Section: .. / papers / firewall /
| /// File Name: |
SecurityWire_6_2_03.zip |
Description:
|
Relevant Technologies product review paper on InsideOut Firewall Reporter by Stonylake Solutions. This product is a Java-based server application that runs on both Windows and Linux and has a demo version available.
| | Author: | Troy Thompson | | Homepage: | http://www.relevanttechnologies.com | | File Size: | 956645 | | Last Modified: | Jun 17 06:15:58 2003 |
| MD5 Checksum: | 1bc7034a4ca43e83f0832aee896d6f44 |
|
| /// File Name: |
wan.txt |
Description:
|
Combating reverse telnet using OpenBSD Packet Filter (pf) - This paper goes into detail on how to set up a firewall properly to disallow outbound traffic from reverse telnet attacks from compromised machines.
| | Author: | wanvadder, flyguy | | Homepage: | http://www.scan-associates.net | | File Size: | 9685 | | Last Modified: | Nov 25 05:07:03 2002 |
| MD5 Checksum: | a17fbb20af199726341779197070c7db |
|
| /// File Name: |
firewall.steno.txt |
Description:
|
Bypassing firewalls through protocol stenography - You can often bypass firewalls by using trojans that send commands over port 80.
| | Author: | Lee Bowyer | | Homepage: | http://www.networkpenetration.com | | File Size: | 4031 | | Last Modified: | Sep 24 09:05:22 2002 |
| MD5 Checksum: | dbfc62d0887c5defc5faa2fa4e884a30 |
|
| /// File Name: |
os2pf.pdf |
Description:
|
OS/2 Packet Filtering - OS/2 machines are good for firewalls and the packet filtering code is not documented.
| | Author: | Maarten Van Horenbeeck | | File Size: | 90207 | | Last Modified: | Jun 25 07:27:05 2002 |
| MD5 Checksum: | 5c5c3f6c11f6c6fe60369f0d3478b778 |
|
| /// File Name: |
FreeBSD-STABLE_and_IPFILTER.htm |
Description:
|
This howto walks you through building a FreeBSD-STABLE firewall with IPFILTER. This is a checklist that walks you through the entire process from beginning to end: installing FreeBSD-stable, recompiling the kernel, OpenSSH security, TCP-wrappers, VESA video modes, and special syslog logging for your firewall.
| | Author: | Marty Schlacter | | Homepage: | http://www.schlacter.dyndns.org/public/ | | Changes: | Updated for FreeBSD-4.4-STABLE. | | File Size: | 98395 | | Last Modified: | Sep 28 05:54:02 2001 |
| MD5 Checksum: | 85a429380d1944e843d563d87426900e |
|
| /// File Name: |
iptables.txt |
Description:
|
How to use Iptables - Explains the new features, how to use them, how to write rulesets, and includes a sample firewall script.
| | Author: | Spender | | File Size: | 14949 | | Last Modified: | Feb 6 02:13:09 2001 |
| MD5 Checksum: | 19d436b9ffb68b7a7ba5150f79f4b6a6 |
|
| /// File Name: |
blackhat-fw1.tgz |
Description:
|
A Stateful Inspection of FireWall-1 - In this advisory we summarize our findings from BlackHat 2000 on Checkpoint Firewall-1. It is susceptible to several trivial attacks against its inter-module authentication protocols, IP address verification has flaws, FWN1 and FWA1 is vulnerable to a replay attack, Fastmode vulnerabilities, FWZ Encapsulation vulnerabilities, and Stateful Inspection problems, and much more. Included in the tarball is the presentation in two formats, the technical documentation for the vulnerabilities, and the source code used in the demonstation.
| | Author: | Thomas Lopatic, John McDonald, and Dug Song. Homepage: http://www.dataprotect.com/bh2000/. | | File Size: | 849942 | | Last Modified: | Sep 1 19:38:12 2000 |
| MD5 Checksum: | 91477466f1f877e3f89271565b27a371 |
|
| /// File Name: |
ipchains.txt |
Description:
|
Linux Firewalling - Insights and Explainations. Covers basic IPchains firewall building, advanced IPchains firewalling, and linux firewall related insights and recommendations on which traffic to allow.
| | Author: | Spender | | File Size: | 13610 | | Last Modified: | Jun 15 22:02:10 2000 |
| MD5 Checksum: | 7ff543a1e829f9edeb3ec8965ad7c2b4 |
|
| /// File Name: |
2647.txt |
Description:
|
Benchmarking Terminology for Firewall Performance - This document defines terms used in measuring the performance of firewalls. It extends the terminology already used for benchmarking routers and switches with definitions specific to firewalls.
| | File Size: | 45375 | | Last Modified: | Jan 26 20:43:01 2000 |
| MD5 Checksum: | 407deba492a227b099a7b51305db26ca |
|
| /// File Name: |
firewall-seen.htm |
Description:
|
This document answers the question: I've seen on my firewall; what does it mean? Firewall administrators regularly see strange behaviour showing up in their logfiles. This document describes some of the common things seen on these firewalls, and what they mean. Note that this document is intended both for owners of personal firewalls as well as corporate firewalls. Version 0.3.0. (Jan 15, 2000)
| | Author: | Robert Graham. | | File Size: | 82775 | | Last Modified: | Jan 16 06:57:07 2000 |
| MD5 Checksum: | 9ed1cee16b9f53de8927e87dcf9972ea |
|
| /// File Name: |
rules.html |
Description:
|
Building Your Firewall Rulebase - One of the largest risks with a firewall is a misconfigured rulebase. The most expenseive firewall in the world does not help you if you have a rule misconfigured. "Building Your Firewall Rulebase" helps to address this problem. The paper focuses on the concepts of how to build a secure rulebase. It goes step by step through the design process, explaining each rule and it signifigance. The paper is focused for beginner/intermediate firewall admins, but even the gurus can hopefully learn a trick or two (I know I did).
