SecurityAppraisers

<body marginwidth="0" marginheight="0" topmargin="0" leftmargin="0"> <table cellpadding="0" cellspacing="0" border="0" summary="SecurityAppraisers"> <tr> <td valign="top" width="760" height="107" background="img/steel.jpg"> <table cellpadding="0" cellspacing="0" border="0" summary="Solid, Cost-Effective Computer Security Solutions tailored to the way your company does business."> <tr> <td width="280"><a href="home/home.html" target="main"><img src="img/logo.gif" width="280" height="99" border="0" alt="SecurityAppraisers Home Page" longdesc="img/logo.txt" /></a> </td> <td valign="top" width="480"> <div class="hdrtext">Solid, Cost-Effective Computer Security Solutions<br />       tailored to the way your company does business.</div><br /> <div class="phonetext1">(888)466-4225</div> <div class="phonetext2">4 N O - H A C K</div> </td> </tr> </table> </td> </tr> <tr> <td background="img/metalbar.gif" height="20" valign="top"> <table cellspacing="0" cellpadding="0" align="right" height="20" background="" summary="Website Navigation Buttons"> <tr valign="middle" align="center"> <td width="1" bgcolor="#999999"><spacer type="block" width="1" height="1" /></td> <td width="85" background="img/metalbar.gif" class="body"><a href="home/home.html" target="main">Home</a></td> <td width="1" bgcolor="#999999"><spacer type="block" width="1" height="1" /></td> <td width="85" background="img/metalbar.gif" class="body"><a href="about/about.html" target="main">About</a></td> <td width="1" bgcolor="#999999"><spacer type="block" width="1" height="1" /></td> <td width="85" background="img/metalbar.gif" class="body"><a href="seclaw/seclaw.html" target="main" title="Security Law">Security Law</a></td> <td width="1" bgcolor="#999999"><spacer type="block" width="1" height="1" /></td> <td width="85" background="img/metalbar.gif" class="body"><a href="privacy/privacy.html" target="main">Privacy</a></td> <td width="1" bgcolor="#999999"><spacer type="block" width="1" height="1" /></td> <td width="85" background="img/metalbar.gif" class="body"><a href="employment/employment.html" target="main">Employment</a></td> <td width="1" bgcolor="#999999"><spacer type="block" width="1" height="1" /></td> <td width="85" background="img/metalbar.gif" class="body"><a href="contact/contact.html" target="main">Contact</a></td> <td width="1" bgcolor="#999999"><spacer type="block" width="1" height="1" /></td> <td width="53" background="img/metalbar.gif"></td> </tr> </table> </td> </tr> </table> <table cellpadding="0" cellspacing="0" border="0" summary="Website Display"> <tr> <td> <table cellpadding="0" cellspacing="0" border="0" width="165" summary="Topics"> <tr> <td background="img/button.gif" width="165" height="22" class="label"><a href="financing/financing.html" target="_blank" title="Security Equipment Financing" tabindex="1">Financing</a></td> </tr> <tr> <td background="img/button.gif" width="165" height="22" class="label"><a href="cost/cost.html" target="_blank" title="Cost-Effective Firewalls" tabindex="2">Firewalls</a></td> </tr> <tr> <td background="img/button.gif" width="165" height="22" class="label2"><a href="server/server.html" target="_blank" title="Server Based Firewalls" tabindex="3">Server</a></td> </tr> <tr> <td background="img/button.gif" width="165" height="22" class="label2"><a href="app/app.html" target="_blank" title="Application Firewalls" tabindex="4">Application</a></td> </tr> <tr> <td background="img/button.gif" width="165" height="22" class="label2"><a href="netapp/netapp.html" target="_blank" title="Network Appliance Firewalls" tabindex="5">Appliance</a></td> </tr> <tr> <td background="img/button.gif" width="165" height="22" class="label2"><a href="personal/personal.html" target="_blank" title="Personal Firewalls" tabindex="6">Personal</a></td> </tr> <tr> <td background="img/button.gif" width="165" height="22" class="label"><a href="content/content.html" target="_blank" title="Content Inspection" tabindex="7">Content Inspection</a></td> </tr> <tr> <td background="img/button.gif" width="165" height="22" class="label"><a href="linux/linux.html" target="_blank" title="Hardened Linux" tabindex="8">Hardened Linux</a></td> </tr> <tr> <td background="img/button.gif" width="165" height="22" class="label2"><a