Search

	display results
words begin exact words any words part

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [FW1] SP1 or SP3

To: '"Prieto Martínez, Javier"' <[email protected]>, "'[email protected]'" <[email protected]>
Subject: RE: [FW1] SP1 or SP3
From: Dean Cunningham <[email protected]>
Date: Fri, 15 Jun 2001 10:53:19 +1200
Reply-to: [email protected]
Sender: [email protected]

Security
 

AlertsFireWall-1 Security Alerts


NOTICE: If you're not running FireWall-1 4.0 SP7 (Solaris, NT, AIX, HPUX,
Linux), FireWall-1 4.0 SP5 build 13 (IPSO), or FireWall-1 4.1 SP2 (all
platforms) or later, you are vulnerable to a number of security issues.
These issues were revealed at the Black Hat 2000 <http://www.blackhat.com/>
conference and are extremely serious in nature. You can read all about the
vulnerabilities here <http://www.phoneboy.com/docs/bh2000/>  .

NOTICE: A vulnerability in FAST MODE was found to exist, which people could
use to get around the security policy. Note that this is not the default
behavior, so you should only be vulnerable if you've explicitly enabled this
feature for a TCP service. Either disable FAST MODE, upgrade to 4.1 SP3 (now
available) or upgrade to 4.0 SP8 (available for all platforms except Nokia).
Note that Check Point will remove this feature in the next major release
since recent performance enhancements have reduced the effectiveness of this
feature

 

see www.phoneboy.com <http://www.phoneboy.com> 

-----Original Message-----
From: "Prieto Martínez, Javier" [mailto:[email protected]]
Sent: Thursday, 14 June 2001 4:30 AM
To: '[email protected]'
Subject: [FW1] SP1 or SP3


The previous firewall administrator in my company decided to leave our NT
Servers with FW1 v4.1 SP1, as they said their that SP3 was unstable basing
on their experience (?).
 
As you can imagine, one of the first things I'm trying to do is upgrade them
to SP3, although I need to give them official technical documentation to
justify my decision. Could somebody please point me to such information?

Thanks in advance,
 
     Javier Prieto Martínez
     Equipo de Sistemas, Intranet del S.A.S.
     e-Mail: [email protected] 
 
***************************************************
This e-mail is  not an  official  statement of  the
Waikato  Regional  Council unless otherwise stated.
Visit our website http://www.ew.govt.nz
***************************************************


================================================================================
     To unsubscribe from this mailing list, please see the instructions at
               http://www.checkpoint.com/services/mailing.html
================================================================================

Prev by Date: [FW1] VPN between 2 sites -- deny access to users
Next by Date: [FW1] Standalone and Distributed CheckPoint on Nokia
Previous by thread: RE: [FW1] SP1 or SP3
Next by thread: RE: [FW1] SP1 or SP3
Index(es):
- Date
- Thread