Security Hole found in NAI Firewall

Security Hole found in NAI Firewall
Kevin Poulsen, SecurityFocus 2000-05-22

Censorware gaffe turns "World's Most Secure Firewall" into an open door.

Expand all | Post comment

The key is not "quick response" 2000-05-22
Anonymous (1 replies)

Quick Response is a 'MUST' 2000-05-22
Anonymous (2 replies)

Quick Response is a 'MUST' 2000-05-24
Anonymous

Quick Response is a 'MUST' 2000-05-26
Anonymous

This is HUGE 2000-05-22
Anonymous

NAI and Gauntlet 2000-05-23
Anonymous

Security in depth is a good policy 2000-05-23
Anonymous (1 replies)

There is more to making a network and its hosts secure than a "Firewall". These products are gateways in reality, the Firewall is the security filter in its entirety. This includes the routers and switches and internal proxy servers as well as any mail forwarders. There is more to a "Firewall" than installing a vendor product and saying you are secure.

Security still comes down to having good people and procedures. It does not matter what the products are, they may all be secured (with varying degrees of ease), it is more how they are deployed and managed. Gauntlet needs to be installed on a "SECURED" host. This is the main issue as this rarely occurs with "Security Vendors" sending "Engineers" with little or no training to install these. A 1 week course does not teach security. It comes from experiance.

These problems are an anoyance rather than a security compromise if the network is configured correctly in the first place.

Regards,

Craig S Wright

wright_c (at) demorgan.com (dot) au [email concealed]

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/articles/40/2007#2007

Security in depth is a good policy 2000-05-24
Anonymous

Karma and Security Product Marketing 2000-05-24
Anonymous

I had problems preventing stuff listening on external interfaces 2000-05-24
Anonymous

No comment! 2000-05-24
Anonymous

The scary thing... 2000-05-26
Anonymous

Simplicity 2000-05-29
Anonymous