Feature: When firewalls fail: Lessons learned from firewall testing
暂无分享,去创建一个
Firewall testing, if properly conducted, is advantageous in revealing specific ways that firewalls can be breached or bypassed. A previous issue of Network Security (March 1996) describes a systematic methodology for testing firewalls that SRI Consulting uses. SRI Consulting has conducted a sufficient number of tests to be able to generalize about how firewalls in real-life environments have succumbed to attacks based on this methodology. Unscreened services in hosts protected by the firewall have been the most frequently exploited exposure, followed by exploitation of services that run on the firewall itself, then by exploitation of a dangerous relationship between a firewall and an external router or host on the DMZ. Because testing results depend on the particular testing methodology used, these illustrate that negative entropy in firewalls does occur. This article also provides a list of action items for firewall and network administrators to ensure that firewall defences are adequate.
[1] Carol A. Siegel,et al. Internet Security for Business , 1996 .
[2] E.Eugene Schultz,et al. Feature: A new perspective on firewalls , 1995 .
[3] Bill Cheswick,et al. Firewalls and internet security - repelling the wily hacker , 2003, Addison-Wesley professional computing series.
[4] E.Eugene Schultz,et al. Feature: A systematic methodology for firewall penetration testing , 1996 .