Firewalls: RE: Gauntlet vs. Sidewinder

Firewalls
(October 1996)

Indexed By Thread: [Previous] [Next]

Subject:	RE: Gauntlet vs. Sidewinder
From:	Dan Tshin <dtshin @ bulldog . ca>
Date:	Mon, 7 Oct 1996 09:57:14 -0400
To:	"'Richard Stiennon'" <richards @ netrex . com>, "firewalls @ GreatCircle . COM" <firewalls @ GreatCircle . COM>

On Friday, October 04, 1996 3:26 PM, Richard Stiennon[SMTP:richards @
 netrex .
 com] wrote:
>At 07:07 PM 10/2/96 CDT, Hmm wrote:
>> >	I would be interested in hearing how checkpoint is securing their 
>>customers from SMTP based attacks!  From what I have seen, they simply
>pass it
>>through to a mail machine... If that mail machine happends to be running 
>>Sendmail 4.1, the attacker can blow holes right through the perimiter....?
>
>Well, how about not allowing telnet to the mail server? 
>
How do you do that and not allow mail hacking?

I have tried disabling telnet to a machine, but when I telnet to that machine's port 25, I'm in.

How about firewalls that actually store mail and then hand it off to an internal mail server?

dt

_______________________________________________
Dan Tshin                The Bulldog Group Inc.
Research and Development       416.594.9207:252
http://www.bulldog.ca          416.594.1473 Fax
_______________________________________________
A head is not merely a hat hangar. Just Use It.

Indexed By Date	Previous:	Re: TIMBUKTU From: Brian B Mitchell <mitchell_brian @ jpmorgan . com>
Indexed By Date	Next:	Re: Fireballs-Digest V5 #550 From: "william.wells" <william . wells @ damark . com>
Indexed By Thread	Previous:	Re: Gauntlet vs. Sidewinder From: "Marcus J. Ranum" <mjr @ v-one . com>
Indexed By Thread	Next:	RE: Gauntlet vs. Sidewinder -Reply From: Harris Demel <harris @ novell . com>