[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] Re: [FW1] Hardening of OS
All packets are indeed processed by the FW module before they reach the application - it sits between L2 and L3, but there are usually a number of back doors, or local security problems that need to be ironed out. If you don't harden your OS, then you're asking for trouble - what if a hacker got inside your network another way (eg via modem), or what if one of your employees got the hump ? That's why local security is so important. ----- Original Message ----- From: Brian Tan Wee Beng <[email protected]> To: <[email protected]> Sent: 18 March 2001 04:40 Subject: [FW1] Hardening of OS > > hi... > I was having a disussion with a engineer on hardening the OS and he say > that actually there's not a need to harden it since the inspection module is > sitting on the kernel level.This means that all packets will be processed by > the module before they reach the OS.If the packets do not pass inspection, > they are either dropped or rejected according to the rule base.So is it > true??? > > Cheers > _________________________________________________________________________ > Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. > > > > ============================================================================ ==== > To unsubscribe from this mailing list, please see the instructions at > http://www.checkpoint.com/services/mailing.html > ============================================================================ ==== > ================================================================================ To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================================================
|