Great Circle Associates Firewalls
(April 1996) 		 
Indexed By Date: [Previous] [Next] Indexed By Thread: [Previous] [Next]
Subject: Re: discovering what a firewall can pass
From: "W.C. Epperson" <epperson @ vak12ed . edu>
Date: Mon, 29 Apr 1996 9:02:10 EDT
To: 72702 . 1667 @ CompuServe . COM
Cc: firewalls @ greatcircle . com
In-reply-to: <960427231146_72702 . 1667_FHP29-1 @ CompuServe . COM>; from "John Fitzpatrick" at Apr 27, 96 7:11 pm 
> 
> Sound advice.  However, if, for example, I cannot telnet to
> somehost.someplace.com, does that mean that 
> a> the firewall doesn't allow it?
> b> somehost.someplace.com is down?
> c> my ip stack is misconfigured?
> d> some internal router is hosed?
> e> the Internet has been dismantled by the FCC?
> you get the idea... ;)
> 
Sounds like your real question is "may I", not "can I".  Ask for a copy of
the security policy.  If they won't give it to you, either get a waiver
from the client, an umbrella liability policy, or walk (briskly) away from
the assignment.  

Just my $.019987564 (wish they'd replace this darn Pentium).

--
W.C. Epperson			"I have great faith in fools. 
Senior SE                        Self-confidence, my friends call it."
Information Security Officer             --Edgar Allan Poe--
DBA Emeritus
Curmudgeon-for-Life
Virginia Dept. of Education	        
epperson @
 pen .
 k12 .
 va .
 us
References:
Indexed By Date Previous: Re: Actually, in terms of shear numbers, Checkpoint sold about 3,000 units last year. However, you
From: Mike . Jones @ unifiedtech . com (Mike Jones)
Next: Re: DEC Firewall / TIS Gauntlet Questions
From: Frederick M Avolio <avolio @ trusted . com>
Indexed By Thread Previous: Re: discovering what a firewall can pass
From: Kirill Bolshakov <raven @ ssrouter . ioffe . rssi . ru>
Next: Re: discovering what a firewall can pass
From: Pete Shipley <shipley @ dis . org>
Google
 
Search Internet Search www.greatcircle.com