I realize that from somewhere within USA, Bosnia may appear distorted by a
distant perspective, but, please, focus your mind on what you are talking
about, or at least try to go back with your memory to just one year ago.
And, please, drop your "politically correct" (you name it this way, don't
you?) signature file when addressing this forum, not to unleash political
discussions where only technical ones are supposed to be hosted.
BTW: you seem to me to be technically OK and I like reading from you.
> Da: Bill Stout <stoutb @
> A: firewalls @
> Oggetto: Looking for feedback on SCC Firewalls
> Data: giovedì 9 ottobre 1997 19.11
> I haven't seen many of my customers use SCC products, so I'm curious
> experiences with their products.
> 'Sidewinder' uses 'Type Enforcement', which is used by the operational
> kernel to tighten BSD security (in which no super-user status exists).
> boots into an administrative kernel which has no networking capabilites
> administer the system. Not being familiar with BSD, is 'Type
> non-proprietary? I do like their 'strikeback' capability, which collects
> data about an attack source or triggers other commands. The NSA also has
> favorable sidewinder report at
> SCC 'Firewall for NT' states the primary component of the security
> architechture is a 'software wedge' between the network access layer and
> protocol stacks. Uh, oh, seems they use the standard MS TCP/IP stack
> has it's own vulnerabilities and mysteries. :(
> I'm also interested in Borderguard experience. One of the bullets for
> Borderguard is that each service is 'compartmented', limiting service
> attacks to that service. Are they doing something different here?
> Bill Stout
> Our State Department praised the US/NATO military jamming, signal
> then finally physical takeover of Bosnian Television stations, to make a
> system `free of the monopolizing influence of political parties.'
> Sure hope they don't 'free us' here of free speech in America.