Re: [fw-wiz] IPv6 support in firewalls

But they *are* in charge, and will be increasingly so. How
do you change that? Anyone with a $50/mo 1, 3, or 5Mb ISP
Connection and a PC is "on the net," secured or not...(more
likely, not).

You have to KISS, if you want these folks to use whatever
mechanism is in place. Make it more complicated than,
"open the box, plug this cable in here, and that one in
there, done," and it won't get used. That's why the NAT
device market took off so quickly. One can't expect the
end user to configure a "stateful packet filter for
outbound only connections." That's *not* gonna happen.

On Monday, August 27, 2007 4:20 PM, Paul D. Robertson wrote:

On Mon, 27 Aug 2007, Behm, Jeffrey L. wrote:

Stupid users, who click on an unknown .exe are a good
enough vector to exploit, as you are seeing today...

Which is why I'm convinced those users should not be in charge of their

own security.

firewall-wizards mailing list

Relevant Pages