Firewalls: Re: B1 Firewall ?

Firewalls
(February 1995)

Indexed By Thread: [Previous] [Next]

Subject:	Re: B1 Firewall ?
From:	paul @ hawksbill . sprintmrn . com (Paul Ferguson)
Date:	Fri, 17 Feb 1995 19:14:50 -0500 (EST)
To:	mjr @ tis . com (Marcus J Ranum)
Cc:	smith @ sctc . com, firewalls @ greatcircle . com
In-reply-to:	<9502172157 . AA27188 @ tis . com> from "Marcus J Ranum" at Feb 17, 95 05:05:47 pm

mjr @
 tis .
 com writes -

> 
> 	People have often asked me if a firewall can scan for
> and block virusses or executable programs. My answer is "usually
> no for all useful values of block"  because, conceptually, you
> can either err on the side of caution, or convenience, but not
> both. If your firewall blocks everything that it THINKS may be
> a virus, then sooner or later a virus it has never seen will
> get through. If it blocks everything that it isn't SURE is
> just plain EMail, then you need to have a person in the loop
> to solve the stuff your AI wasn't sure about. And then what
> do you do with PGP'ed EMail?
>


The sanity of this paragraph is rock solid. I'm very glad to see
that others share my sentiment that certain types (virus scanning
firwalls?) of 'application' firewalls are insane.

;-)

- paul

 
_______________________________________________________________________________
Paul Ferguson                         
US Sprint                                          tel: 703.689.6828
Managed Network Engineering                   internet: paul @
 hawk .
 sprintmrn .
 com
Reston, Virginia  USA                             http://www.sprintmrn.com

References:

Re: B1 Firewall ?
From: Marcus J Ranum <mjr @ tis . com>

Indexed By Date	Previous:	Re: Kevin Mitnick From: Sulistio Muljadi <sulistio @ futon . SFSU . EDU>
Indexed By Date	Next:	Re: SUMMARY: 'smart cards' From: kdante @ nsf . gov
Indexed By Thread	Previous:	Re: B1 Firewall ? From: Marcus J Ranum <mjr @ tis . com>
Indexed By Thread	Next:	Re: B1 Firewall ? From: Rick Smith <smith @ sctc . com>