Re: I want to test my firewall from the outside
hi ya
this "question was just posted a week or two ago.."...
> Greetings,
>
> Yes, I would like to do that.
> Any good tools you folks would recommand?
>
-- simple answer...
- apply all the rootkits against your firewalls/routers
- generally... in summary...
- what is your "security policy"... who can do what to which machens
- what is your backup methodology for your "data" you cannot lose
- how long do youhave to get back online if it is hacked
- what are you protecting against and from whom
( outside on the net or the 80% of attacks from the inside )
- runnng nmap is nice..tell you that sendmail/exim is listening to port 25
but what ya gonna do ??? you cant turn it off ??? ( apache on port
80 ..etc )
- you need to check that all the apps running on the port
is the lastest version w/ no known vulnerability
- assume that they hacked thru your firewall...
now what???
- what is the budget and process and proceedures for security...
- protecting the firewall.. protecting data... protecting users
so tha they can work regardless of any pending hacked servers
--
-- your servers will be tested by all the script kiddies...
--
-- from outside, download and run all the rootkits against your firewall
--
-- methodologically(sp?).. try to pierce your firewall
-- http://www.itsecurity.com/papers/p5.htm
-- http://www.rootprompt.org/article.php3?article=323
-- http://www.linuxdoc.org/HOWTO/mini/Firewall-Piercing/
-- http://www.linuxdoc.org/HOWTO/mini/Term-Firewall/
-- http://web.ranum.com/pubs/fwperf/
--
have fun linuxing
alvin
http://www.Linux-Sec.net
Reply to: