Search This Blog

Tuesday, October 23, 2007

firewall-wizards Digest, Vol 18, Issue 12

Send firewall-wizards mailing list submissions to
firewall-wizards@listserv.icsalabs.com

To subscribe or unsubscribe via the World Wide Web, visit
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards
or, via email, send a message with subject or body 'help' to
firewall-wizards-request@listserv.icsalabs.com

You can reach the person managing the list at
firewall-wizards-owner@listserv.icsalabs.com

When replying, please edit your Subject line so it is more specific
than "Re: Contents of firewall-wizards digest..."


Today's Topics:

1. Re: firewall-wizards Digest, Vol 18, Issue 10 (chris mr)
2. PacSec 2007 Agenda (Tokyo 11-29/30) (Dragos Ruiu)


----------------------------------------------------------------------

Message: 1
Date: Sat, 20 Oct 2007 19:09:39 -0700 (PDT)
From: chris mr <chris.misztur@yahoo.com>
Subject: Re: [fw-wiz] firewall-wizards Digest, Vol 18, Issue 10
To: firewall-wizards@listserv.icsalabs.com
Message-ID: <815985.51172.qm@web63707.mail.re1.yahoo.com>
Content-Type: text/plain; charset=us-ascii

No, I have the Security+ license. I was just confused as to the way that the ASA treats internal traffic.

----- Original Message ----
From: "firewall-wizards-request@listserv.icsalabs.com" <firewall-wizards-request@listserv.icsalabs.com>
To: firewall-wizards@listserv.icsalabs.com
Sent: Friday, October 19, 2007 11:00:03 AM
Subject: firewall-wizards Digest, Vol 18, Issue 10

Send firewall-wizards mailing list submissions to
firewall-wizards@listserv.icsalabs.com

To subscribe or unsubscribe via the World Wide Web, visit

https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards
or, via email, send a message with subject or body 'help' to
firewall-wizards-request@listserv.icsalabs.com

You can reach the person managing the list at
firewall-wizards-owner@listserv.icsalabs.com

When replying, please edit your Subject line so it is more specific
than "Re: Contents of firewall-wizards digest..."


Today's Topics:

1. Re: DMZ to INSIDE Communication (Anthony)
2. Ramifications from increasing IPsec SA or rekey times?
(Christopher J. Wargaski)


----------------------------------------------------------------------

Message: 1
Date: Mon, 15 Oct 2007 18:05:22 -0500
From: Anthony <ez4me2c3d@gmail.com>
Subject: Re: [fw-wiz] DMZ to INSIDE Communication
To: Firewall Wizards Security Mailing List
<firewall-wizards@listserv.icsalabs.com>
Message-ID: <4713F232.9000409@gmail.com>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed

So you weren't running into the issue of the base license not allowing
DMZ initiated traffic to the inside network?

"With the Base platform, communication between the DMZ VLAN and the
Inside VLAN is restricted: the Inside VLAN is permitted to send traffic
to the DMZ VLAN, but the DMZ VLAN is not permitted to send traffic to
the Inside VLAN."

http://cisco.com/en/US/docs/security/asa/asa72/getting_started/asa5505/quick/guide/vlans.html#wp1101628

Anthony

chris mr wrote:
> Thanks for your help...
>
> I had to add another static into the ASA and ACL on DMZ in.
>
> mail.domain.com = 12.x.x.x
> EXCHANGE1 = natted ip of Exchange on inside
>
> static (inside,DMZ) tcp 12.x.x.x smtp EXCHANGE1 smtp netmask 255.255.255.255
>
>
> ____________________________________________________________________________________
> Don't let your dream ride pass you by. Make it a reality with Yahoo! Autos.
> http://autos.yahoo.com/index.html
>
>
>
> _______________________________________________
> firewall-wizards mailing list
> firewall-wizards@listserv.icsalabs.com
> https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards
>
>

