[10681] in bugtraq
Re: IBM eNetwork Firewall for AIX
daemon@ATHENA.MIT.EDU (Andreas Siegert)
Mon May 31 17:27:14 1999
Mail-Followup-To: BUGTRAQ@NETSPACE.ORG
Mime-Version: 1.0
Content-Type: text/plain; charset=iso-8859-1
Content-Transfer-Encoding: QUOTED-PRINTABLE
Message-Id: <19990529134225.A1035@crash.muc.de>
Date: Sat, 29 May 1999 13:42:25 +0200
Reply-To: Andreas Siegert <afx@CRASH.MUC.DE>
From: Andreas Siegert <afx@CRASH.MUC.DE>
To: BUGTRAQ@NETSPACE.ORG
In-Reply-To: <19990528222925.7024D9410@Galois.suse.de>; from "Marc Heuse" on
Sat, May 29, 1999 at 12:29:25AM +0200
Hi Marc!
Quoting Marc Heuse (marc@SUSE.DE) on Sat, May 29, 1999 at 12:29:25AM +0=
200:
> But to set one thing straight: It's *not* IBM's fault. The IBM Firewa=
ll is a
> product of another company called Raleigh (I hope thats spelled corre=
ctly).
> In fact, the IBM AIX Security Team, especially Troy Bollinger, was ve=
ry
> helpful and getting a fix - a correct one - out. It's the other compa=
ny
> who writes security software but really seems to have no knowledge.
> sad but true
Unfortunately Raleigh is not another company, Raleigh (or RTP) in this =
case is
the location in North Carolina of the IBM people who produce the IBM fi=
rewall
and most other IBM products related to networking, whereas AIX is devel=
oped
in Austin,TX. So it is unfortunately really a full IBM product :-(
Me thinks Austin should have developed the IBM firewall, the result wou=
ld
probably be much more satisfying.
AIX 4.3 now has a good packet filter as well as IPSEC support (even tho=
ugh
most people in AIX land don=B4t seem to know) and there are enough free=
proxy
solutions out there to build a decent firewall with AIX without the nee=
d to
use the stuff from Raleigh.
afx
--
Hackito ergo sum!
