Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Firewalls
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Fwbuilder-discussion] Should FW have DNS name?

from [Ralph Forsythe] Network Security [Permanent Link]
Subject: Re: [Fwbuilder-discussion] Should FW have DNS name?
Date: Fri, 9 Jun 2006 14:16:54 -0600 (MDT)
Unless the name is something retarded like "firewall.mydomain.com", I don't really think so. If they can determine the IP address, then the domain name won't matter one bit. If it does have a fqdn that's obscure or has zero reference to what the device is (or that they shouldn't be there), it would probably take more time for them to guess that than it'd be worth.

Besides, you don't necessarily *have* to include a reverse PTR record - so trying to look up x.x.x.x won't give any information, but if you know the host name you can still find it. It's an obscurity thing, but unless you make the name easy to guess they won't waste their time, since it isn't like knowing the fqdn of something gets you in the door.

- Ralph


On Fri, 9 Jun 2006, Bill Smith wrote:

What I meant was, does it not make it easier for the hacker?
If fqdn is not assign, it takes the hacker longer to hack.

Bill

ted creedon <tcreedon@easystreet.com> wrote:        v\:* 
{behavior:url(#default#VML);} o\:* {behavior:url(#default#VML);} w\:* 
{behavior:url(#default#VML);} .shape {behavior:url(#default#VML);}           My 
firewall has a dns name + dhcp address. Works fine. There is a shell script that 
Linux runs when the dhcp address changes.

 tedc


---------------------------------

 From: fwbuilder-discussion-bounces@lists.sourceforge.net 
[mailto:fwbuilder-discussion-bounces@lists.sourceforge.net] On Behalf Of Bill 
Smith
Sent: Friday, June 09, 2006 3:43 AM
To: Firewall@SecuriryFocus; fwbuilder-discussion@lists.sourceforge.net
Subject: [Fwbuilder-discussion] Should FW have DNS name?


 Hi Folks,

Should FW has DNS name?
If it does, what is the implication?

Plz comment.

Bill
  __________________________________________________
Do You Yahoo!?
Tired of spam? Yahoo! Mail has the best spam protection around
http://mail.yahoo.com

 _______________________________________________
Fwbuilder-discussion mailing list
Fwbuilder-discussion@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/fwbuilder-discussion


__________________________________________________
Do You Yahoo!?
Tired of spam?  Yahoo! Mail has the best spam protection around
http://mail.yahoo.com

[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Should FW have DNS name?, Ralph Forsythe
Next by Date:  RE: PIX to PIX Certificate VPN question, Conlan Adams
Previous by Thread:  Re: [Fwbuilder-discussion] Should FW have DNS name?, wiqd
Next by Thread:  Should FW have DNS name?, Ross, Justin B.
Indexes:  [Date] [Thread] [Top] [All Lists]