Home page logo
/

basics logo Security Basics mailing list archives

RE: Risk-Port 3270
From: "S. Earl Jarosh" <earlj () moneycenters com>
Date: Sat, 8 Dec 2007 15:43:08 -0600

Do it with a hardware encrypted end to end VPN connected to that other
webservers switch with any port you want and sniffing will not matter plus
you then control the path.

S. Earl Jarosh
V.P. of Information Technology
Cell:  612.868.1313
Off:   763.545.3275
Fax: 763.546.0027
Money Centers of America, Inc. - I.T. Dept
5955 Golden Valley Rd., Suite 206
Golden Valley, MN  55422
6128681313 () cingularme com
earl () moneycenters com
www.moneycenters.com
 

-----Original Message-----
From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On
Behalf Of Kartik
Sent: Friday, December 07, 2007 1:14 PM
To: donge912 () planet nl
Cc: security-basics () securityfocus com
Subject: Re: Risk-Port 3270

Well, Management is asking whether, in this scenario; How secure will be the
traffic? They are asking the probability of data being sniffed.
The problem is that i do not have much info regarding the application.

On 12/8/07, donge912 () planet nl <donge912 () planet nl> wrote:
Hi Kartik,

I think it is hard to tell what the risk is without knowing the 
application that will be making the connection. That's where the risk
might be.

Regards,

Willem van Dongen
Sr application analyst

-----Oorspronkelijk bericht-----
Van: listbounce () securityfocus com 
[mailto:listbounce () securityfocus com]
Namens Kartik
Verzonden: vrijdag 7 december 2007 9:24
Aan: security-basics () securityfocus com
Onderwerp: Risk-Port 3270

Hi,

Recently I got a change request which is to be implemented on the 
firewall. The requirement is to allow port 3270 from inside network to 
a webserver located in the outside world.
I would like to know the Risk/Threats associated with this change. I 
dont know what kind of a data would traverse in this setup but most 
likely its going to be something related with financial transactions.

--
Thanx & Regards
Kartik
Sr. Specialist- Security
www.hcl.in


--
No virus found in this incoming message.
Checked by AVG Free Edition.
Version: 7.5.503 / Virus Database: 269.16.17/1176 - Release Date: 
12/6/2007
23:15





--
Thanx & Regards
Kartik
9810998169



  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]