[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] RE: [FW1] Boson FW-1 Admnistrator Exam
In response to the snipit.....YIKES! Anyone looking at the Boson tests, RUN!!! -----Original Message----- From: [email protected] [mailto:[email protected]] Sent: Wednesday, January 17, 2001 10:02 AM To: [email protected]; [email protected] Subject: RE: [FW1] Boson FW-1 Admnistrator Exam I have seen the Boson FW test and personally I do not rate them at all. It is obvious some one has just gone through the training course and made up a question per page. If you want to see the exams down load from www.boson.com there are 10 sample questions The answer to your question is a very large NO its not true. Andrew Shore BTcd Information Systems Engineering Internet & Multimedia -----Original Message----- From: Lance Spitzner [mailto:[email protected]] Sent: 17 January 2001 14:25 To: [email protected] Subject: [FW1] Boson FW-1 Admnistrator Exam Recently, I was asked a question about a "Boson" FW-1 Administrator exam. I have no idea what this exam is, nor who sponsors it. However, if the material quouted below is true, then this question greatly disturbs me. I wanted to know if anyone else has ran into this. --- snip snip --- I have always thought that it is necessary to harden the OS for the firewall server. However, I was doing the Boson Checkpoint FW-1 Administrator practice exams when I came across this question: Question: Why is it unnecessary for Firewall-1 to harden the OS? Answer: Firewalls that do not analyze the packet until it gets to the application layer need to protect themselves from the lower layer attacks. Firewall-1 protects itself by analyzing all the layers of the packet. Therefore it is unncessary for the administrator to harden the OS for Firewall-1 server. Is this true???? --- snip snip --- This is absolutely NOT true. If an exam is making these assumptions, then it shows that the author has a total lack of security knowledge. No firewall is impervious to vulnerabilities, Bugtraq demonstrates this again and again. Also, base OS armoring protects the firewall against rulebase or administrative misconfigurations. I highly recommend OS armoring for all firewalls, regardless of the vendor. Part of security is reducing risk at all levels. -- Lance Spitzner http://project.honeynet.org ============================================================================ ==== To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ============================================================================ ==== ============================================================================ ==== To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ============================================================================ ==== ================================================================================ To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================================================
|