Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Security Basics: Unrestricted Outbound Web Server Access Opinion

Unrestricted Outbound Web Server Access Opinion

From: Paul Guibord <pguibord_at_tngtech.net>
Date: Tue, 3 May 2005 08:54:57 -0400

Hello All,

Someone within our company wants our Internet facing web servers to have
unrestricted outbound access. Port 80 is the only port permitted from
the outside coming in. I need the experts opinion why we do not want to
permit this PLEASE. Two things I could think of are if the web servers
were compromised, then the hacker would have the ability offload any
data they want. Another being if they were infected with a worm they
would bring down the Internet T1 in their attempt to find other devices
to infect.

Thanks in advance for everyone's input.

Paul
Received on May 03 2005

This message: [ Message body ]
Next message: James Fryman: "Re: what's this (email question)"
Previous message: Jafet Macallin: "Folder Permission Dumpsec"
Next in thread: Jon Hart: "Re: Unrestricted Outbound Web Server Access Opinion"
Reply: Jon Hart: "Re: Unrestricted Outbound Web Server Access Opinion"
Maybe reply: Andrew Shore: "RE: Unrestricted Outbound Web Server Access Opinion"
Reply: Hamish Stanaway: "RE: Unrestricted Outbound Web Server Access Opinion"
Reply: Micro Kluge: "RE: Unrestricted Outbound Web Server Access Opinion"
Reply: Diego Kellner: "Re: Unrestricted Outbound Web Server Access Opinion"
Reply: Mark Leonard: "Re: Unrestricted Outbound Web Server Access Opinion"
Reply: Keenan Smith: "RE: Unrestricted Outbound Web Server Access Opinion"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]