href="bastille/bastille.html" target="_blank" title="Bastille Linux" tabindex="9">Bastille</a></td> </tr> <tr> <td background="img/button.gif" width="165" height="22" class="label2"><a href="nsa/nsa.html" target="_blank" title="NSA Linux" tabindex="10">NSA</a></td> </tr>  <tr> <td background="img/button.gif" width="165" height="22" class="label"><a href="messaging/messaging.html" target="_blank" title="Secure Messaging" tabindex="12">Secure Messaging</a></td> </tr> <tr> <td background="img/button.gif" width="165" height="22" class="label"><a href="database/database.html" target="_blank" title="Security Tokens" tabindex="13">Secure Database</a></td> </tr> <tr> <td background="img/button.gif" width="165" height="22" class="label"><a href="tokens/tokens.html" target="_blank" title="Security Tokens" tabindex="14">Security Tokens</a></td> </tr> <tr> <td background="img/button.gif" width="165" height="22" class="label"><a href="updates/updates.html" target="_blank" title="Security Updates and Patches" tabindex="15">Updates</a></td> </tr> <tr> <td background="img/button.gif" width="165" height="22" class="label"><a href="proact/proact.html" target="_blank" title="Proactive Security Scanning and Monitoring Tools" tabindex="16">Proactive Monitoring</a></td> </tr> <tr> <td background="img/button.gif" width="165" height="22" class="label2"><a href="scan/scan.html" target="_blank" title="Application Scanning" tabindex="17">Application Scanning</a></td> </tr> <tr> <td background="img/button.gif" width="165" height="22" class="label"><a href="network/network.html" target="_blank" title="Secure Network Protocols" tabindex="18">Secure Protocols</a></td> </tr> <tr> <td background="img/button.gif" width="165" height="22" class="label"><a href="antivirus/antivirus.html" target="_blank" title="AntiVirus Scanners" tabindex="19">AntiVirus</a></td> </tr> </table> </td> <td> <table cellpadding="0" cellspacing="0" border="0" width="500" summary="Explanation of Server-Based Firewalls"> <tr valign="top"> <td colspan="2">  <h2 class="title">Server-Based Firewalls</h2>  <table cellpadding="10" cellspacing="0" border="0" width="200" align="right" summary="Excerpt"> <tr> <td height="5" colspan="2"><spacer type="block" width="1" height="5" /></td> </tr> <tr> <td width="5"><spacer type="block" width="1" height="5" /></td> <td width="175" valign="top" height="247"> <img src="../img/server.gif" width="182" height="247" border="0" alt="Server-based firewalls which are supported by SecurityAppraisers can be adapted to accommodate a wide range of unforeseen needs..." longdesc="../img/server.txt" /> </td> </tr> <tr> <td height="5" colspan="2"><spacer type="block" width="1" height="5" /></td> </tr> </table>  <p class="body">Server-Based Firewalls run on a dedicated computer, using a standard operating system and commercially popular hardware. Server-based firewalls which are supported by <span class="branding">SecurityAppraisers</span><span class="symbol">®</span> can be adapted to accommodate a wide range of unforeseen needs that might arise for an enterprise. <span class="branding">SecurityAppraisers</span><span class="symbol">®</span> installs and maintains the following Server-Based Firewalls:</p> <table cellpadding="0" cellspacing="0" border="0" width="239" summary="Astaro Link"> <tr> <td><a href="http://www.astaro.com" target="_blank"><img src="../img/astaro.gif" width="239" height="84" border="0" alt="Astaro website" longdesc="../img/astaro.txt" /></a></td> </tr> <tr> <td align="right" class="bodysm"> <strong><em>Astaro website</em></strong> </td> </tr> </table> <p class="body"><strong>Astaro Security Linux "stateful-inspection" Firewall</strong>. Not only does this product prevent unsolicited network entry to the corporate network by computer criminals, but Astaro's Firewall:</p>  <table width="90%" border="0" cellspacing="0" cellpadding="3" summary="Astaro Security Linux Firewall Features"> <tr> <td valign="top"> <div class="body"> <ul> <li><p><strong>is network compatible with Microsoft, Apple, Novell</strong> -- any platforms supporting popular Internet network standards such as <acronym title="Transmission Control Protocol">TCP</acronym> and <acronym title="HyperText Transfer