OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
NFR Wizards Archive: Re: firewalls and the incoming traffic pro

Re: firewalls and the incoming traffic problem

Aleph One (aleph1dfw.net)
Tue, 30 Sep 1997 10:03:17 -0500 (CDT)

On Mon, 29 Sep 1997, neil d. quiogue wrote:

> AI has always been a hazy science. But it is usually used in areas where
> the problem domain is small and clearly-defined. With firewalls and
> security in general where the problem area is large and vague, I doubt as
> to the extent where AI would give significant benefit to firewalls. Has
> there been any studies on the matter?

Well you can reduce your problem area to be per protocol. This reduces
it enough to be tracable up to a certain point. So you could plug in
your AI based SMTP and HTTP module but use your standard TELENT proxy.
The closes work on this area is IDS systems. I've found it quite
interesting that no one has written an IDS module for some firewall.
Or for that matter that no one has written a firewall module for routers.
For example instead of buying a whole another piece of equipment you
should be able to install some third party card and software into your
cisco router and make it into a firewall (no and I dont mean PIX)..

> [---]
> Neil D. Quiogue (neiliphil.net)
> IPhil Communications Network, Inc.
> Other: neilpostgresql.org
>

Aleph One / aleph1dfw.net
http://underground.org/
KeyID 1024/948FD6B5
Fingerprint EE C9 E8 AA CB AF 09 61 8C 39 EA 47 A8 6A B8 01

This archive was generated by hypermail 2.0b3 on Sat Jul 17 1999 - 07:08:59 CDT