Firewalls: RE: Gauntlet vs. Sidewinder

Firewalls
(October 1996)

Indexed By Thread: [Previous] [Next]

Subject:	RE: Gauntlet vs. Sidewinder
From:	"Davidson, Clyde" <CDAVIDSO @ IS . NMH . NMH . ORG>
Date:	Fri, 4 Oct 1996 09:54:00 -0500
To:	Firewalls <Firewalls @ GreatCircle . COM>, "'joav . kohn @ us . landisstaefa . com'" <joav . kohn @ us . landisstaefa . com>

Since this still is the subject, I've been told that Sidewinder works   
just that way. External users can only send to the sendmail that is on   
the external side of Sidewinder. It then passes the message to the   
sendmail on the internal side of Sidewinder. The internal sendmail then   
re-routes it to the internal servers. Therefore, if you crack the   
sendmail on the external side you still don't have access to the internal   
network.

Clyde Davidson
Data Security Coordinator
NMH


 ----------
Joav Kohn wrote:

"The proper way to set this up is to have the firewall itself accept mail   
with
smapd and sendmail v8.6 and then re-route that mail to the internal   
servers.
The internal servers are never vulnerable to an attack because the   
outside
world cannot talk directly to them."

Indexed By Date	Previous:	Re: NT FTPd? From: Adam Shostack <adam @ homeport . org>
Indexed By Date	Next:	Re: Check Point SYNDefender and SYN Flood Attacks From: Bradley Brown <bradley @ us . checkpoint . com>
Indexed By Thread	Previous:	Re: Gauntlet vs. Sidewinder From: "Bird,Tina" <TBIRD @ cerner . com>
Indexed By Thread	Next:	Re: Gauntlet vs. Sidewinder From: "K.M. Goertzel" <goertzek @ wangfed . com>