Global Security Watch >  Introduction to Firewalls

Networks and Securityhttp://www.thex.com/security [Networks and Security] In addition to the hardware firewall built into routers, there are also software applications called personal firewalls that you can run on your computer. These personal firewall applications monitor all incoming and outgoing communications on your computer as well as what services are trying to interact with what other services.

Some related posts from Technorati and Google.

Virus Alertshttp://www.captivereefing.com/virusblog [Virus Alerts] RE: NTLM HTTP Authentication is insecure by design - a new writeup by: the URL point of view, so offhandedly I don’t see how URL encryption and request assertions... of HTTP for the outgoing request.

[Exploitx Security Portal - exploits security] Software Firewalls: Made of Straw? III: Let’s look at one case where a personal firewall’s functionality can be circumvented. By inserting a malicious LSP (Layered Service Provider) into the protocol stack, a malicious application could effectively become a part of the protocol stack itself, able to borrow valid connections made by valid processes and ride on top of them, altering outgoing or incoming data at will.

Joi.ito.comhttp://joi.ito.com [Joi.ito.com] Joi Ito's Web: The Chinese Firewall: This makes the SSH tunnel much more secure than a SOCKS setup, as people monitoring your traffic won't see any DNS requests at all, and thus won't know which sites you're accessing (assuming the target sites use pure HTTP without SSL). Furthermore, a SOCKS CONNECT packet will contain the target host's DNS-resolved IP address in cleartext format, requiring the use, say, of an additional encryption layer —

[Memex.naughtons.org] Memex 1.1 » Blog Archive » Use a Firewall, Go to Jail: feature of your favorite operating system product, you’re in violation because these connection sharing technologies use NAT. Most operating system products (including every version of Windows introduced in the last five years, and virtually all versions of Linux) would also apparently be banned, because they support connection sharing via NAT.”

Blogs.msdn.comhttp://blogs.msdn.com [Blogs.msdn.com] IPsec and Domain Isolation: This paper describes interoperability between IPsec-secured hosts running Windows Server 2003, Windows XP with Service Pack 2 (SP2), and Windows 2000 Server with Service Pack 4 (SP4) in a domain or server isolation scenario and hosts that cannot use IPsec, including computers running earlier versions of Windows or non-Microsoft operating systems. It is intended for IT professionals in organizations that are investigating using IPsec in Microsoft Windows to deploy server and domain isolation.

Securitypipeline.com[Securitypipeline.com] Security Pipeline | Barracuda Adds TLS Encryption To E-Mail Firewall: Barracuda Networks last week announced the integration of key outbound e-mail filtering techniques, including rate controls, domain restrictions, user authentication (SASL), keyword and attachment blocking, for simultaneous inbound and outbound e-mail filtering into its full line of Barracuda Spam Firewall models. Also planned for the new release are enhancements to the Barracuda Spam Firewall's Intent Analysis and Bayesian filters, as well as extended quarantine retention policies.

Reflected tags on Technorati: Blog, ,