RE: [fw-wiz] RE: In defense of non standard ports

On Tuesday, January 24, 2006 10:57 AM, Marcus J. Ranum so spake:

>Most organizations have already given up control over outgoing
>traffic. What they don't realize is that, by extension, they have
>also given up control over incoming traffic.

And, to me, are seeming to make it more difficult for those who haven't
to maintain control.

Overheard at the water cooler: "Well, company X allows this traffic, why
don't we? They are much larger than us and probably understand security
*much* better than we do. Since they think it's safe, shouldn't we think
it's safe, too?" I'm still looking for wording used to combat the
cluelessness of such mindset in both our own companies, as well as
companies that are creating situations that make us run web traffic on
non-web ports.

firewall-wizards mailing list

Relevant Pages

  • FW: Windows Update - Unsafe ActiveX control (fwd)
    ... "Safe for Scripting" simply means that the control is safe to be used ... Windows Update is safe because it only allows itself to be hosted ... etc. it is considered "Safe for Scripting". ...
  • Re: Richtx32.ocx unter Office SP3
    ... ActiveX-Steuerelemente, die nicht als "Safe" ... Code signing ... Because an ActiveX control allows access to root operating ... which allows an ActiveX developer the option ...
  • Re: Why is it dangerous?
    ... I'll wager that the number of usages of gets posted to this group where the input is not under compete control of the poster is over a hundred times more than the number of usages where it is under the posters control. ... I suspect the only safe gets usages posted to this group are posted specifically to point out that with guarantees beyond the scope of C you can use it safely. ...
  • Re: Counters
    ... There is NO completely, totally, safe way to secret information away. ... In order to come up with an appropriate scheme you need to determine how ... safe does it need to be, and how you can control access to the app and its ...
  • Re: rate shaping with cbq
    ... > I am using this linux pc only as a router, ... You will be able to control the outgoing stuff nicely. ... tinkered with Linux and queueing. ...