On Thu, 23 Jan 1997, John Fulmer wrote:
> Let's see if anyone can make heads or tails out of it.
Funtime :)
> <SNIP!>
>
> You're right about (Firewall)'s reporting capability. But it would be
> helpful for the firewall to tell you if any of these can be associated
> with a SATAN or ISS scanner. I personally would like to know if I'm
> being scanned by one of these packages. Rather than become a TCP/IP
> and
> SATAN/ISS guru to understand the patterns of these probes, I would
> like
> the firewall to be smart enough to know what's touching it. I realize
> that this type of technology is not available, but it doesn't seem to
> me
> to be too difficult to build into a firewall the ability to detect
> certain known scanner probing.
You're right about my car being drivable, but why doesn't it stop for red
lights on it's own? I keep getting these tickets because I run them.
Shouldn't a car stop for red lights? Why won't it turn by itself?
Steering wheels are too complex, it's obvious when the road curves, why
can't the car stay in the lane? It doesn't seem to be too difficult to
build a car to detect red lights and curves in the road.
To drive a car, you have to be able to do certain things. The same
applies to using firewall technology with any degree of competence. While I
agree that the complexity needs to come down, it's just not that
simplet. That the firewall *blocks* the SATAN or ISS probe is
important. We're farther along than the automobile.
alt.urban.legends.cruise.control thankfully not used in this parallel.
Paul
-----------------------------------------------------------------------------
Paul D. Robertson "My statements in this message are personal opinions
proberts @
clark .
net which may have no basis whatsoever in fact."
PSB#9280
References:
|
|
