Firewalls: RE: Remote admin. on FW's

Firewalls
(November 1996)

Indexed By Thread: [Previous] [Next]

Subject:	RE: Remote admin. on FW's
From:	Gene Lee <genel @ inforamp . net>
Date:	Sat, 2 Nov 1996 15:52:54 -0500
To:	"kmeade @ tcd . ie" <kmeade @ tcd . ie>, "'Sunny Azah'" <sazah @ ibu . sj . nec . com>
Cc:	"Firewalls @ GreatCircle . COM" <Firewalls @ GreatCircle . COM>

On Tuesday, October 29, 1996 1:29 PM, Sunny Azah[SMTP:sazah @
 ibu .
 sj .
 nec .
 com] wrote:
>Encryption based upon DES or 3-DES is sufficiently strong.
>The real questions are:
>
>	1) How good are the keys and how well are they created,
>	   protected, and managed?
>
>	2) How strong is the authentication and how well does it
>	   resist cracking and replay attacks?
>
>	3) Can it be spoofed (e.g. man in the middle attack)?
>
>	4) Is the risk associated with remote management worth
>	   the convenience?

Also add in:

5) How secure is the remote management client? X11 attacks on a remote management GUI will defeat the strongest encryption.


--
Gene Lee
genel @
 inforamp .
 net
genelee @
 vnet .
 ibm .
 com

Indexed By Date	Previous:	Does GFX support VPN? From: Alejandro Motta <amotta @ ifi . unizh . ch>
Indexed By Date	Next:	Re: Looking for NT "Compromise Detection" software From: "Jeff C. Flynn" <us028272 @ mindspring . com>
Indexed By Thread	Previous:	Does GFX support VPN? From: Alejandro Motta <amotta @ ifi . unizh . ch>
Indexed By Thread	Next:	RE: Remote admin. on FW's From: sazah @ ibu . sj . nec . com (Sunny Azah)