Re: [fw-wiz] Permissive Firewall Policy
- From: "Anton Chuvakin" <anton@xxxxxxxxxxxx>
- Date: Mon, 25 Sep 2006 09:30:48 -0700
Any port between 1 and 65000 are known to be bad at least some of the time.Holy cow! Is this for real? Somebody still asking a question like that?
It feels like a bit that would be posted to celebrate this list's 10th
anniversary or something :-)
But! I think for the outbound access the question borders on making
[some] sense. Yes, the general "block all that are not needed based on
the policy" is still there, but I almost feel that it makes sense to
spell out some of the *especially* ugly ports to watch, kind of like
telnet for inbound 10 years ago ... Or maybe not :-)
Best,
--
Anton Chuvakin, Ph.D., GCIA, GCIH, GCFA
http://www.chuvakin.org
http://chuvakin.blogspot.com
http://www.securitywarrior.com
_______________________________________________
firewall-wizards mailing list
firewall-wizards@xxxxxxxxxxxxxxxxxxxxx
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards
- Follow-Ups:
- Re: [fw-wiz] Permissive Firewall Policy
- From: J. Oquendo
- Re: [fw-wiz] Permissive Firewall Policy
- References:
- [fw-wiz] Permissive Firewall Policy
- From: Kevin Hinze
- Re: [fw-wiz] Permissive Firewall Policy
- From: Marcus J. Ranum
- [fw-wiz] Permissive Firewall Policy
- Prev by Date: Re: [fw-wiz] Permissive Firewall Policy
- Next by Date: [fw-wiz] ARES 2007 Workshop Call for papers Submission Deadline : November 19, 2006
- Previous by thread: Re: [fw-wiz] Permissive Firewall Policy
- Next by thread: Re: [fw-wiz] Permissive Firewall Policy
- Index(es):
Relevant Pages
|
Loading
