Re: Wrt54G is a FW appliance?
Available news archives: comp.lang.tcl - comp.lang.python - comp.security.firewalls - sci.crypt - comp.lang.php - comp.lang.javascript
Google
 
Web news.hping.org


comp.security.firewalls archive

Re: Wrt54G is a FW appliance?

From: Greg Hennessy <me@privacy.org>
Date: Sun Aug 07 2005 - 20:26:30 CEST



On Sun, 07 Aug 2005 17:13:23 GMT, Leythos <void@nowhere.lan> wrote:



>In article <lo3cf1tv907nakec4rcaek031r3pis74ps@4ax.com>, me@privacy.org 


>says...


>> You have been informed of ISCA certified solutions which are based on


>> Netfilter. 


>> 


>> You have been informed that Sun ship and support IPFilter on Solaris. 


>> 


>> You have been informed that the OpenBSD Packet Filter is part and parcel of


>> what is freely accepted de-facto and and de-jure as the worlds most secure


>> general purpose unix like OS. 


>


>Keep trying to infer that the third-party solution based on the 54g 


>hardware 



I haven't mentioned the wrt54g anywhere in the article quoted. 



Do keep up at the back dear boy. 



>is anything other than a test/toy/project until it's been 


>certified and you show how nothing towards it's being proven as a 


>firewall product.



I'll remind the poster that I am not the asserting that some form of


'certification' is required before anything can be considered as a


firewall. 



>Keep avoiding the truth, keep avoiding facts, 



That is projection on your part. 



The facts have been stated repeatedly. 



They don't suit you or your propensity to flog Watchguard products.  



I'll also remind the poster that his argument has changed repeatedly


throughout this thread. 



1st it was 'certification'



2nd was 'reputable' companies



3rd was demands to audit the source code.  



>'show me the money' as in 


>a link to some reputable organization that identifies the 54g + third-


>party firmware as a fully qualified firewall, the testing methods, the 


>results, and then you don't have to keep waving your arms and trying to 


>prove something without any proof.



Attempting to divert the discussion will not change the facts.  



You're the one who shot yourself in the foot with this line. 



"As it is now, unless we inspect the code, line by line, and then run a


battery of tests against the inside and outside interfaces, we don't know


if it's a firewall."



You are the one who has 1st claimed that certification is somehow


'required'. 



You are the one who has repeatedly ignored the fact that the ICSA have


certified firewalling solutions based on netfilter. 



You are the one who has repeatedly ignored the fact that Sun ship and


support IPFilter with solaris. 



You are the one who is trying to claim that the OpenBSD packet filter


somehow is not a firewall. 



You are the one who cannot address a single point in 



http://groups.google.com/group/comp.security.firewalls/msg/d85775fc547a8b6c?dmode=source&hl=en



Attempting to split hairs will not change the google record. 



>You need to separate what are good products from fact - the fact is that 


>you don't have a leg to stand on, you only have "speculation".



As with the rest of the wibble you've posted of late, that sentence doesn't


make sense. 



Now do yourself a favour and retire while you have a modicum of grace left.



greg



-- 
"Access to a waiting list is not access to health care"


Received on Thu Sep 29 20:00:56 2005