| | Author: | Lance Spitzner | | Homepage: | http://www.enteract.com/~lspitz/papers.html | | File Size: | 15583 | | Last Modified: | Dec 10 03:59:02 1999 |
| MD5 Checksum: | e4e67de0308f72fae3140eff9e739f6f |
|
| /// File Name: |
firewall-pr0n.htm |
Description:
|
FAQ: Firewall Admins Guide to Porn version 1.0.1 (Jan 15, 2000). One of the more frequent problem security administrators will face is porn. It is a popular Internet application, and even when restrictions are put into place, users find ways of getting around them. At the same time, users tend to be clueless as to the knowledge firewall admins have of their surfing habits. Every administrator of a large company that I know of has had to confront this issue, but not much is discussed about the topic in the literature. This document is intended as a guide for firewall admins in this area.
| | Author: | Robert Graham. | | File Size: | 27416 | | Last Modified: | Dec 10 03:59:02 1999 |
| MD5 Checksum: | 5759a7d609d42114b58b3b2b846944fa |
|
| /// File Name: |
firewall_bsd.txt |
Description:
|
How to build a BSD firewall using ipfilter. Covers everything from kernel config to allowing traffic.
| | Author: | Larry W. Cashdollar | | Homepage: | http://vapid.dhs.org/ | | File Size: | 2932 | | Last Modified: | Nov 14 21:36:04 1999 |
| MD5 Checksum: | 8db290dcfa35c0e52d7b2abaa54ab4e9 |
|
| /// File Name: |
xthrufw.ps |
Description:
|
X Through the Firewall, and Other Application Relays: A description of how to create application-specifc relays to pass traffic through a network firewall
| | File Size: | 430237 | | Last Modified: | Oct 1 23:22:48 1999 |
| MD5 Checksum: | b0c5e9455c240ba8eae64f3f7426a8e7 |
|
| /// File Name: |
unixnet.ps |
Description:
|
An Architectural Overview of UNIX Network Security: A description of a number of UNIX-related components of network security, particularly as they pertain to firewalls
| | File Size: | 125171 | | Last Modified: | Oct 1 23:22:48 1999 |
| MD5 Checksum: | 3c2da4e4019173d9b7297acb8686a6bf |
|
| /// File Name: |
toolkit.ps |
Description:
|
A Toolkit and Methods for Internet Firewalls: A description of the Trusted Information Systems Firewall Toolkit
| | File Size: | 185431 | | Last Modified: | Oct 1 23:22:48 1999 |
| MD5 Checksum: | e892b4d7daa511835dfaf991e839786a |
|
| /// File Name: |
tcpwrap.ps |
Description:
|
TCP Wrapper: Network Monitoring, Access Control, and Booby Traps (Text): A description of the author's tcpwrapper software
| | File Size: | 58952 | | Last Modified: | Oct 1 23:22:48 1999 |
| MD5 Checksum: | ca952f2a01017341e9927799c5e28035 |
|
| /// File Name: |
screen.ps |
Description:
|
Simple and Flexible Datagram Access Controls for Unix-based Gateways: A description of the screend packet filtering system
| | File Size: | 133159 | | Last Modified: | Oct 1 23:22:48 1999 |
| MD5 Checksum: | 42c625ebde081fa97ffbc75c8bef2824 |
|
| /// File Name: |
pktfilt.ps |
Description:
|
Network (In)Security Through IP Packet Filtering: A description of how to use the packet filtering features of commercial routers as a security tool
| | File Size: | 123151 | | Last Modified: | Oct 1 23:22:48 1999 |
| MD5 Checksum: | 0158bd2a09c6a6692898e2dad2d6f89f |
|
| /// File Name: |
packets.ps |
Description:
|
Packets Found on an Internet: A description of the types of packets, particularly the anomalous ones, that appeared at the AT&T firewall
| | File Size: | 102918 | | Last Modified: | Oct 1 23:22:48 1999 |
| MD5 Checksum: | 1d509af86b49369f0076478d377e2117 |
|
| /// File Name: |
isoc94.ps |
Description:
|
A Network Perimeter With Secure External Access: A description of the firewall in use at whitehousegov
| | File Size: | 268510 | | Last Modified: | Oct 1 23:22:48 1999 |
| MD5 Checksum: | feb5e7fa94013ad248e85b1d018ed858 |
|
| /// File Name: |
gateway.ps |
Description:
|
The Design of a Secure Internet Gateway: A description of the design of the firewall used by AT&T to protect their corporate network from the Internet
| | File Size: | 42373 | | Last Modified: | Oct 1 23:22:48 1999 |
| MD5 Checksum: | 8e922da9a35679e89cdac71d4af96ffc |
|
| /// File Name: |
gatekeep.ps |
Description:
|
An Internet Gatekeeper: A description of how to construct an Internet firewall
| | File Size: | 148666 | | Last Modified: | Oct 1 23:22:48 1999 |
| MD5 Checksum: | 1ac2292a38d0cda4c96735f5b1bca241 |
|
| /// File Name: |
fwalls.ps |
Description:
|
Thinking About Firewalls: A description of some of the considerations and trade-offs in designing network firewalls.
| | File Size: | 197868 | | Last Modified: | Oct 1 23:22:48 1999 |
| MD5 Checksum: | 49af2ebc54d54cdde439690005372203 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
