[ISN] Product Watch: Free Tool Cleans Up 'Rusty, ' Unsafe Firewall Settings

From: InfoSec News <alerts_at_private>
Date: Wed, 3 Mar 2010 01:52:12 -0600 (CST)

By Kelly Jackson Higgins
Mar 01, 2010 

SAN FRANCISCO -- RSA Conference 2010 -- Matasano Security here today 
rolled out a new Web-based open-source tool that scans for any firewall 
rules that are outdated, redundant, or could potentially expose a 
network to security threats.

"Flint makes sure nothing in [your firewall changes and configurations] 
creates a security problem," says Tom Ptacek, principal with Matasano, a 
security consulting and research firm.

Ptacek says compliance requirements -- namely PCI -- and secure software 
development efforts are forcing organizations to take a closer look at 
their firewall configurations. "They are starting to take their internal 
apps a lot more seriously ... as they review their apps, they have a 
review associated with firewall configurations," Ptacek says. "Apps get 
retired and get new revs. As part of their assessments, they are going 
back to the firewall rules that let those apps run."

Flint is the second product offering from Matasano: Its first product, 
Playbook, is a VMWare-based virtual appliance that centralizes and 
synchronizes the control and management of multiple vendors' firewalls. 
Flint can work with Playbook by ensuring any changes to firewalls are 
correct and don't open security holes into the network, according to 
Matasano. Flint also can run as a standalone tool for checking 


Register now for HITBSecConf2010 - Dubai, the premier 
deep-knowledge network security event in the GCC, 
featuring keynote speakers John Viega and Matt Watchinski! 
Received on Tue Mar 02 2010 - 23:52:12 PST

This archive was generated by hypermail 2.2.0 : Wed Mar 03 2010 - 00:07:42 PST