[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] RE: [FW1] SP1 or SP3
Security AlertsFireWall-1 Security Alerts NOTICE: If you're not running FireWall-1 4.0 SP7 (Solaris, NT, AIX, HPUX, Linux), FireWall-1 4.0 SP5 build 13 (IPSO), or FireWall-1 4.1 SP2 (all platforms) or later, you are vulnerable to a number of security issues. These issues were revealed at the Black Hat 2000 <http://www.blackhat.com/> conference and are extremely serious in nature. You can read all about the vulnerabilities here <http://www.phoneboy.com/docs/bh2000/> . NOTICE: A vulnerability in FAST MODE was found to exist, which people could use to get around the security policy. Note that this is not the default behavior, so you should only be vulnerable if you've explicitly enabled this feature for a TCP service. Either disable FAST MODE, upgrade to 4.1 SP3 (now available) or upgrade to 4.0 SP8 (available for all platforms except Nokia). Note that Check Point will remove this feature in the next major release since recent performance enhancements have reduced the effectiveness of this feature see www.phoneboy.com <http://www.phoneboy.com> -----Original Message----- From: "Prieto Martínez, Javier" [mailto:[email protected]] Sent: Thursday, 14 June 2001 4:30 AM To: '[email protected]' Subject: [FW1] SP1 or SP3 The previous firewall administrator in my company decided to leave our NT Servers with FW1 v4.1 SP1, as they said their that SP3 was unstable basing on their experience (?). As you can imagine, one of the first things I'm trying to do is upgrade them to SP3, although I need to give them official technical documentation to justify my decision. Could somebody please point me to such information? Thanks in advance, Javier Prieto Martínez Equipo de Sistemas, Intranet del S.A.S. e-Mail: [email protected] *************************************************** This e-mail is not an official statement of the Waikato Regional Council unless otherwise stated. Visit our website http://www.ew.govt.nz *************************************************** ================================================================================ To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================================================
|