firewall-wizards@listserv.icsalabs.com
To subscribe or unsubscribe via the World Wide Web, visit
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards
or, via email, send a message with subject or body 'help' to
firewall-wizards-request@listserv.icsalabs.com
You can reach the person managing the list at
firewall-wizards-owner@listserv.icsalabs.com
When replying, please edit your Subject line so it is more specific
than "Re: Contents of firewall-wizards digest..."
Today's Topics:
1. Yest another application-specific firewall-like tool (ldap)
(ArkanoiD)
2. Re: Proxies, opensource and the general market: what's wrong
with us? (david@lang.hm)
----------------------------------------------------------------------
Message: 1
Date: Tue, 3 May 2011 21:33:30 +0400
From: ArkanoiD <ark@eltex.net>
Subject: [fw-wiz] Yest another application-specific firewall-like tool
(ldap)
To: firewall-wizards@listserv.cybertrust.com
Message-ID: <20110503173330.GA16047@eltex.net>
Content-Type: text/plain; charset=koi8-r
http://resources.idgenterprise.com/original/AST-0024304_Quest_WP_Its9AMKnowWhatDirectoryDoing.pdf
what is most interesting in tools like that is
a) similar functionality is rarely integrated in firewalls, despite the fact it is most obvious place for deployment.
firewall vendors show little to no interest, though
b) tool vendors are likely to avoid the word "firewall"
c) there is zillion of it for various protocols and scenarios and no one ever thinks on making uniform solution of those
components
------------------------------
Message: 2
Date: Tue, 3 May 2011 09:05:11 -0700 (PDT)
From: david@lang.hm
Subject: Re: [fw-wiz] Proxies, opensource and the general market:
what's wrong with us?
To: Firewall Wizards Security Mailing List
<firewall-wizards@listserv.cybertrust.com>
Message-ID: <alpine.DEB.2.00.1105030900500.25985@asgard.lang.hm>
Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed
On Mon, 2 May 2011, Darren Reed wrote:
> On 2/05/11 08:51 AM, ArkanoiD wrote:
>> On Fri, Apr 29, 2011 at 12:50:35PM -0700, Darren Reed wrote:
>>> I think that what's happened is the relevant open source
>>> security tools for today are no longer proxies or packet
>>> filters but plugins for your web browser.
>>
>> [skipped]
>>
>> Sure. But I still do not see why does it affect firewalls, which are
>> still there.
>
> What's sexy about working on an open source firewall
> thing that a few people might download and use vs
> working on a plugin for firefox that gets 100,000
> downloads every month?
>
> Perhaps a more relevant problem to consider is that
> as we (as a society) move to accessing the Internet
> directly, from devices such as our phones, the threat
> model and solutions used to address that need to be
> rethought in the context of what the device's operating
> system needs to have running and protected.
there are two halves to security
protecting the consumer endpoint
protecting the servers the consumers are accessing
(well, technically there's a third category of protecting business to
business communication, but that is so similar to protecting servers that
I don't think it's worth treating separately)
targeting consumers is gathering information in retail quantities (even
with automation it's a lot of data, and using it generates a lot of
traffic)
targeting the servers is gathering information in wholesale quantities,
and potentially allows functions that just aren't available through the
retail interfaces.
both need to be protected.
David Lang
------------------------------
_______________________________________________
firewall-wizards mailing list
firewall-wizards@listserv.icsalabs.com
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards
End of firewall-wizards Digest, Vol 58, Issue 4
***********************************************
No comments:
Post a Comment