mailing list archives
RE: RE: In defense of non standard ports
From: "R. DuFresne" <dufresne () sysinfo com>
Date: Fri, 27 Jan 2006 16:41:12 -0500 (EST)
-----BEGIN PGP SIGNED MESSAGE-----
On Tue, 24 Jan 2006, Behm, Jeffrey L. wrote:
On Tuesday, January 24, 2006 10:57 AM, Marcus J. Ranum so spake:
Most organizations have already given up control over outgoing
traffic. What they don't realize is that, by extension, they have
also given up control over incoming traffic.
And, to me, are seeming to make it more difficult for those who haven't
to maintain control.
Overheard at the water cooler: "Well, company X allows this traffic, why
don't we? They are much larger than us and probably understand security
*much* better than we do. Since they think it's safe, shouldn't we think
it's safe, too?" I'm still looking for wording used to combat the
cluelessness of such mindset in both our own companies, as well as
companies that are creating situations that make us run web traffic on
Didn't mom supply such wording when we were kids;
Just because <insert a name here> wants to jump off the bridge, does that
mean you need to join them?
admin & senior security consultant: sysinfo.com
Key fingerprint = 9401 4B13 B918 164C 647A E838 B2DF AFCC 94B0 6629
...We waste time looking for the perfect lover
instead of creating the perfect love.
-Tom Robbins <Still Life With Woodpecker>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
-----END PGP SIGNATURE-----
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
- RE: RE: In defense of non standard ports R. DuFresne (Feb 01)