We have thousands of posts on a wide variety of open source and security topics, conveniently organized for searching or just browsing.
Sourcefire is moving into the firewall business, bringing its experience in intrusion prevention systems (IPS) such as Snort to offer a more context-aware platform that can better adapt to modern security threats than traditional firewalls, according to the firm.
It's no doubt that one of the leaders for network equipment is Cisco Systems. Newer Cisco devices are starting to use what Cisco calls its "IOS-XE" operating system, which is a customized flavor of GNU/Linux. Yes, GNU/Linux, which should not come as any surprise as GNU/Linux is used on countless high level appliances and security devices.
The IPFire project development team has announced the first beta release of an ARM port of version 2.11 of its open source firewall. IPFire is a Linux server distribution that can be booted from a CD or USB drive, or installed to a computer's internal drive.
Fwbuilder is a unique graphical firewall tool that allows the user to create objects and then drag and drop those objects into firewalls, to build a powerful security system for a single PC or a network of PCs. Fwbuilder supports a wide range of firewalls (Cisco ASA/PIX, Linux iptables, FreeBSD's ipfilter, OpenBSD's pf, and more), so its rules can be deployed on multiple platforms.
Some of the most commonly-used firewalls are subject to a hacker exploit that lets an attacker trick a firewall and get into an internal network as a trusted IP connection.
Traditional firewalls might not be enough, argues Palo Alto Networks founder Nir Zuk. The world is very different from the days when email ruled the roost and Yahoo, not Google, was the first search engine name that rolled off your tongue.
What should enterprises expect if they want to make the transition from a traditional firewall to a next-generation firewall? It starts with a decidedly different way of thinking about security goals associated with a firewall, especially in terms of establishing application-aware controls over employees as they access the Internet, the Web and social networking sites. (See Unbatten the hatches.)
