• Post Reply
  • Bookmark Topic Watch Topic
  • New Topic

A Question on Firewalls

 
Rahul Mahindrakar
Ranch Hand
Posts: 1869
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
1)Which of the following can firewalls NOT protect against?
a Unauthorized access to legacy systems.
b Attackers with direct access to the protected side.
c Viruses.
d Inappropriate use of the Internet.
e Unauthorized access to web servers.
i think the answers should be a, b and e. Any guesses??
 
Vladan Radovanovic
Ranch Hand
Posts: 216
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Hi,
I would say b and e.
But my question on this is what is " Inappropriate use of the Internet" ? Inappropriate ?
Vladan
Where is the question from ?
 
Amanda Waite
Ranch Hand
Posts: 56
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Hi there,
Some of these questions really make you mad.
a. Unauthorized access to legacy systems.
- You can control access to any system using address filtering
b. Attackers with direct access to the protected side
- You can't protect against this. Allowing multiple routes across your network boundaries is stupid unless all are equally secure.
c. Viruses.
- Seeing as most viruses are delivered by email how are you going to defend against them all? You can block spam and bulk email, you can even scan incoming emails, but you aren't going to be able to detect all viruses. I bet that they list this as one that you *can* protect against

d. Inappropriate use of the Internet.
Well, you can block a lot of inappropriate content with a good firewall/proxy server. But as Vladen says, define "Inappropriate", does this include exchanging emails with terrorists? I'd say yes, AOL seem to be able to do it )
e Unauthorized access to web servers.
I take it that this means users/systems accessing a companies web servers form outside. In which case this can be protected against using a suitable authentication/authorisation mechanism.
So my answer would be 'b'
Amanda
 
Adrian Yan
Ranch Hand
Posts: 688
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
My two cents, firewall can not protect you from Viruses.
 
Amanda Waite
Ranch Hand
Posts: 56
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Originally posted by Adrian Yan:
My two cents, firewall can not protect you from Viruses.

Hi Adrian,
I'd say that it can, just switch everything off on your firewall and nothing can get through. A more fine-grained approach would be to prevent external email and file transfers. If you want external email then you need to use the latest and greatest email filtering/anti-virus software on your firewall and keep it updated. But as always, the answer to the question is the one that the person who write the question feels is right.
Amanda
 
John Wetherbie
Rancher
Posts: 1449
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
One thing I learned from college and the SCJP and SCEA tests is that being able to think like the test writer is a valuable skill. You might disagree with the test writer's answer (and you can even be right) but the immediate goal is to pass the test!
John
 
Amanda Waite
Ranch Hand
Posts: 56
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator

Hi all,
To follow on from what John has said. Something that I have learned from these tests is that it is rare to find a question as simplisticly worded as the one that started this thread. Mock tests are frequently more difficult than the actual exam because the questions are poorly thought out, but at the same time exam questions do merit very careful reading as they can be written in such a way to be easily misread, possibly deliberately, although I don't see how semantics adds value to a qualification particularly when many of the test candidates may not have english as their first language.
I just thought, are these tests always in english? or are they localised for each country/region?
Amanda
Amanda
 
Amanda Waite
Ranch Hand
Posts: 56
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
I've probably beaten this to death already, but...
.....just to prove that I can admit to being wrong. Take a look at this faq:
http://pubweb.nfr.net/~mjr/pubs/fwfaq
I still don't know the answer though as Firewalls can protect against viruses, although they probably can't gaurantee protection. Symantec feel that they can do a really good job though. see:
http://enterprisesecurity.symantec.com/products/products.cfm?ProductID=13&PID=2651596
I'll shut up now
Amanda
 
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic