Question

1) Which would be consider a better type firewall and why? A software based firewall installed on a server or a hardware appliance?

2)  The original version of the Windows XP firewall was disabled by default. In a later release, it was enabled by default. Why do you think this change occurred?

3/ In what setting would an enterprise administrator find it worthwhile to practice infiltration? What legal or ethical questions should be considered before attempting to infiltrate the hacking community in this manner?

Answer 1

1) Appliance based firewalls run on a different server. This helps in making them more secure and offer more protection to the appliance.

There are different reasons for using them both and both have their own benefits in different situations. Software firewalls are used on single computers and help in protecting a single device. If one wants to use a more economical solution and protect the entire network, then a firewall installed on hardware will be suitable.

2) The reason behind disabling it was due to backward compatibility. Also, users never checked the screens in which configuration screens were merged. In the later versions, these issues were resolved and the firewall was enabled again.

3) Infiltration is performed when there is a need to understand the ins and outs of a user computer that has been damaged. It is also done when there is a need to understand a specific security event which was uncommon.

Questions to ask before infiltrating hacking community:

• Is it being performed by the professionals and experts?
• What is the end result one is looking for?
• Is it being performed by those who have understanding of hacking techniques?
• Is it being performed by keeping legal, technical, and ethical standards in mind?
• Do the experts performing it have ethical certifications?
• Were security-cleared classified consultants involved?
• Are only agreed goals going to be achieved?
• Are all legal issues outlined?