Firewalls: Re: Pulling out Checkpoint-1 firewalls

Firewalls
(June 1997)

Indexed By Thread: [Previous] [Next]

Subject:	Re: Pulling out Checkpoint-1 firewalls
From:	Mike Shaver <shaver @ neon . ingenia . ca>
Date:	Mon, 30 Jun 1997 12:10:32 -0400 (EDT)
To:	norm @ uu . net
Cc:	firewalls @ GreatCircle . COM
In-reply-to:	<33B79A19 . 15FB7483 @ uu . net> from "norm @ uu . net" at "Jun 30, 97 07:35:53 am"

Thus spake norm @
 uu .
 net:
> As security people, we should be careful about trusting anything without
> source code anyway..

Assuming you're sufficiently expert in the subject area to make heads
and tails of the code.  I'd be fine if they'd allow some appropriate
experts (pick 10 people at random from the Internet Security Cabal
World Tour 1996 party =) ) to review it and comment freely on their
findings.  If the source were released, that'd pretty much be the main
effect anyway.

Do you ask to see the source for the fly-by-wire on your planes, too?

Mike
(the GPL is not a security policy)

-- 
#> Mike Shaver (shaver @
 ingenia .
 com) Ingenia Communications Corporation 
#>            Chief System Architect and Herder of Bits                
#>                                                                     
#> "Yoda say, `Just slap a little public key crypto into it' does not  
#>      a secure system make." -- Marcus J. Ranum (mjr @
 clark .
 net)

References:

Re: Pulling out Checkpoint-1 firewalls
From: norm @ uu . net

Indexed By Date	Previous:	Re: Firewall vs "/etc/hosts.deny" From: "Daniel G. Drumm" <dgd @ nebula . is . rpslmc . edu>
Indexed By Date	Next:	Re: flavours of unix From: "dennis f dumont" <dennis_f_dumont @ national-city . com>
Indexed By Thread	Previous:	Re: Firewalls, Spooks, $3,000 and Proving the null hypothesis From: Adam Shostack <adam @ homeport . org>
Indexed By Thread	Next:	Re: Pulling out Checkpoint-1 firewalls From: Travis Low <tlow @ mindq . com>