Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Firewalls
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Open Source vs Proprietary

from [Fredrik Widlund] Network Security [Permanent Link]
Subject: Re: Open Source vs Proprietary
Date: Sat, 11 Jun 2005 23:48:22 +0200
Dedicated hardware will give you more throughput. This the one reason I personally would use one. If you're dealing with Gbps throughput (or many packets) generic hardware won't do the trick. This is regardless if we're talking about routing, firewalling, or network intrusion detection.

Besides this I feel it boils down to control and resources. If you have the knowledge and the time, I believe something like OpenBSD/PF would come out on top. If you lack either, you will end up with something less secure.

This reflects the whole process of building an infrastructure. An open source firewall/router will be a more powerful "brick" if you know what to do with it, and you can create something more secure. If you're less sure, go with something that's less powerful. At the end of the day, it's the logic of the infrastructure or weaknesses of other parts of the network that will break.

Regards,
Fredrik Widlund


Joseph (Joe) Lynn wrote:

I had assumed that x86 boxes are so pervasive that ultimately whatever task you 
use them for will in general be more powerful than dedicated hardware, due to 
the length of time it takes to design and spec up a hardware appliance.

I forget that not everyone wants to rely on support coming from the internet 
community in general, and option of support is probably a big one for 
businesses when considering risk management.

And I guess any firewall no matter how intrinsically secure it is will be 
useless if it's misconfigured...

Many thanks,

Joe

-----Original Message-----
From: James Riden [mailto:j.riden@massey.ac.nz] Sent: 10 June 2005 00:24
To: Joseph (Joe) Lynn
Cc: firewalls@securityfocus.com
Subject: Re: Open Source vs Proprietary

"Joseph (Joe) Lynn" <Joe.Lynn@tiniusolsen.co.uk> writes:



Do people just buy firewalls because they canʼt be bothered to learn
to set up Open Source systems, or is there more to this that Iʼm
missing?



Dedicated hardware firewalls may give you better performance than an
x86 box running any flavour OS. Your boss may also feel better about
being able to get support for the latter should you fall under a bus.

Misconfiguration and poor change control is one of the biggest
problems with firewalls, and pf isn't going to be any better than a
proprietary vendor in that regard.

Use whatever's best for you - I'm a happy user of snort and Cisco
firewalls.

cheers,
Jamie



[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: Open Source vs Proprietary, Conlan Adams
Next by Date:  RE: Open Source vs Proprietary, ???
Previous by Thread:  RE: Open Source vs Proprietary, Joseph (Joe) Lynn
Next by Thread:  RE: Open Source vs Proprietary, Mike Thompson
Indexes:  [Date] [Thread] [Top] [All Lists]