Protocol">HTTP</acronym>;</p></li> <li><p><strong>stays competitively priced as your business requirements increase</strong> [Your firewalling costs using Astaro tend to increase linearly, not exponentially:</p> <ul><li><p>by adding network cards and changing the license, in most cases Astaro's firewall can immediately adapt to handling more network segments, whereas most appliance firewalls require a complete replacement; and</p></li> <li><p>many other Server-Based Firewalls become exorbitantly priced when reconfigured for the multiple network interfaces that a business might become obligated to support as its business grows];</p></li> </ul> </li> <li><p><strong>is flexible and can be adapted to specific needs a customer might have</strong> [Examples: rules can be automatically adjusted according to time of day, or patterns of network traffic, etc. -- anything that can be specified on a 'hardened' Linux platform (the configuration of firewalls to react according to the dictates of an abstract algorithm -- as opposed to simple, well-defined rules -- is called <strong><em>Adaptive Firewalling</em></strong>)];</p></li> <li><p>can accommodate secure and private remote access to your corporate network and computers (using <acronym title="Virtual Private Network">VPN</acronym> technology) from your home, branch office, or anywhere an Internet connection can be made; and</p></li> <li><p>runs on a dedicated Linux operating system, secured by Astaro Corporation, and Astaro will offer support on qualified hardware configurations to insure the proper functioning of both.</p></li> </ul> </div> </td> </tr> <tr> <td valign="top"><p class="body"><span class="branding">SecurityAppraisers</span><span class="symbol">®</span> has been "<acronym title="Astaro Certified Engineer">ACE</acronym>" certified by Astaro Corporation to install and configure their firewall products.</p></td> </tr> <tr> <td><p class="body"><strong><em>While </em><span class="branding">SecurityAppraisers</span><span class="symbol">®</span><em> strives to deliver cost-effective security products and services, we do not just "install boxes".</em></strong> We have the technical qualifications to do complex troubleshooting and adaptation, and <strong>we stand behind the work we are contracted to do.</strong> Examples of some of the adaptations of Astaro we have done for our customers are:</p> <div class="body"> <ul> <li><p><strong>multiple interface, multiple gateway support</strong>: If you are an enterprise shop with multiple networks needing departmental firewalling, this can be of great assistance (posted at <a href="http://www.astaro.org" target="_blank" title="Astaro support site">astaro.org</a> for the benefit of all Astaro customers).</p></li> <li><p><strong>dead gateway detection</strong>: If you are an enterprise business using multiple <acronym title="Internet Service Providers">ISPs</acronym> to insure continuous Internet connectivity, <span class="branding">SecurityAppraisers</span><span class="symbol">®</span> has developed an integrated software extension package which will dynamically arrange for a switchover should the connection to one of your <acronym title="Internet Service Providers">ISPs</acronym> fail.</p></li> <li><p><strong>multiple interface <acronym title="Dynamic Host Control Protocol">DHCP</acronym> configuration</strong>: An ability to define multiple interface <acronym title="Dynamic Host Control Protocol">DHCP</acronym> subnets through Astaro's standard administrative browser interface.</p></li> <li><p><strong>secure dialup support</strong>: Should the firewall become accidentally misconfigured and thus disabling all network access and remote network support, support staff of <span class="branding">SecurityAppraisers</span><span class="symbol">®</span> can still remotely access the firewall on short notice over a dialup connection and get it back online. This extended capability furnished by <span class="branding">SecurityAppraisers</span><span class="symbol">®</span> is off by default for reasons of security, and can easily be turned on by a staffperson with physical access to the firewall server.