mailing list archives
Re: Re: Microsoft Security, baby steps ?
From: Valdis.Kletnieks () vt edu
Date: Wed, 17 Mar 2004 14:51:43 -0500
On Wed, 17 Mar 2004 16:46:58 GMT, John.Airey () rnib org uk said:
From experience, you can't just lock down to that one server. You need to
allow port 80 and 443 access to different servers. Each day the list of
servers changes because of the Akamai caching that is used. I spend some
time configuring locked down systems to be able to talk to them. So yes, it
is an unreasonable request.
On the other hand, access to Red Hat Network needs only one port and one IP
address. No doubt there's some serious load-balancing going on in the
If RedHat had the same "customers times patch frequency times average patch size"
product that Microsoft has, they'd be an Akamai customer too...
- RE: Re: Microsoft Security, baby steps ?, (continued)