Thursday, April 14, 2011

Even Your Firewall Sucks!


If there was one device on your network that you would think you could trust....think again! The exploit used to fool your firewall into appearing trusted is called the "TCP Split Handshake". Apparently this flaw has been around for years, but is only now getting the attention that it deserves. An NSS Labs report says, "Five of the six products allowed external attackers to bypass the firewall and become an internal 'trusted machine.'" The only firewall tested by NSS labs that didn't was the Check Point one. No wonder I can't keep anyone out of my network...

See the links below for all of the fine details:
 
http://www.networkworld.com/news/2011/041211-hacker-exploit-firewalls.html

http://www.pcworld.com/businesscenter/article/225115/firewall_vendors_challenge_findings_of_nss_labs_report.html

http://nmap.org/misc/split-handshake.pdf
Posted by Matt Myrick at 3:01 PM
Labels:

No comments:

Post a Comment

Note: Only a member of this blog may post a comment.

Subscribe to: Post Comments (Atom)