</p></li> </ul> </div> </td> </tr> <tr> <td align="center"> <p class="body"> <strong><em>If you can clearly define what it is you need, <span class="branding">SecurityAppraisers</span><span class="symbol">®</span> can get the job done.</em></strong> </p> </td> </tr> </table>   <h4 class="heading">"I see that this firewall uses Linux. So it 'won't work' with Windows or Apple OS/X machines we might be using, right?"</h4> <p class="body">To the contrary, it does. What makes the computers of the Internet work together, in spite of their sometimes radically differing designs, is adherence to network standards. It's why somebody on an Apple OS/X computer can send <acronym title="Electronic mail">Email</acronym> to a Windows user. All the network standards used by the most popular Internet applications-browser, <acronym title="Electronic mail">Email</acronym>, etc. are used by Linux. Much of Linux's present-day networking capabilities were <em>designed</em> from the ground up to do firewalling.</p> <h4 class="heading">"We already have Intel-based server hardware. Can we use the firewall software with it?"</h4> <p class="body">The hardware would have to be dedicated to running just the firewall software. It will need to be under warranty or a service contract (that is, its manufacturer, or support personnel authorized by the manufacturer, are contracted to make hardware repairs) so that defects due to wear or damage will be quickly remedied. In the case of the Astaro product, it should be demonstrated that the hardware has been field tested to support Linux (for example, Dell is a manufacturer which furnishes machines that have been qualified for Linux). Also, both products require sufficient memory, disk capacity, processor speed, and need two network cards. If the hardware in question needs any of these components upgraded, and they can be added by qualified personnel (and adding them does not void the support contract for the machine), then the hardware furnished by your company should be able to run these firewall products.</p> <h4 class="heading">"Is a Firewall all I need to implement computer security?"</h4> <p class="body">No. A Firewall alone does not constitute a complete computer security program; it is a vital cornerstone of a security plan, which should also include Content Inspection, Proactive Security Monitoring, Software Security Updates and Security Policy Enforcement, Security Tokens, Virus Scanning, and Secure Network Protocols. Confer with the other sections of this web site to learn about these security techniques.</p> <h4 class="heading">"I read that some Firewalls listed here previously had a security problem (which has since been fixed). Why should I even consider using any that had these problems?"</h4> <p class="body">Generally, the more popular a Firewall is, the more likely hackers will exploit it. Consequently, vulnerabilities found in a Firewall product, and subsequently fixed, do not necessarily indicate the level of security that the Firewall currently affords. Rather, an important consideration is the speed and consistency with which the Firewall manufacturer addresses these incidents as they occur. <span class="branding">SecurityAppraisers</span><span class="symbol">®</span> has assisted manufacturers in identifying holes in their products, and has implemented updates for their customers.</p>   </td> </tr> </table> <br />  <table cellpadding="0" cellspacing="0" border="0" width="500" summary="footnote"> <tr> <td align="center" class="bodysm"><span class="symbol">©</span> 2002-2007 SecurityAppraisers. All rights reserved.<br /> "Linux" is a registered trademark of Linus Torvalds<br /> "Dell" is a registered trademark of Dell Computer Corporation<br /> "Windows 2000" and "Windows XP" are registered trademarks of Microsoft Corporation<br /> "OS/X" is a registered trademark of Apple Computer Corporation<br /> "Novell" is a registered trademark of Novell Corporation<br /> This site follows the guidelines of the <acronym title="World Wide Web Consortium">W3C</acronym>'s<br /> <a href="../wai/wai.html" target="main" title="About the Website Accessibility Initiative..."><b>W</b>ebsite <b>A</b>cessibility <b>I</b>nitiative (<b><acronym title="Website Acessibility Initiative">WAI</acronym></b>)</a> </td> </tr> </table>  </td> </tr> </table> </body>