Firewalls: Re: Products eliminating the need for Proxy

Firewalls
(February 1995)

Indexed By Thread: [Previous] [Next]

Subject:	Re: Products eliminating the need for Proxy
From:	Carl Jolley <cjolley @ iac . net>
Date:	Sat, 25 Feb 1995 09:42:32 -0500 (EST)
To:	"Lars Hornborg, Microfront" <Lasseh @ microfront . se>
Cc:	"'FIREWALLS'" <firewalls @ GreatCircle . COM>
In-reply-to:	<2F4E3D43 @ smtplink>

Claiming that elimination address spoofing means there is no need for
and benefit in having a proxy server means to me that I wouldn't place
the security of my information systems with anyone making such a claim.

Extention of that "logic" would almost lead one to believe that up until
the time of the recent address spoofing/session hijacking attack that there
was no demonstrated need for a firewall.

The recent attack was not new, non did its employment forge new territory
in terms of discovery of new security attack techniques. It's not the only
way systems can be attacked and it will not be the last.

"I've discovered the cure to the common cold. This means we can eliminate
 the public health system". I wouldn't buy that either.

**** cjolley @
 iac .
 net <Carl Jolley>
**** All opinions are my own and not necessarily those of my employer ****

On Fri, 24 Feb 1995, Lars Hornborg, Microfront wrote:

> 
> Everybody knows that a good firewall includes a Proxy Server, right? Well, 
> I'm talking to a vendor who firmly states that their product eliminates this 
> need by barring address spoofing and terminal hijacking as described in a 
> Cert advisory of January 23.
> 
> I'd like input on this. Is the above problem the only one addressed by proxy 
> servers, or are there other vulnerabilities that a proxy server is the only 
> solution to?
> 
> I'd very much appreciate personal email about this, I unfortunately don't 
> find the time to check these lists very regularly. I'd be happy to summarize 
> such input to the list if this is of interest.
> 
> Thanks,
> Lars.
> 
> 
> __________________________________________________________________________
> 
>     _/    _/ _/ _/_/_/ _/_/_/ _/_/_/ _/_/_/ _/_/_/ _/_/_/ _/   _/ _/_/_/
>    _/_/_/_/ _/ _/     _/  _/ _/  _/ _/     _/  _/ _/  _/ _/_/ _/   _/
>   _/ _/ _/ _/ _/     _/_/_/ _/  _/ _/_/   _/_/_/ _/  _/ _/ _/_/   _/
>  _/    _/ _/ _/     _/ _/  _/  _/ _/     _/ _/  _/  _/ _/   _/   _/
> _/    _/ _/ _/_/_/ _/  _/ _/_/_/ _/     _/  _/ _/_/_/ _/   _/   _/
> 
>   Lars Hornborg, Tech mgr       Tel: +46-47010150
>   Microfront V{xj| AB           Fax:        21150 (67929 home)
>   Sj|uddev 8,                   Internet: lasseh @
 microfront .
 se
>   S-352 46  V[XJO, SWEDEN
> _________________________________________________________________________
> 
> 
>

References:

Products eliminating the need for Proxy
From: "Lars Hornborg, Microfront" <Lasseh @ microfront . se>

Indexed By Date	Previous:	Re: Windows NT (fwd) From: Matthew J Brown <mjb @ sophos . com>
Indexed By Date	Next:	RE: CD-ROM based bastion (Solaris 2) From: Steve_Dearth @ MBnet . MB . CA (Steve Dearth)
Indexed By Thread	Previous:	Products eliminating the need for Proxy From: "Lars Hornborg, Microfront" <Lasseh @ microfront . se>
Indexed By Thread	Next:	Re: Products eliminating the need for Proxy From: zbo @ netcom . com (James A. Shankland)