Which of the following is the BIGGEST concern with firewall security?

A.
Internal hackers

B.
Complex configuration rules leading to misconfiguration

C.
Buffer overflows

D.
Distributed denial of service (DDoS) attacks

Explanation:
Firewalls filter traffic based on a defined set of rules. The rules must be configured correctly for the firewall to
provide the intended security.
Incorrect Answers:
A: Firewalls main duty is to defend against external, not internal, threats.
C: Firewalls do not product from buffer overflows attacks.
D: Firewalls can help in defending from DDoS attacks, but the main concern with firewall is to configure them
correctly.

Stewart, James M., Ed Tittel, and Mike Chapple, CISSP: Certified Information Systems Security Professional
Study Guide, 5th Edition, Sybex, Indianapolis, 2011, p. 25