>>>>> "Joe" == Joseph Judge <joej @
Joe> With the release of the Solaris versions of Gauntlet and
Joe> SmartWall, the ability of buying the source code has disappeared.
As some black-hat folks I know might say:
Joe> Does anyone else muck with the source code like I do ?
I do... For internal stuff here, I like to use bits of FWTK for
various jobs. Some tools are heavily hacked, some are just compiled
as-is, and most are somewhere in the middle.
In consulting situations, I typically recommend Gauntlet if someone
wants to "buy a firewall," or need something like that for a bastion
host. I've never known anyone with Gauntlet (besides me) to hack at
In reality, I suspect that this is just a sign of the firewalling
times. Firewalls are becoming commodity items. People don't
typically screw around with their household appliances and other
commodity-type things. Firewalls are headed in the same direction,
and I think that's only going to continue as many IS organizations
continue to want to hire button-pusher types, and buy things that
claim to bring their systems to that level.
Whether this is a Good Thing, a Bad Thing, or some combination thereof
(I vote for the latter, myself) isn't really relevant; it's what's
happening. As a result, the here-are-some-tools-build-it-yourself
approach will probably continue to be used in places where it has been
done alreday, and almost all new installations will be of the
Matt Curtin Chief Scientist Megasoft, Inc. cmcurtin @
http://www.research.megasoft.com/people/cmcurtin/ I speak only for myself
Death to small keys. Crack DES NOW! http://www.frii.com/~rcv/deschall.htm