Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Firewalls
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: What should be in a firewall audit checklist?

from [Cem Baskocagil] Network Security [Permanent Link]
Subject: Re: What should be in a firewall audit checklist?
Date: Wed, 30 Nov 2005 09:25:23 +0200 
9) Audit of the underlying operating system.
10) If the firewall has an administration console
     i) The audit of the OS of administration console.
    ii) Check if there are unnecessary accounts to manage the firewall
    iii) Check the permissions of the accounts.
    iv) Check if the console has time - out property

11) Audit of NAT rules
12) Audit of IPS rules (if any)

----- Original Message ----- 
From: "Doug Fox" <dfox168@hotmail.com>
To: "FireWall-1 Gurus Mailinglist" <fw1-gurus@lists.phoneboy.com>;
<firewalls@securityfocus.com>
Sent: Sunday, November 27, 2005 12:26 AM
Subject: What should be in a firewall audit checklist?



A friend asked me to audit his firewall at work.
Honestly, I have no clue even though googled for many days.

In this context, I am planning to audit the firewall as follows:  Any
comments/suggestions are welcome.

1) The placement or location of the firewall
2) Vulnerability scanning the firewall from outside, e.g., Internet
3) The rulebase or security policy according to its vendor recommendation
4) I will also check the access control (ID, password and priviledges) to
the system.
5) physical security of the system
6) Monitoring of the firewall log, to find out if any port scanning or
hacking activities
7) Rulebase Change Control
8) documentation
9) Please generously point out the missing pieces as you see it.

Any input/comments are greatly appreciated.

Thanks,

Doug
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: CheckPoint Backup, CJO Net Sec
Next by Date:  Where to find a good firewall config sample?, Ryan Frizzell
Previous by Thread:  Re: What should be in a firewall audit checklist?, Rick Zhong
Next by Thread:  RE: What should be in a firewall audit checklist?, Bhaven Haria
Indexes:  [Date] [Thread] [Top] [All Lists]