Tilted Forum Project Discussion Community  

Go Back   Tilted Forum Project Discussion Community > Interests > Tilted Technology


 
 
LinkBack Thread Tools
Old 11-26-2003, 11:31 PM   #1 (permalink)
Upright
 
Security Testing

Hey

Does anyone here have any advice on which firewall is the best. I'm using Tiny Personal now...and it seems pretty good.

Also I'd like to recommend a site that let's you test your firewall:
http://www.grc.com

Try the shields up program. Should be a link somewhere on grc.


Do any of you have any other links to sites that test your security ?
Kongen is offline  
Old 11-27-2003, 04:28 AM   #2 (permalink)
Crazy
 
Location: Reading, UK
NMAP is a really good software to test your firewall... (it's free of course...)

Get it from here
peacy is offline  
Old 11-27-2003, 07:00 AM   #3 (permalink)
Insane
 
Location: New Jersey, USA
I primarily use Broadband Reports security tools: http://www.broadbandreports.com/tools

I have used Security Space in the past, be they appear to have undergone some changes since I the last time I used them:
http://www.securityspace.com/sspace/index.html
cliv is offline  
Old 11-27-2003, 07:21 AM   #4 (permalink)
beauty in the breakdown
 
Location: Chapel Hill, NC
I use Sygate. Its worked pretty well for me so far.
__________________
"Good people do not need laws to tell them to act responsibly, while bad people will find a way around the laws."
--Plato
sailor is offline  
Old 11-28-2003, 04:52 PM   #5 (permalink)
I am Winter Born
 
Pragma's Avatar
 
Location: Alexandria, VA
If you want the best results and the most control, have a friend run nmap against your computer - so you get an "external" viewpoint. I've had some experienced with the GRC Shields Up scanner, and not to sound like a broken record (as I've said this on serveral other threads) their scan is very lacking in both comprehensiveness and accuracy. I've specifically opened ports on my firewall, had services listening on those ports, and received a clean bill of health from them.

Basically, nmap is your best bet.
__________________
Eat antimatter, Posleen-boy!
Pragma is offline  
Old 11-28-2003, 09:05 PM   #6 (permalink)
Crazy
 
Location: Melbourne, Australia
Kerio Personal Firewall 2 (2.1.15 i think is the last version of it?) is the best.
Sunrise is offline  
Old 11-28-2003, 11:21 PM   #7 (permalink)
Crazy
 
Location: Vancouver, Canada
An excellent program with a GUI would be Retina... Tells you what's exploitable, and how to fix it. It also updates itself, so you can always know if your system is secure.
__________________
You know that song that goes like...
TheShadow is offline  
Old 11-29-2003, 06:17 AM   #8 (permalink)
hk-
Upright
 
Yep, I used to work for a company that do network security, when we'd g out to clients networks to run checks on their networks Retina would be my weapon of choice, a lot of the other guys use it to.

There is no single definate solution, you need to combine Retina with nmap, do some external scans, do scans from your machine.

Have a gander at http://www.grc.com/default.htm for gibsons shields up, thats a good quick test, but as well as firewalling you need to make sure your machine is secure (software vurnaribility wise).
__________________
[ hk ] [ hk.hamlesh.com ]
hk- is offline  
Old 11-29-2003, 03:14 PM   #9 (permalink)
Custom title.
 
Location: Denmark.
The best firewall is ofcouse an hardware firewall, but if you have to go with a software based one, go with kerio or that other one I used that I cant remember the name of
__________________
Signature 101
-Anders is offline  
Old 11-30-2003, 01:04 AM   #10 (permalink)
hk-
Upright
 
Quote:
Originally posted by -Anders
The best firewall is ofcouse an hardware firewall

Not true.
__________________
[ hk ] [ hk.hamlesh.com ]
hk- is offline  
Old 11-30-2003, 07:52 AM   #11 (permalink)
I am Winter Born
 
Pragma's Avatar
 
Location: Alexandria, VA
Agreed, hk-. Any firewall, hardware or software, is as strong or vulnerable as the ruleset it consists of. If they're both set with identical rules, there really isn't a major advantage of one versus the other. The only difference is that with "hardware firewalls" you can use that machine as a NAT box as well, and therefore protect a larger number of machines with a single ruleset, instead of having individually configured software packages on each machine.