------------------------------

Message: 2
Date: Tue, 16 Oct 2007 14:29:45 -0500
From: "Christopher J. Wargaski" <wargo1@gmail.com>
Subject: [fw-wiz] Ramifications from increasing IPsec SA or rekey
times?
To: firewall-wizards@listserv.icsalabs.com
Message-ID:
<17065120710161229t4b7e0985kcfef36b91b516053@mail.gmail.com>
Content-Type: text/plain; charset=ISO-8859-1

Folks--

I am investigating what the ramifications are for increasing the SA
life or rekey time on an IPsec VPN. Certainly the longer the same SA
stays around, the longer the Wiley Wacker has to break my key.

Does anyone know of some documents suggesting vulnerabilities from
or ramifications of increasing the SA lifetime or rekey time?


------------------------------

_______________________________________________
firewall-wizards mailing list
firewall-wizards@listserv.icsalabs.com
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards


End of firewall-wizards Digest, Vol 18, Issue 10
************************************************

__________________________________________________
Do You Yahoo!?
Tired of spam? Yahoo! Mail has the best spam protection around

http://mail.yahoo.com

------------------------------

Message: 2
Date: Sun, 21 Oct 2007 21:42:20 -0700
From: Dragos Ruiu <dr@kyx.net>
Subject: [fw-wiz] PacSec 2007 Agenda (Tokyo 11-29/30)
To: firewall-wizards@honor.icsalabs.com
Message-ID: <200710212142.21191.dr@kyx.net>
Content-Type: text/plain; charset="us-ascii"

Talk selections for PacSec 2007 - November 29 and 30 - Aoyama Diamond Hall

-------
- Programmed I/O accesses: a threat to virtual machine monitors? - Loic
Duflot,

- Developing Fuzzers with Peach - Michael Eddington, Leviathan Security

- Cyber Attacks Against Japan - Hiroshi Kawaguchi, LAC

- Windows Localization: Owning Asian Windows Versions - Kostya Kortchinsky,
Immunity

- TOMOYO Linux - Toshiharu Harada, NTT Data

- IPV6 Demystified - Jun-ichiro itojun Hagino , IPv6Samurais

- Automated JavaScript Deobfuscation - Alex Rice, Websense Security Labs

- Enter Sandman (why you should never go to sleep) - Nicolas Ruff & Matthieu
Suiche, EADS

- Agent-oriented SQL Abuse - Fernando Russ & Diego Tiscornia, Core

- Bad Ideas: Using a JVM/CLR for Intellectual Property Protection - Marc
Schoenefeld, University of Bamberg

- Heap exploits are dead. Heap exploits remain dead. And we have killed them.
- Nicolas Waisman, Immunity

- Deploying and operating a Global Distributed Honeynet - David Watson,
Honeynet Project

- Office 0days and the people who love them - TBA, Microsoft
.
(I would also like to thank Colin Delaney and Stephen Ridley as standby
presenters)

------

Final Dojo schedule will be announced shortly but will include
both English and Japanese language dojos. In English Dojos will
include: Saumil Shah's Exploit Lab, Andrea Barisani's Linux Hardening,
and the folks from Immunity doing a course on bugfinding
with the Immunity debugger. In Japanese: Yuji Ukai will be
doing a reverse engineering course, and the McAfee/Foundstone
folks will be translating their Ultimate Web Hacking course into
Japanese for the first time. Dojos will be on Nov 27/28.

Talk descriptions will be up shortly. :-)

cheers,
--dr

P.s. other 2008 dates: CanSecWest March 26-28, EUSecWest May21/22
--
World Security Pros. Cutting Edge Training, Tools, and Techniques
Tokyo, Japan November 29/30 - 2007

http://pacsec.jp
pgpkey http://dragos.com/ kyxpgp


------------------------------

_______________________________________________
firewall-wizards mailing list
firewall-wizards@listserv.icsalabs.com
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards


End of firewall-wizards Digest, Vol 18, Issue 12
************************************************

Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)