|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: Comparisons of Firewall-1 vs. PIX
H. Morrow Long (morrow.long
yale.edu)
Tue, 29 Sep 1998 22:29:46 -0400 (EDT)
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
- Next message: Charles Kaplan: "BIND bindings"
- Previous message: Gary Scheel: "Dialup vs. VPN"
Note that source ports should never be trusted -- particularly those
source ports in packets from the 'outside' insecure network.
And the fact that a source port is below 1024 (or above, or is any
particular port number such as that used by a well known app) should not
convey any special cachet when the packet comes from a host on a
network outside your site and control.
- H. Morrow Long
- Next message: Charles Kaplan: "BIND bindings"
- Previous message: Gary Scheel: "Dialup vs. VPN"
This archive was generated by hypermail 2.0b3 on Sat Jul 17 1999 - 07:11:48 CDT