Re: [fw-wiz] About Port Forwarding, Apache and Firewall Rules

• Previous message: Paul D. Robertson: "Re: [fw-wiz] VPN endpoints"
• In reply to: Mark: "Re: [fw-wiz] About Port Forwarding, Apache and Firewall Rules"
• Next in thread: Jeremiah Cornelius: "Re: [fw-wiz] About Port Forwarding, Apache and Firewall Rules"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

To: Mark <firewalladmin@bellsouth.net>
Date: Mon, 30 Aug 2004 08:29:14 -0400 (EDT)

On Sun, 29 Aug 2004, Mark wrote:

> Hi Jim:
>
> I think (hope) you were just pointing out the irony of the request by
> servie_tech. I must confess that I totally overlooked the paradox in the

It's never wrong to hold the moral high ground, so long as you're not
being hypocritical. I think it's especially important that firewall and
network security people hold the moral high ground.

You can't just say "follow policy" and expect people to do so, you have to
be an example.

I also think that anyone naiieve enough to think that their provider can't
(a) tell they're hosting on a non-standard port and (b) correlate their
account with an e-mail provider they access from their network, then find
an admission that the breach of terms of service is intentional should it
become necessary to do so, is living in a dream world.

Let's say this server becomes compromised and is then used as either a
jumping off point to attack other networks, or as a storage point for
illegal content- the first message in this thread certainly adds
culpability, don't you think?

> post itself. However, if I may insert a little something without
> starting a flame (as I mean no offense) I would like to quote a very
> famous man from the world's all-time best seller:
> "He that is without sin among you, let him first cast a stone..."
> In other words, haven't we all been there done that?

I can honestly say I've never been there and done that. I pay about two
to three times the "lowest" price for broadband in my area so that I can
have a static address, inbound services and terms of service I can live
with. My employer doesn't pay for my home connectivity either.

Paul
-----------------------------------------------------------------------------
Paul D. Robertson "My statements in this message are personal opinions
paul@compuwar.net which may have no basis whatsoever in fact."
probertson@trusecure.com Director of Risk Assessment TruSecure Corporation
_______________________________________________
firewall-wizards mailing list
firewall-wizards@honor.icsalabs.com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

• Previous message: Paul D. Robertson: "Re: [fw-wiz] VPN endpoints"
• In reply to: Mark: "Re: [fw-wiz] About Port Forwarding, Apache and Firewall Rules"
• Next in thread: Jeremiah Cornelius: "Re: [fw-wiz] About Port Forwarding, Apache and Firewall Rules"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]