Date: Sun, 9 Apr 00 17:59:28 EST From: Dwight McKay (The Moderator) Reply-To: Suns-at-Home@net-kitchen.com Subject: Suns-at-Home Digest V13 #11 To: Suns-at-Home-List Suns-at-Home Digest Sun, 9 Apr 00 Volume 13 : Issue 11 Today's Topics: Checkpoint FW-1 pinging my LAN +--------------------------------------------------------------------------+ | Submissions: suns-at-home@net-kitchen.com | | Requests: suns-at-home-request@net-kitchen.com | | WWW Archive access: http://www.net-kitchen.com/~sah | +--------------------------------------------------------------------------+ ---------------------------------------------------------------------- Date: Mon, 03 Apr 2000 17:10:05 PDT From: "v bender" Subject: Checkpoint FW-1 To: suns-at-home@net-kitchen.com -- Original message FYI, a friend of mine has a keygen for FW-1, which they use semi-legit to get past the two week wait for Checkpoint to respond with the correct key. I have heard that the product reports back home when it is connected, so it really is risky to use, unless you block those ports beforehand or have a valid license anyway. The high cost of FW-1 is way too much for anyone at home to justify anyway, so pirating is always a concern for home use. Besides, there are too many free firewall/proxy/etc products thanks to linux, many of which are available for solaris also to bother with all the trouble. -- I just came from Checkpoint FireWall-1 training. Bearing what has been written above, I asked about FW-1 "dialing home". It turns out it's one of those 'urban legend' type-a-thingies. Besides, that got me thinking. The prototype I am building is on a standalone network. There is no way the product can go out and "report home", and yet it works flawlessly. And yes, there are many free firewalls, but you will also notice they have documented security holes; so far, I've only been able to find about three documented holes for FW-1, each of which there is a patch for, and none of which apply to 98% of the cases. The free firewalls are either proxy types or application types, and none feature Stateful Inspection technology that was introduced in FW-1, which is neither of the previous two. if anyone knows of a site that lists more than three FW-1 holes, please contact me. I can really use that information. I do agree that the cost of Checkpoint's product is just outrageous. $20,000 is just a tadbit too much. It's insane. However, if you can afford it or are running a small business that could benefit from a tax write-off, it's a good tool to put money into. The reason I am posting this to Suns-at-home is twofold: a) I thought that the litle "phone home" detail might be of interest to Sun(s)@home users, a lot of who are professional sys-admins b) FW-1 main platform is Solaris (regardless of PR schemes). ______________________________________________________ Get Your Private, Free Email at http://www.hotmail.com - ------------------------------ Date: Mon, 3 Apr 2000 16:11:09 -0400 From: =?iso-8859-1?Q?Br=F6dersen_Jacob_K_Civ_ACC/XRKI_=28Sverdrup=29?= Subject: pinging my LAN To: "'suns-at-home@net-kitchen.com'" I have set-up a Sun 2 with Solaris 7. I have the 10MPS Ethernet going through a 3Com transceiver on the AUI port of the Sparc. I can ping the loop back (which doesn't even leave the machine proper), but nothing else on my LAN. I have set-up the /etc/hosts table and "plumbed" the le0 interface with the machines IP address and MAC address. Is there something else that I need to do in order to communicate on my LAN? Jake Brödersen jacob.brodersen2@langley.af.mil - ------------------------------ End of Suns-at-Home Digest ******************************