Search

	display results
words begin exact words any words part

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [FW1] Boson FW-1 Admnistrator Exam

To: [email protected], [email protected]
Subject: RE: [FW1] Boson FW-1 Admnistrator Exam
From: [email protected]
Date: Wed, 17 Jan 2001 15:02:19 -0000
Sender: [email protected]

I have seen the Boson FW test and personally I do not rate them at all. It
is obvious some one has just gone through the training course and made up a
question per page.

If you want to see the exams down load from www.boson.com there are 10
sample questions

The answer to your question is a very large NO its not true.

Andrew Shore
BTcd 
Information Systems Engineering
Internet & Multimedia 


-----Original Message-----
From: Lance Spitzner [mailto:[email protected]]
Sent: 17 January 2001 14:25
To: [email protected]
Subject: [FW1] Boson FW-1 Admnistrator Exam



Recently,  I was asked a question about a "Boson"
FW-1 Administrator exam.  I have no idea what this
exam is, nor who sponsors it.  However, if the
material quouted below is true, then this question
greatly disturbs me.  I wanted to know if anyone
else has ran into this.

--- snip snip ---

I have always thought that it is necessary to harden the OS for the firewall
server. However, I was doing the Boson Checkpoint FW-1 Administrator
practice exams when I came across this question:

Question: Why is it unnecessary for Firewall-1 to harden the OS?

Answer: Firewalls that do not analyze the packet until it gets to the
application layer need to protect themselves from the lower layer attacks.
Firewall-1 protects itself by analyzing all the layers of the packet.
Therefore it is unncessary for the administrator to harden the OS for
Firewall-1 server.

Is this true????

--- snip snip ---

This is absolutely NOT true.  If an exam is making these assumptions,
then it shows that the author has a total lack of security knowledge.
No firewall is impervious to vulnerabilities, Bugtraq demonstrates this
again and again.  Also, base OS armoring protects the firewall against
rulebase or administrative misconfigurations.  I highly recommend OS
armoring for all firewalls, regardless of the vendor.  Part of security
is reducing risk at all levels. 

-- 
Lance Spitzner
http://project.honeynet.org




============================================================================
====
     To unsubscribe from this mailing list, please see the instructions at
               http://www.checkpoint.com/services/mailing.html
============================================================================
====


================================================================================
     To unsubscribe from this mailing list, please see the instructions at
               http://www.checkpoint.com/services/mailing.html
================================================================================

Prev by Date: [FW1] Internet Connection Alerts
Next by Date: RE: [FW1] Allow nbsession via firewall
Previous by thread: Re: [FW1] Boson FW-1 Admnistrator Exam
Next by thread: RE: [FW1] Boson FW-1 Admnistrator Exam
Index(es):
- Date
- Thread