RE: what should I do when....

["Worrell, Brian" <BWorrell () isdh IN gov>]

 Philippe,

What do you classify devices such as the Cisco ASA as?  It's a Firewall that does more.  Of course you pay for those 
features.  I think 3Com has one (via Tipping Point), and bet the others do as well.

With the right tools, or features, could not a device such as those help protect you from Numbers 3 and 4 you have 
listed below?  Granted it would mean IPS features and such.

Brian



-----Original Message-----
From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On Behalf Of Rivest, Philippe
Sent: Thursday, July 10, 2008 7:24 AM
To: Ansgar -59cobalt- Wiechers; security-basics () securityfocus com
Subject: RE: what should I do when....

It is false and the reason is firewall is just a device to protect from a few vectors of attack. If you want to bullet 
proof a system you need to adopt a broader solution.


Firewall wont help:
1- physical attack
2- session hijacking
3- virus put into a email
4- user browsing & install bad software
....

Merci / Thanks
Philippe Rivest, CEH
Vérificateur interne en sécurité de l'information
Courriel: Privest () transforce ca
Téléphone: (514) 331-4417
www.transforce.ca

Vous pourriez imprimer ce courriel, mais faire pousser un arbre c'est long.
You could print this email, but it does takes a long time to grow trees.
 

-----Message d'origine-----
De : listbounce () securityfocus com [mailto:listbounce () securityfocus com] De la part de Ansgar -59cobalt- Wiechers 
Envoyé : 9 juillet 2008 10:11 À : security-basics () securityfocus com Objet : Re: what should I do when....

On 2008-07-08 Weir, Jason wrote:
> Quote of the day....  
>
> "Bullet-proofing your systems is as easy as using a firewall"
>
> If it was only true....

It is quite true, you're just underestimating the task of maintaining a firewall.

Regards
Ansgar Wiechers
--
"All vulnerabilities deserve a public fear period prior to patches becoming available."
--Jason Coombs on Bugtraq