The key is being thorough when establishing what you absolutely have to let through the firewall (inbound and outbound), not what type of firewall you have.
__________________
Eat antimatter, Posleen-boy!
Pragma is offline  
Old 12-01-2003, 04:36 AM   #12 (permalink)
hk-
Upright
 
^^ Indeed, I just couldnt be arsed to go into all of that. Also with hardware firewalls you have their vurnability issues, if your running a n*x box as a firewall for example with ipchains/iptables/whatever as your firewall, you have to make sure that the box running the firewall is secure.

The number of times I have been pen testing for a company and they show me their firewall and the damn thing is running telnetd... well i've lost count.

(Telnet can be made to fall over in the time it take to blink, thus giving access to the firewall box, thus an attacker can turn off the firewall, whats worse is they control a box on your network... fun!).
__________________
[ hk ] [ hk.hamlesh.com ]
hk- is offline  
Old 12-01-2003, 04:54 AM   #13 (permalink)
Custom title.
 
Location: Denmark.
The fact that a software firewall can be disabled by e.g. a virus is enough to make me get an hardware firewall.

Quote:
if your running a n*x box as a firewall for example with ipchains/iptables/whatever as your firewall, you have to make sure that the box running the firewall is secure.
^^ That's still a software firewall.
When I'm refering to a hardware firewall, i mean a box from cisco or the likes.
__________________
Signature 101
-Anders is offline  
Old 12-01-2003, 06:02 AM   #14 (permalink)
I am Winter Born
 
Pragma's Avatar
 
Location: Alexandria, VA
Cisco PIX boxes still aren't the be all and end all of firewalls.

To repeat: Any firewall, unless you set it up properly, is insecure. This includes PIX firewalls.

I've got an OpenBSD machine I use as my "firewall" - it's got very few open ports (less than the fingers on one hand), and OpenBSD is a very secure OS (Only one remote hole in the default install, in more than 7 years). I consider that to be "good enough" for my purposes.

Given OpenBSD's security record, I feel that I can discount the "firewall getting hacked" possibility and concentrate on just the packet filtering job of the firewall.

And, just for fun, I did a quick google search for you, -Anders:
A year-ish old vulnerability report from Cisco on their PIX firewalls. Everything has holes. Everything.
__________________
Eat antimatter, Posleen-boy!
Pragma is offline  
Old 12-01-2003, 08:56 AM   #15 (permalink)
hk-
Upright
 
Even the "hardware" firewalls run SOFTWARE... using CISCO as the example, their rapid blaze switches, thats hardware switching, but it still runs software, point proven by the fact that about 4 months ago we (the company I work for) found a hole in their management software which meant that we could make any CICSO switch of the same model start generating random malicious packet data.

Whats the relevance? Even if its a "hardware solution" its still running some form of software. There is no way other than physically unplugging a system, to make it "safe" or not vunrable to attacks. Trust me on this, I get paid mega bucks to do this kind of shite
__________________
[ hk ] [ hk.hamlesh.com ]
hk- is offline  
 

Tags
security, testing

Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On



All times are GMT -8. The time now is 02:32 AM.

Tilted Forum Project

Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2024, vBulletin Solutions, Inc.
Search Engine Optimization by vBSEO 3.6.0 PL2
© 2002-2012 Tilted Forum Project

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 142 143 144 145 146 147 148 149 150 151 152 153 154 155 156 157 158 159 160 161 162 163 164 165 166 167 168 169 170 171 172 173 174 175 176 177 178 179 180 181 182 183 184 185 186 187 188 189 190 191 192 193 194 195 196 197 198 199 200 201 202 203 204 205 206 207 208 209 210 211 212 213 214 215 216 217 218 219 220 221 222 223 224 225 226 227 228 229 230 231 232 233 234 235 236 237 238 239 240 241 242 243 244 245 246 247 248 249 250 251 252 253 254 255 256 257 258 259 260 261 262 263 264 265 266 267 268 269 270 271 272 273 274 275 276 277 278 279 280 281 282 283 284 285 286 287 288 289 290 291 292 293 294 295 296 297 298 299 300 301 302 303 304 305 306 307 308 309 310 311 312 313 314 315 316 317 318 319 320 321 322 323 324 325 326 327 328 329 330 331 332 333 334 335 336 337 338 339 340 341 342 343 344 345 346 347 348 349 350 351 352 353 354 355 356 357 358 359 360