Re: W2K3 domain in DMZ
From: S. Pidgorny
Date: 06/15/04
- Next message: Marshall Curtis: "New CA Templates not Availalbe"
- Previous message: Hairy One Kenobi: "Re: W2K3 domain in DMZ"
- In reply to: Hairy One Kenobi: "Re: W2K3 domain in DMZ"
- Next in thread: Hairy One Kenobi: "Re: W2K3 domain in DMZ"
- Reply: Hairy One Kenobi: "Re: W2K3 domain in DMZ"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Tue, 15 Jun 2004 19:31:37 +1000
Hi there:
"Hairy One Kenobi" <abuse@[127.0.0.1]> wrote in message
news:Zcyzc.2$k76.0@newsfe6-win...
> Personally, I prefer a non-domain setup (don't like the prospect of having
> all machines compromised by one password, or of having a DNS in the DMZ).
Well, you are prepared to manage passwords and other stuff (patches,
security policies, etc.) on the whole heap of stand-alone hosts? You will be
changing admin and service account passwords regularly on single one of
them?
_All_ of the non-domain DMZs that I have seen "featured" same supervisor
credentials yet had more problems that domain helps to solve.
-- Svyatoslav Pidgorny, MVP, MCSE -= F1 is the key =-
- Next message: Marshall Curtis: "New CA Templates not Availalbe"
- Previous message: Hairy One Kenobi: "Re: W2K3 domain in DMZ"
- In reply to: Hairy One Kenobi: "Re: W2K3 domain in DMZ"
- Next in thread: Hairy One Kenobi: "Re: W2K3 domain in DMZ"
- Reply: Hairy One Kenobi: "Re: W2K3 domain in DMZ"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
