Siju George said: > Hi all, > > how much truth is actually in this article??? > > http://www.securitypipeline.com/165700439
A lot. And not so much. Firewalls do nothing to verify the authenticity of packets that get through, firewalls do nothing to protect the secrecy of packets that get through. Telnet behind a firewall is still insecure to anything that is also behind the firewall, for instance. But, they *do* stop packets. The author alludes to relying on packet-stopping features of ACL-based switches, and that's not really all that different from using a firewall. And he pretends that the things firewalls do best - protect a system you can't otherwise secure - is unnecessary. Sorry, but ActiveDirectory-authenticated Windows Filesharing is still Windows Filesharing. Should you depend on your firewall? No. Use it when other solutions aren't available. Is it a valid solution for some problems? Yes. -- Matthew Weigel hacker [EMAIL PROTECTED]
