Re: [fw-wiz] Defense in Depth to the Desktop
From: Rogan Dawes (discard_at_dawes.za.net)
Date: 12/06/04
- Previous message: Ben Nagy: "RE: [fw-wiz] How to Save The World (was: Antivirus vendor conspiracy theories)"
- In reply to: Chris Pugrud: "[fw-wiz] Defense in Depth to the Desktop"
- Next in thread: Chris Pugrud: "Re: [fw-wiz] Defense in Depth to the Desktop"
- Reply: Chris Pugrud: "Re: [fw-wiz] Defense in Depth to the Desktop"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: Chris Pugrud <cpugrud@yahoo.com> Date: Mon, 06 Dec 2004 10:24:19 +0100
Chris Pugrud wrote:
> Defense in Depth to the Desktop
> the Strong Internal Network Defense model
>
[ snip excellent analysis ]
>
> Questions? (aka, what have I missed?)
>
I've been trying to come up with some way of firewalling individual
clients (i.e. at a switch level), by defining a policy of who is allowed
to connect to what, at a very granular level. Your analysis kind of
short-cuts that whole approach, by taking a much less granular approach
to things. I think it could be very effective. I particularly like the
way of segregating servers based on their need to initiate connections
to clients or not.
Good stuff! I look forward to seeing more discussion on this list.
> Chris
Rogan
-- Rogan Dawes *ALL* messages to discard@dawes.za.net will be dropped, and added to my blacklist. Please respond to "lists AT dawes DOT za DOT net" _______________________________________________ firewall-wizards mailing list firewall-wizards@honor.icsalabs.com http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
- Previous message: Ben Nagy: "RE: [fw-wiz] How to Save The World (was: Antivirus vendor conspiracy theories)"
- In reply to: Chris Pugrud: "[fw-wiz] Defense in Depth to the Desktop"
- Next in thread: Chris Pugrud: "Re: [fw-wiz] Defense in Depth to the Desktop"
- Reply: Chris Pugrud: "Re: [fw-wiz] Defense in Depth to the Desktop"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
