RE: Check point eng allowing Nmap NULL access

From: Richard Stevens (richard@tccnet.co.uk)
Date: Wed Jul 16 2003 - 05:23:53 EDT


Pretty sure GTA do not use the check point engine.

If you post to GB-users@gta.com I am sure you will get a definitive answer on this one.

Regards.

Richard

-----Original Message-----
From: ozzie ozzie [mailto:ozkan_aziz@hotmail.com]
Sent: 15 July 2003 17:01
To: pen-test@securityfocus.com
Subject: Check point eng allowing Nmap NULL access

hi all,

I have just installed a GTA robox firewall, which uses the check point
engine as far as I know. I have tested it with nmap and the only access
that seems to get through is an nmap scan using no ping and null flags.

does anyone one know how to prevent this? (I have a rule that says all ->
all, any protocol deny so should it be getting through?)

Thanks in advance

oz

---------------------------------------------------------------------------
Your network Firewall and IDS products do not prevent Web application
exploits - the most common form of online attack - resulting in Web
defacement, data theft, sabotage and fraud.

KaVaDo is the first and only company that provides a complete and an
integrated suite of Web application security products, allowing you to
assess your entire environment, automatically set positive security
policies and maintain it without compromising business performance.

For more information on KaVaDo and to download a FREE white paper on Web
applications - security policy automation, please visit:
http://www.kavado.com/ad.htm
----------------------------------------------------------------------------

---------------------------------------------------------------------------
Your network Firewall and IDS products do not prevent Web application
exploits - the most common form of online attack - resulting in Web
defacement, data theft, sabotage and fraud.

KaVaDo is the first and only company that provides a complete and an
integrated suite of Web application security products, allowing you to
assess your entire environment, automatically set positive security
policies and maintain it without compromising business performance.

For more information on KaVaDo and to download a FREE white paper on Web
applications - security policy automation, please visit:
http://www.kavado.com/ad.htm
----------------------------------------------------------------------------



This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:53:36 EDT