Secure Computing's Zero-Hour Attack Protection Technology Automatically Protects against Recently Identified Sendmail Vulnerability.SAN JOSE San Jose, city, United States San Jose (sănəzā`, săn hōzā`), city (1990 pop. 782,248), seat of Santa Clara co., W central Calif.; founded 1777, inc. 1850. , Calif. -- Sidewinder sidewinder, common name for a rattlesnake, Crotalus cerastes, found in the deserts of the SW United States. This 2-ft (60-cm), pale yellow and pink snake is named for its curious method of locomotion. G2 Self-Defending Platform with Patented Type Enforcement  This article or section is written like a personal reflection or and may require .Please [ improve this article] by rewriting this article or section in an . Technology Protects Customers from Unknown Attacks Secure Computing For the general concept, see . Secure Computing Corporation, or SCC, is a public company (NASDAQ: SCUR) that develops and sells computer security products, such as:
in full National Association of Securities Dealers Automated Quotations U.S. market for over-the-counter securities. Established in 1971 by the National Association of Securities Dealers (NASD), NASDAQ is an automated quotation system that reports on :SCUR), the experts in securing connections between people, applications, and networks, today announced the Sidewinder G2(R) Security Appliance's patented Type Enforcement(R) technology protects customers from hacker attempts to exploit the recent Sendmail(TM) vulnerability. The vulnerability was reported by the Computer Emergency Response Team (CERT) in CERT advisory CVE-2006-0058. The Sendmail vulnerability may permit an attacker to completely take over Sendmail message transfer agent The store and forward capability in a messaging system. See messaging system. (messaging) Message Transfer Agent - (MTA, Mail Transfer Agent) Any program responsible for delivering e-mail messages. (MTA (1) (Message Transfer Agent or Mail Transfer Agent) The store and forward part of a messaging system. See messaging system. (2) See M Technology Association. 1. (messaging) MTA - Message Transfer Agent. ) servers, left unprotected or protected by weaker firewalls, on the Internet or on corporate and government networks; subsequently, e-mail privacy The protection of electronic mail from unauthorized access and inspection is known as electronic privacy. In countries with a constitutional guarantee of the secrecy of correspondence, e-mail is equated with letters and thus legally protected from all forms of eavesdropping. and availability are compromised. The vulnerability also allows the attacker to possibly take control of other devices on the network. Secure's zero-hour attack protection stops attackers' attempts to exploit this vulnerability by taking the impact of an attack on Sidewinder G2, at the perimeter, containing the attack, automatically terminating the hacker's connection and continuing to securely pass e-mail through the system. Sendmail is the cornerstone e-mail delivery application on the Internet used for moving billions of e-mail messages daily. More than half of the large ISPs and Fortune 500 use Sendmail, as well as governments around the world. "This recent Sendmail vulnerability is just one more example why we have been using and trusting Sidewinder G2 for years," said John Wickwire, chief technology officer at the Central Bank of Illinois. "We know that if we're targeted by an unknown attack, we're protected." Sidewinder G2 ZAP(TM) technology is based upon the positive security model, which allows only legitimate network traffic and denies everything else. "Negative model" security technologies like IPS gateways are extremely useful, but they allow everything through the gateway unless they recognize known viruses and attacks. The positive security model is therefore superior at preventing unknown attacks because it automatically eliminates exposure to many types of attacks -- unknown as well as known. ZAP technology combines over 200,000 attack signatures with a positive security model for maximum protection. "Sidewinder G2 protects against known and unknown attacks because of its highly configurable secure application pathways and it's patented method of securely embedding its appliance software, like Sendmail, in its never been compromised SecureOS(R) operating system operating system (OS) Software that controls the operation of a computer, directs the input and output of data, keeps track of files, and controls the processing of computer programs. ," said John Doyle John Doyle may refer to:
Secure Computing's ZAP technology also includes all key defense-in-depth security techniques working simultaneously in the Sidewinder G2, including: --SecureOS self-defending platforms with patented Type Enforcement(R) technology -- a preeminent example of the positive security model. --Secure Application Pathways that come pre-built with the system and are then tightly configured by the customer to protect their Internet facing applications -- another preeminent example of the positive security model. --Event monitoring, analysis, and notification using the Sidewinder G2 dashboard and Sidewinder G2 Security Reporter(TM). --Traditional signature-based attack protections, including over 200,000 threat signatures. You can review the entire CERT advisory at http://www.kb.cert.org/vuls/id/834865. Secure Computing's official response to this vulnerability is available at http://www.kb.cert.org/vuls/id/834865. About Sidewinder G2 The Sidewinder G2 Security Appliance Security appliances protect computer networks from unwanted data traffic, intruders, email spam, enforce policies, and may also be used to create and manage VPNs. There are a number of types of security appliances. consolidates a wide variety of security functions in one system, thereby greatly reducing the management complexity for IT professionals. These security functions include an unprecedented Application Defenses(TM) firewall with application-level intrusion prevention See IPS and IDS. , protocol anomaly protection, a secure e-mail, Web, and DNS (Domain Name System) A system for converting host names and domain names into IP addresses on the Internet or on local networks that use the TCP/IP protocol. For example, when a Web site address is given to the DNS either by typing a URL in a browser or behind the gateway, anti-spam, anti-virus, IPSec VPN (Virtual Private Network) A private network that is configured within a public network (a carrier's network or the Internet) in order to take advantage of the economies of scale and management facilities of large networks. , IDS and response, outbound Web access filtering, SSL (Secure Sockets Layer) The leading security protocol on the Internet. Developed by Netscape, SSL is widely used to do two things: to validate the identity of a Web site and to create an encrypted connection for sending credit card and other personal data. termination and clientless VPN access. About Secure Computing Secure Computing (NASDAQ:SCUR) has been securing the connections between people and information for over 20 years. Specializing in delivering the world's strongest security appliances/firewalls, strong authentication, and content management and filtering solutions, Secure Computing is uniquely qualified to be the global security solutions provider to organizations of all sizes. Our more than 17,000 global customers in over 100 countries, supported by a worldwide network of partners, include the majority of the Dow Jones Global 50 Titans and the most prominent organizations in banking, financial services, healthcare, telecommunications, manufacturing, public utilities, education, and national and local governments. The company is headquartered in San Jose, Calif., and has offices worldwide. For more information, see http://www.securecomputing.com. All trademarks, trade names or service marks used or mentioned herein belong to their respective owners. This press release contains forward-looking statements relating to Secure Computing's ability to protect customers using Sidewinder G2 from unknown attacks related to the Sendmail vulnerability, and the expected benefits of such, and such statements involve a number of risks and uncertainties. Among the important factors that could cause actual results to differ materially from those indicated by such forward-looking statements are delays in product development, undetected software errors or bugs, competitive pressures, technical difficulties, changes in customer requirements, general economic conditions and the risk factors detailed from time to time in Secure Computing's periodic reports and registration statements filed with the Securities and Exchange Commission. |
|
Printer friendly
Cite/link
Email
Feedback
Reader Opinion