That's fine as long as you have 24x7 surveillance. But having logs showing an address doesn't give you much comfort if the intruder came in, did the damage and left before anyone could detect and stop him. I would submit that prevention is still the best medicine.
----------
From: inter[SMTP:inter @
blue .
misnet .
com]
Sent: Monday, September 09, 1996 1:50 PM
To: Steve Conner
Cc: Jesse; firewalls @
GreatCircle .
COM
Subject: Re: FreeBSD Firewall Package
On Mon, 9 Sep 1996, Steve Conner wrote:
> Hello Jesse,
>
> My company, CYCON Technologies, currently offers a FreeBSD firewall called
> CYCON Labyrinth. It is a packet filtering firewall that not only provides
> statefull security but full network to network address translation.
>
> Please send me an email with your fax number and I will ship out our
> literature including the current pricing.
>
> Steve
>
> ---------------------------------------------------------------
> Steve Conner Cypress Consulting, Inc.
> sconner @
cycon .
com 703-256-1279
> Manager, Research & Development http://www.cycon.com
> CYCON Labyrinth, Firewall and Network Address Translator
> ---------------------------------------------------------------
>
> On Wed, 8 Jan 1986, Jesse wrote:
>
> > Hello Everyone! Sorry to bother you, but we are just putting in a
> > new server at my workplace, and I was wondering if anyone had any
> > suggestions on Free/Commercial 4.4BSD or FreeBSD firewall or proxy
> > packages.
> >
>
>
This is what I think about firewalls..
If you provide a way in for 1 address/domain name then you provide a way
in for the intruder. instead of systems spending so much money in denying
service to ppl try spending money on better logs/a better way of tracing
an intruder. There will allways be a way in.. the poit is will they get
cought
Follow-Ups:
|
|
