Firewalls: Re: sidewinder challenge

Firewalls
(July 1995)

Indexed By Thread: [Previous] [Next]

Subject:	Re: sidewinder challenge
From:	Craig Anderson <craiga @ Ipsilon . COM>
Date:	Mon, 31 Jul 1995 18:55:32 -0700
To:	mjr @ iwi . com
Cc:	ray @ skypoint . com, firewalls @ greatcircle . com, craiga @ Ipsilon . COM
In-reply-to:	Your message of "Sun, 30 Jul 1995 22:04:59 EDT." <9507310205 . AA18397 @ tis . com>

> 	Rather than see "take a blindfolded shot at the system"
> firewalls tests, I'd rather see: "here is a detail of our design,
> take it and study the exact configuration you will be attacking
> and come back in a week with testing tools" approach. Anything
> else is security through obscurity, and hopefully we've learned
> that that's not very good.
> 
> mjr.

So how about doing the Firewall industry equivalent of the NFS industries
week-long Inter-Op conference.  No marketing weenies allowed, just technical
people from each participating vendor attacking each others machines to
help improve the industry.  No technical results will be published.
If some vendor just wants free development help, don't help.  Just
point out to each other the weaknesses found.

Craig Anderson

Follow-Ups:

Re: sidewinder challenge
From: mulligan @ future . incog . com
Re: sidewinder challenge
From: mulligan @ future . incog . com

References:

sidewinder challenge
From: Marcus J Ranum <mjr @ iwi . com>

Indexed By Date	Previous:	Re: Secure-ID & NTP vulerabilities From: "Thomas V. Myers" <tvmyers @ icdc . delcoelect . com>
Indexed By Date	Next:	Re: I open my big mouth... proxies for Oracle? From: fwoyach @ cais . cais . com (Frederick Woyach)
Indexed By Thread	Previous:	sidewinder challenge From: Marcus J Ranum <mjr @ iwi . com>
Indexed By Thread	Next:	Re: sidewinder challenge From: mulligan @ future . incog . com