Re: GOOD HACK QUESTION PLESE HELP! Thank You

From: Lars M. Hansen (badnews@hansenonline.net)
Date: 01/17/03 

From: Lars M. Hansen <badnews@hansenonline.net>
Date: Fri, 17 Jan 2003 11:53:38 GMT

On Thu, 16 Jan 2003 00:21:42 -0800, Shane Matthews spoketh

>On Thu, 16 Jan 2003 06:37:17 GMT, "Anonymous" <me@here.com> wrote:
>
>
>>Ouch, no firewall. That's asking to take it from behind, dry! Oh, and
>>without a kiss too.
>>
>
>Hold on a minute. I worked at a web hosting company where plenty of
>the servers did not have firewall protection and none of them were
>ever hacked or otherwise compromised. Secure you servers properly,
>keep up to date on patches and configure your routers properly. All of
>these will dofar more than slaping in a firewall.

There's a difference between a web hosting operation and a corporate
network. With a web hosting operation you can make every server a
bastion host by removing all services except two: the HTTP server and
some service to update the web pages.

On a corporate LAN, you can't do this. You need file sharing, print
sharing and user friendliness. Thus, having a firewall preventing
certain traffic in and out is a step in the right direction.

Lars M. Hansen
http://www.hansenonline.net
(replace 'badnews' with 'news' in e-mail address)

Relevant Pages

  • RE: Slow user logon on Terminal server after migration to Windows 2003
    ... The Terminal Servers are 2000 or 2003. ... "Inside the firewall zone" means that the Citrix Servers have a firewall ... available RPC ports? ...
    (microsoft.public.windows.server.active_directory)
  • Re: medical records, web server, & stateful firewall vs packet filter
    ... > image and SQL servers directly (the image server link in particular ... The image and SQL servers ... the 2 firewall layers should run different s/ware - the idea is that a major ... security always cost a lot more than you expect (this comes up whenever we ...
    (comp.dcom.sys.cisco)
  • Re: I have been hacked (WAS: Have I been hacked or is nmap wrong?)
    ... > console based ftp client. ... the FTP servers have? ... > They are really mail servers, at least smtp for outgoing mails ... If you're firewall was dropping incoming packets destined to ...
    (freebsd-questions)
  • Re[3]: What can make DNS lookups slow? [semi-solved]
    ... My problem was that DNS lookups from and through my debian firewall ... My ISP's DNS servers are handing back replies from ... the machines inside the firewall, then I'd love to hear of it. ... # means that it queries the dmz server for everything ...
    (Debian-User)
  • RE: Secure Network Design (DMZ, LAN, etc)
    ... you'll see that their both on the same subnet. ... It has a port for the trusted network and a port ... Our firewall handles NAT. ... > servers, wouldn't it require a public IP and therefore be somewhat ...
    (Security-Basics)
Quantcast