Home page logo

firewall-wizards logo Firewall Wizards mailing list archives

RE: RE: In defense of non standard ports
From: "R. DuFresne" <dufresne () sysinfo com>
Date: Fri, 27 Jan 2006 16:41:12 -0500 (EST)

Hash: SHA1

On Tue, 24 Jan 2006, Behm, Jeffrey L. wrote:

On Tuesday, January 24, 2006 10:57 AM, Marcus J. Ranum so spake:

Most organizations have already given up control over outgoing
traffic. What they don't realize is that, by extension, they have
also given up control over incoming traffic.

And, to me, are seeming to make it more difficult for those who haven't
to maintain control.

Overheard at the water cooler: "Well, company X allows this traffic, why
don't we? They are much larger than us and probably understand security
*much* better than we do. Since they think it's safe, shouldn't we think
it's safe, too?"  I'm still looking for wording used to combat the
cluelessness of such mindset in both our own companies, as well as
companies that are creating situations that make us run web traffic on
non-web ports.

Didn't mom supply such wording when we were kids;

Just because <insert a name here> wants to jump off the bridge, does that mean you need to join them?


Ron DuFresne
- -- ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
        admin & senior security consultant:  sysinfo.com
Key fingerprint = 9401 4B13 B918 164C 647A  E838 B2DF AFCC 94B0 6629

...We waste time looking for the perfect lover
instead of creating the perfect love.

                -Tom Robbins <Still Life With Woodpecker>
Version: GnuPG v1.2.4 (GNU/Linux)

firewall-wizards mailing list
firewall-wizards () honor icsalabs com

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]