Great Circle Associates Firewalls
(October 1997) 		 
Indexed By Date: [Previous] [Next] Indexed By Thread: [Previous] [Next]
Subject: your signature file
From: "Franco RUGGIERI" <fruggieri @ selfin . net>
Date: Fri, 10 Oct 1997 14:55:55 +0200
To: "Bill Stout" <stoutb @ pios . com>
Cc: "GreatCircle forum" <firewalls @ GreatCircle . COM> 
Bill,
I realize that from somewhere within USA, Bosnia may appear distorted by a
distant perspective, but, please, focus your mind on what you are talking
about, or at least try to go back with your memory to just one year ago.
And, please, drop your "politically correct" (you name it this way, don't
you?) signature file when addressing this forum, not to unleash political
discussions where only technical ones are supposed to be hosted. 
BTW: you seem to me to be technically OK and I like reading from you.
TIA.
-------------------------------
Franco RUGGIERI
fruggieri @
 selfin .
 net

----------
> Da: Bill Stout <stoutb @
 pios .
 com>
> A: firewalls @
 GreatCircle .
 COM
> Oggetto: Looking for feedback on SCC Firewalls
> Data: giovedì 9 ottobre 1997 19.11
> 
> I haven't seen many of my customers use SCC products, so I'm curious
about
> experiences with their products.
> 
> 'Sidewinder' uses 'Type Enforcement', which is used by the operational
> kernel to tighten BSD security (in which no super-user status exists). 
One
> boots into an administrative kernel which has no networking capabilites
to
> administer the system.  Not being familiar with BSD, is 'Type
Enforcement'
> non-proprietary?  I do like their 'strikeback' capability, which collects
> data about an attack source or triggers other commands.  The NSA also has
a
> favorable sidewinder report at
http://mitten.ie.org/sidewinder/sidewinder.htm.
> 
> SCC 'Firewall for NT' states the primary component of the security
> architechture is a 'software wedge' between the network access layer and
the
> protocol stacks.  Uh, oh, seems they use the standard MS TCP/IP stack
which
> has it's own vulnerabilities and mysteries.  :(
> 
> I'm also interested in Borderguard experience.  One of the bullets for
> Borderguard is that each service is 'compartmented', limiting service
> attacks to that service.  Are they doing something different here?
> 
> Bill Stout
> ______________________________________________________________________
>   Our State Department praised the US/NATO military jamming, signal
hijack,
> then finally physical takeover of Bosnian Television stations, to make a
> system `free of the monopolizing influence of political parties.'  
>        http://cnn.com/WORLD/9709/11/bosnia.jammers/
>
http://www.pathfinder.com/@@*IrLOQUAih6QgJfh/news/latest/RB/1997Oct01/235.ht
ml
> 
>   Sure hope they don't 'free us' here of free speech in America.
Indexed By Date Previous: Re: To Gauntlet or not to Gauntlet
From: Ryan Russell/SYBASE <Ryan . Russell @ sybase . com>
Next: RE: Content Vector Protocol - Interest
From: "Heisner, Jeff" <HeisnerJ @ nasd . com>
Indexed By Thread Previous: Re: To Gauntlet or not to Gauntlet
From: Frederick M Avolio <avolio @ tis . com>
Next: RE: Content Vector Protocol - Interest
From: "Heisner, Jeff" <HeisnerJ @ nasd . com>
Google
 
Search Internet Search www.greatcircle.com