Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Firewalls
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: Firewall technology

from [Skyler King] Network Security [Permanent Link]
Subject: RE: Firewall technology
Date: Thu, 29 Dec 2005 09:04:34 -0800 
Centrally managed endpoint firewalls have existed for ~4-5 years
already.

http://www.checkpoint.com/products/integrity/index.html
http://www.eeye.com/html/products/blink/index.html
http://www.sygate.com/products/sygate-enterprise-protection.htm

etc

sky


-----Original Message-----
From: coder [mailto:elite.coder@ntlworld.com] 
Sent: Thursday, December 29, 2005 7:51 AM
To: firewalls@securityfocus.com
Subject: Firewall technology

Hello everyone,

I wanted to get the opinions of experts before I carry on 
with my project. I
am curently writting  a thesis on the limitations of firewall 
technology,
for now it seems that firewall technology for the gateway is 
pretty much
covered. However, noone seems to have focused on firewall 
technology for
clients (on big networks), home firewalls such as ZoneAlarm 
are useless for
a network with many PCs because it cant be managed centrally 
and it asks the
user if they want to create a new rule when somthing tries to get out.

In my thesis I was going to say that these are the problems and the
solutions was to write a firewall system that can be managed 
centrally (via
web interface), also for technical universities where students maybe
writting network software and using their own protocols, I 
was going to see
if I could create some kind of "protocol creator" for admins. 
Originally my
thesis was going to be about security corporation sized 
networks, but in my
research I have come across a few other things.

IEEE802.1x and IPSec can apparently replace client-side 
firewalls, I dont
really know much about those two technologies, but I am still 
researching.
If these two techologies are better than client-side 
firewalls and or cost
less, I shall focus my thesis on small company networks (who 
cant afford
good network technology or a full-time net admin).

My thesis was going to be centered around the fact that 
machines within huge
networks get infected by malware and such, either by websites or via
removable media, I am hoping that my firewall I idea would: 
stop sending
keylogger and spyware details back to the "hacker" and stop 
viruses/worms
spreading from the infected client.

So, what client-side technologies do corporations use (if any)?
Are there any limitations for IPSec and 802.1X?
What are your opinions on what I was saying about client-side 
firewalls?

Thank you for your answers,

Davie Elliott.
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Object Filler / Object Dumper version 2.2 released!, Martin Hoz
Next by Date:  Re: Firewall technology, Charalambos Klitiropoulos
Previous by Thread:  Re: Firewall technology, Louis Wang
Next by Thread:  Re: Firewall technology, Bruce Martins
Indexes:  [Date] [Thread] [Top] [All Lists]