Dailydave mailing list archives
RE: Slashback!
From: "Skyler King" <SKing () us checkpoint com>
Date: Wed, 18 Jan 2006 13:10:22 -0800
:) Yeah, that bugged me for a long time as well. There are other things that bug me...For instance, the configuration wizard should give the user an option to automatically add his DNS servers to the trusted zone. sky
-----Original Message----- From: Dave Korn [mailto:dave.korn () artimi com] Sent: Wednesday, January 18, 2006 12:33 PM To: Skyler King; 'Dino A. Dai Zovi'; 'Taylor, Gord' Cc: dailydave () lists immunitysec com Subject: RE: [Dailydave] Slashback! Skyler King wrote:Hello Gord, Do you know how the firewall identifies a "friendly" network? Does the firewall tap into the wireless layer in Windows to get out the SSID and base station MAC address, or does it just verify the subnet? I don't actually "use" any of my windows boxes, so I have never used this kind of stuff :).I can't speak for other PFWs, but ZoneAlarm uses acombination of thegateway ip and MAC address to indentify a network (wiredand wireless).In addition, unsecured wireless networks are automatically put in the untrusted "Internet" zone. skyUp until very recently, ZA was sooooo secure that it didn't even place the loopback adapter/subnet in the trusted zone by default. <g> Needless to say this was responsible for more confusion than security.... cheers, DaveK -- Can't think of a witty .sigline today....
Current thread:
- Re: Slashback!, (continued)
- Re: Slashback! Technocrat (Jan 15)
- Re: Slashback! Alexander Bochmann (Jan 16)
- Re: Slashback! Dino A. Dai Zovi (Jan 16)
- Re: Slashback! Alexander Bochmann (Jan 16)
- RE: Slashback! Taylor, Gord (Jan 16)
- Re: Slashback! Dino A. Dai Zovi (Jan 16)
- Re: Slashback! byte_jump (Jan 17)
- Re: Slashback! Curt Wilson (Jan 17)
- Re: Slashback! Dino A. Dai Zovi (Jan 16)
- Re: Slashback! Technocrat (Jan 15)
- RE: Slashback! Taylor, Gord (Jan 16)
- RE: Slashback! Skyler King (Jan 18)
- RE: Slashback! Dave Korn (Jan 18)
- RE: Slashback! Skyler King (Jan 18)