RE: Check point eng allowing Nmap NULL access

From: Richard Stevens (richardat_private)
Date: Wed Jul 16 2003 - 02:23:53 PDT

Next message: MARTIN M. Bénoni: "RE: Vuln scan tool for web"

Previous message: Bojan Zdrnja: "RE: Vuln scan tool for web"
Maybe in reply to: ozzie ozzie: "Check point eng allowing Nmap NULL access"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Pretty sure GTA do not use the check point engine.

If you post to GB-usersat_private I am sure you will get a definitive answer on this one.

Regards.


Richard

-----Original Message-----
From: ozzie ozzie [mailto:ozkan_azizat_private]
Sent: 15 July 2003 17:01
To: pen-testat_private
Subject: Check point eng allowing Nmap NULL access




hi all,

I have just installed a GTA robox firewall, which uses the check point 
engine as far as I know. I have tested it with nmap and the only access 
that seems to get through is an nmap scan using no ping and null flags. 

does anyone one know how to prevent this? (I have a rule that says all -> 
all, any protocol deny so should it be getting through?)

Thanks in advance

oz

---------------------------------------------------------------------------
Your network Firewall and IDS products do not prevent Web application
exploits - the most common form of online attack - resulting in Web
defacement, data theft, sabotage and fraud.

KaVaDo is the first and only company that provides a complete and an
integrated suite of Web application security products, allowing you to
assess your entire environment, automatically set positive security
policies and maintainĀ it without compromising business performance.

For more information on KaVaDo and to download a FREE white paper on Web
applications - security policy automation, please visit:
http://www.kavado.com/ad.htm
----------------------------------------------------------------------------


---------------------------------------------------------------------------
Your network Firewall and IDS products do not prevent Web application
exploits - the most common form of online attack - resulting in Web
defacement, data theft, sabotage and fraud.

KaVaDo is the first and only company that provides a complete and an
integrated suite of Web application security products, allowing you to
assess your entire environment, automatically set positive security
policies and maintain it without compromising business performance.

For more information on KaVaDo and to download a FREE white paper on Web
applications - security policy automation, please visit:
http://www.kavado.com/ad.htm
----------------------------------------------------------------------------

Next message: MARTIN M. Bénoni: "RE: Vuln scan tool for web"
Previous message: Bojan Zdrnja: "RE: Vuln scan tool for web"
Maybe in reply to: ozzie ozzie: "Check point eng allowing Nmap NULL access"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Wed Jul 16 2003 - 09:07:20 PDT