Re: [fw-wiz] About Port Forwarding, Apache and Firewall Rules

From: Paul D. Robertson (
Date: 08/30/04

  • Next message: Paul D. Robertson: "Re: [fw-wiz] About Port Forwarding, Apache and Firewall Rules"
    To: Mark <>
    Date: Mon, 30 Aug 2004 08:29:14 -0400 (EDT)

    On Sun, 29 Aug 2004, Mark wrote:

    > Hi Jim:
    > I think (hope) you were just pointing out the irony of the request by
    > servie_tech. I must confess that I totally overlooked the paradox in the

    It's never wrong to hold the moral high ground, so long as you're not
    being hypocritical. I think it's especially important that firewall and
    network security people hold the moral high ground.

    You can't just say "follow policy" and expect people to do so, you have to
    be an example.

    I also think that anyone naiieve enough to think that their provider can't
    (a) tell they're hosting on a non-standard port and (b) correlate their
    account with an e-mail provider they access from their network, then find
    an admission that the breach of terms of service is intentional should it
    become necessary to do so, is living in a dream world.

    Let's say this server becomes compromised and is then used as either a
    jumping off point to attack other networks, or as a storage point for
    illegal content- the first message in this thread certainly adds
    culpability, don't you think?

    > post itself. However, if I may insert a little something without
    > starting a flame (as I mean no offense) I would like to quote a very
    > famous man from the world's all-time best seller:
    > "He that is without sin among you, let him first cast a stone..."
    > In other words, haven't we all been there done that?

    I can honestly say I've never been there and done that. I pay about two
    to three times the "lowest" price for broadband in my area so that I can
    have a static address, inbound services and terms of service I can live
    with. My employer doesn't pay for my home connectivity either.

    Paul D. Robertson "My statements in this message are personal opinions which may have no basis whatsoever in fact." Director of Risk Assessment TruSecure Corporation
    firewall-wizards mailing list

  • Next message: Paul D. Robertson: "Re: [fw-wiz] About Port Forwarding, Apache and Firewall Rules"