Home page logo
/

basics logo Security Basics mailing list archives

Re: Question about dmz security
From: "Johan Denoyer" <jdenoy () digital-connexion info>
Date: Sat, 15 Feb 2003 00:37:25 +0100

using this configuration makes your your firewall protecting your internal
network useless...

You should remove the nic interface between your ftp server and your
internal network...

Salutations,

Johan Denoyer
jdenoy () digital-connexion info
Digital Connexion
http://www.digital-connexion.info
PGP : 0x57A6727B

----- Original Message -----
From: "Jennifer Fountain" <JFountain () rbinc com>
To: <security-basics () securityfocus com>
Sent: Friday, February 14, 2003 8:42 PM
Subject: Question about dmz security



I need an opinion on a current design implementation in place.  We have
an ftp server sitting in our dmz.  This box has two nics - one is
plugged into the dmz hub and one is plugged into our network.  I think
this is a security risk and we should just allow internal users access
to the box via the firewall by opening the port instead of having dual
nics.  they do not see a security risk. maybe i am just too new at this
and need some education.  what is the "best" way to implement this
configuration?


Thank you
Jenn Fountain


Attachment: smime.p7s
Description:


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]