RE: [fw-wiz] FW appliance comparison - Seeking input for the forum

-----Original Message-----
Subject: RE: [fw-wiz] FW appliance comparison - Seeking input for the forum

> Peer-to-peer and IM are about controlling what someone does, not really
security. Both of
> those are controllable by local machine policy, especially in the Windows
case- so an IDS is
> a pretty expensive thing to manage just so your visitors don't do
something you don't want
> them to do- and QoS would be about as effective in the P2P space.

I categorically disagree with your first statement. To illustrate my point,
fire up your favorite Kazaa or Gnutella client and search for 'ntuser.dat'
And there's always:

There are more reasons why it's a bad idea to allow these things across your
Internet border, and since it's an issue of crossing that border, it's
easier to manage detection and enforcement at those points than it is to do
it directly at each desktop.

> Actually, I think the moral of the story is it's still good to use a

But not just any proxy. There are lots of proxies out there that simply
don't deliver the type of protocol control that is needed. In fact, I would
say that none of the top 3 border proxies out there can stop IM tunneling
from clients like MSN or Yahoo.


firewall-wizards mailing list

Relevant Pages

  • Re: Bush and Saudis play same old game
    ... I thought we were addressing the border region. ... Maybe because we're not operating in Syria... ... >>Don't you think that the American public senses that it's the Left that's controlling ... Opposition to the war certainly seems to be growing. ...
  • Re: French rail accident
    ... Does it make a difference that the signal box controlling the north end is a ... Also the passenger train is straddling the border so the CFL ...
  • disabling the line buffer somehow
    ... I'm trying to proxy all keys typed by the user to a process spawned via ... I understand that I cannot write a simple python code to ... Would it work if I read from the controlling tty of the python ...