Re: Hacking a firewall
Are you sure about that?
AFAIK ipfilter can only block or allow certain packets according to source
port, destination port and various flags within the packet (but I could be
wrong!). Anyway, that is *not* stateful inspection.
"Addicted to Chaos"
Top 25 Explanations by Programmers when their programs don't work:
6. The machine seems to be broken.
----- Original Message -----
From: Jens Hellmerichs-Friedrich <email@example.com>
To: Aviram Jenik <firstname.lastname@example.org>; Simon Martin <email@example.com>;
Debian-Firewall List <firstname.lastname@example.org>
Sent: Tuesday, August 03, 1999 10:25 P Aviram
Subject: Re: Hacking a firewall
> IP-Filter (available for Linux too) supports stateful inspections !
> Viele Grüße
> ----- Original Message -----
> From: Aviram Jenik <email@example.com>
> To: Simon Martin <firstname.lastname@example.org>; Debian-Firewall List
> Sent: Tuesday, August 03, 1999 8:58 PM
> Subject: Re: Hacking a firewall
> > >
> > > 1) Comparison of Debian Vs Firewall-1
> > > My major competition here is Firewall-1. Anyone know of any comparison
> > > features / robustness / weaknesses?
> > FW-1 Uses stateful inspection, which is way more secure then the packet
> > filtering techniques of ipchains and others. It's not right to compare
> > between the two, because the question is cost-effectiveness. FW-1 is
> > more full-featured/robust/strong, etc but costs 5 digits to buy.
> To UNSUBSCRIBE, email to email@example.com
> with a subject of "unsubscribe". Trouble? Contact