Re: [fw-wiz] X server in a Firewall
- From: ArkanoiD <ark@xxxxxxxxx>
- Date: Wed, 25 Jan 2006 14:45:18 +0300
well, say, yet another a*hole^Wperson walks in and says they deploy a
new application, maybe it is not so bad per se so it should not be
banned, but changing firewall rulesets to make it pass and blocking
everything else that may sneak along may take some time requiring
excessive ruleset changes (hey guys, does your sh*t still work when
i block THIS?)
On Tue, Jan 24, 2006 at 10:23:41PM -0500, Marcus J. Ranum wrote:
> Paul D. Robertson wrote:
> >Indeed, that's why console-only access is the best method.
>
> Indeed; if your firewall rulesets change so often that you find it
> onerous to walk down the hall to the console, then your firewall
> ruleset is changing too often, which probably means you are
> already in a state of screwed.
>
> mjr.
>
> _______________________________________________
> firewall-wizards mailing list
> firewall-wizards@xxxxxxxxxxxxxxxxxx
> http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
_______________________________________________
firewall-wizards mailing list
firewall-wizards@xxxxxxxxxxxxxxxxxx
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
- References:
- [fw-wiz] X server in a Firewall
- From: John M
- Re: [fw-wiz] X server in a Firewall
- From: Paul D. Robertson
- Re: [fw-wiz] X server in a Firewall
- From: Marcus J. Ranum
- [fw-wiz] X server in a Firewall
- Prev by Date: Re: [fw-wiz] RE: In defense of non standard ports
- Next by Date: Re: [fw-wiz] RE: IDS (was: FW appliance comparison)
- Previous by thread: Re: [fw-wiz] X server in a Firewall
- Next by thread: RE: [fw-wiz] X server in a Firewall
- Index(es):
