Christopher -
The following is Checkpoint's official response to your query re: the
InfoWorld article. -Barb
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Barbara Jaarsma, Sr. Technical Support Engineer - x250 800-429-4391
415-562-0400
CheckPoint Software Technologies, Inc.
400 Seaport Court - Suite 105 barbara @
us .
checkpoint .
com
Redwood City, California 95063 http://www.checkpoint.com
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Dear Check Point Resellers & Customers,
A product comparison of firewall products which included CheckPoint
FireWall-1 appeared in the July 29 issue of InfoWorld magazine. While
the review was overall highly favorable, it incorrectly stated that
during the system boot process, the system is vulnerable to attack. We
would like to assure you that this information is inaccurate and that we
reached agreement with InfoWorld to print a correction in next week?s
issue.
During the testing process, the InfoWorld reviews staff did not follow
the company?s recommended boot procedures which are specified on
pages 16-3 and 16-4 in the in the CheckPoint FireWall-1 user manual.
When installing the product, the publication?s reviews staff did not
turn off the IP forwarding function.
Under these circumstances, IP addressing forwards packets before the
system boots. This occurrence is easily addressable by following the
company?s recommended boot procedures which are outlined in the
manual.
The review incorrectly stated that Check Point Software was unaware
that this activity could occur and should have indicated that these
issues do not arise when users follow the company?s recommended boot
procedures as stated in the user manual. This is incorrect as
evidenced by the fact that the Check Point user manual specifically
addresses how to avoid security risks during boot procedures.
We are committed to offering you, our business partners and customers,
the best possible service and product performance. We will keep you
aware of any and all issues raised regarding our company or our products
and we thank you for your continued support of Check Point Software
Technologies. If you have any further questions concerning this matter,
we encourage you to contact us.
______________________________________________
Jessica Johannes, Public Relations Specialist
CheckPoint Software Technologies
400 Seaport Court, Suite 105
Redwood City, CA 94063
415-562-0400 x 236
jessica @
us .
checkpoint .
com
http://www.checkpoint.com
Christopher Klaus wrote:
>
> In this weeks InfoWorld, they have done a comparision of many of the commercial
> firewalls. Might be worthwhile to take a look at if you are going to buy a
> firewall.
>
> There's also an article in InfoWorld , July 29, 1996 Issue, on Page 79
> with Marcus Ranum & I discussing 'Does scanning for vulnerabilities mean your
> firewall is safe?'
>
> Thought it might be worth taking a look at if you missed it.
>
> --
> Christopher William Klaus Voice: (404)252-7270. Fax: (404)252-2427
> Internet Security Systems, Inc. "Internet Scanner finds
> Ste. 115, 5871 Glenridge Dr, Atlanta, GA 30328 your network security holes
> Web: http://iss.net/ Email: cklaus @
iss .
net before the hackers do."
--
Follow-Ups:
References:
|
|
