<a href="http://g.adspeed.net/ad.php?do=clk&zid=14678&wd=728&ht=90&pair=as" target="_top"><img style="border:0px;" src="http://g.adspeed.net/ad.php?do=img&zid=14678&wd=728&ht=90&pair=as" alt="i" width="728" height="90"/></a>

Nmap Security Scanner

Docs
Security Lists

Full Disclosure

More
Security Tools

Packet crafters

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

edgeos

Security Basics: Re: What is more secure?

Re: What is more secure?

From: Chris Thorp <thorp_at_spacia.org>
Date: Mon, 28 Feb 2005 08:10:53 -0700

>if he [a cracker] succeed he will gain all access to both networks:
>
>
Tomas,

I assume from this statement that you are using one triple homed
firewall? If so, I'd suggest using two dual homed firewalls which are
running different OSes with all publicly routable IPs.assigned to the
outer firewall. That way if the outer firewall is broken, the attacker
will only have access to the DMZ (assuming the internal firewall is
configured such that the same attack won't work on both).

My 2 cents,
-Chris
Received on Mar 01 2005

This message: [ Message body ]
Next message: Andrew Shore: "RE: anyone who saw this arp traffic?"
Previous message: H Carvey: "Re: tool to log file access"
In reply to: Tomas: "RE: What is more secure?"
Next in thread: blackhat: "Re: What is more secure?"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]