Re: How safe for firewall rule using 127.0.0.0/8
From: Moe Trin (ibuprofin_at_painkiller.example.tld)
Date: 10/26/05
- Next message: Moe Trin: "Re: New type of ICMP packets"
- Previous message: Moe Trin: "Re: How safe for firewall rule using 127.0.0.0/8"
- In reply to: Somebody.: "Re: How safe for firewall rule using 127.0.0.0/8"
- Next in thread: Somebody.: "Re: How safe for firewall rule using 127.0.0.0/8"
- Reply: Somebody.: "Re: How safe for firewall rule using 127.0.0.0/8"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 26 Oct 2005 14:51:15 -0500
In the Usenet newsgroup comp.security.firewalls, in article
<x0D7f.964$43.72@nnrp.ca.mci.com!nnrp1.uunet.ca>, Somebody. wrote:
>Hey Moe, how about my SSL VPN client example? What do you think?
If you don't know what's inside that VPN, you have a problem that
basic firewalls shouldn't have to deal with. At work, the solution
is quite simple - no VPNs period. I know what my "normal" network
traffic looks like, and when I see something out of the ordinary,
I investigate.
In your 23:48:00 UTC response to Juergen Nieveler, you are concerned
about a "nefarious VPN client, installed by a web site". Why the f*ck
would you allow that to be installed in the first place? Crap like
that does not get installed by magic - it gets installed by untrained
users who are using incompetently configured software.
Old guy
- Next message: Moe Trin: "Re: New type of ICMP packets"
- Previous message: Moe Trin: "Re: How safe for firewall rule using 127.0.0.0/8"
- In reply to: Somebody.: "Re: How safe for firewall rule using 127.0.0.0/8"
- Next in thread: Somebody.: "Re: How safe for firewall rule using 127.0.0.0/8"
- Reply: Somebody.: "Re: How safe for firewall rule using 127.0.0.0/8"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
