In article <199501220939 .
DAA24379 @
bsdi .
sccsi .
com>, darren @
sccsi .
COM writes:
>In the previous message, Wulf Losee said:
>
>> Thanks,
>> Wulf
>>
>> PS: Didn't Mr. Schwartau's have something to do with the development of
>> this product? Please correct me if I'm wrong.
>>
>
>I'm not sure of that; but I can say this:
>
>I wasn't impressed with the magazine/rag; it seemed to use a LOT
>of hyperbole, and Schwartau's article seemed to be very market-ese
>stuff.
>
>Also, I'm not a fanatic or anything, but his comments about smb seemed
>(to me) in rather bad taste. I mean, smb's not Moses or anything, but
>deriding someone who has contributed so much and who clearly (IMHO)
>knows vastly more about the subject (firewalls)- well, it just seems
>rude.
>
>It certainly smelled bad to me.
I agree. A paragraph excerpt so people know what we're talking about
(Feb 94 _Internet World_ page 48 article by Winn Schwartau):
"In mid-1994, _Firewalls and Internet Security_ by Cheswick and Bellovin
appeared on the scene and was quickly regarded as the definitive work
on the subject of firewalls. The problem, however, is that the Cheswick/
Bellovin book takes no note of type enforcement, assured pipelines, or the
concept of defense in depth (willing to sacfrifice a pawn to save a king).
The entire solutions-oriented subject treatment is based on technology
that has been largely superseded by the advanced principles of type
enforcement."
What wasn't said was that the Cheswick and Bellovin book was backed
up by years of referreed papers and academic review. That
"type enforcement, assured pipelines, or the concept of defense in depth"
hasn't been time tested or even explained very well (if at all) in
publically available papers in the context of Internet security.
Enough said - you get the idea...
--
Phil Trubey |
NetPartners | Providing Internet products and services.
E-mail: phil @
netpart .
com | Home Page: http://www.netpart.com/
Phone: 714-759-1641 |
|
|
