Security Basics mailing list archives
Re: Open All Outbound Ports?
From: David Weinberg <weinberg () bigpond net au>
Date: Tue, 12 Nov 2002 10:36:51 +1100
Opening all outbound ports will also alow peer-peer programs (like Kazza, Napster etc) and Spyware which will consume *most* of your bandwidth. So asside from the obvious security risks (tojans etc), you can also watch your bandwidth go down, down, down. Unless ofcourse, you work for an ISP/Telco ;)
Hi, Our firewall group has came to me several times over the lastfew monthswanting my approval to open all of the OUTBOUND ports on ourfirewall facingthe internet. Their argument is that this would notsignificantly reduce oursecurity and it will reduce their time/effort in administration.They claimthey get several requests a week to open up out bound ports andthe numberkeeps growing each month. They want to go for the gusto and openup all 65,000+outbound ports. I am in the security area and they want my agreement/sign offbefore they dothis. It just does not feel/smell right but I am losingground with myarguments. What are some good arguments I can use? Tony __________________________________________________ Do you Yahoo!? U2 on LAUNCH - Exclusive greatest hits videos http://launch.yahoo.com/u2
Current thread:
- RE: Open All Outbound Ports?, (continued)
- RE: Open All Outbound Ports? Garbrecht, Frederick (Nov 11)
- RE: Open All Outbound Ports? Naveed Ahmed (Nov 12)
- Re: Open All Outbound Ports? m2dzus (Nov 11)
- Re: Open All Outbound Ports? James Butcher (Nov 12)
- Re: Open All Outbound Ports? mitch_latham (Nov 11)
- Re: Open All Outbound Ports? Chris Berry (Nov 12)
- RE: Open All Outbound Ports? Chris Alliey (Nov 15)
- RE: Open All Outbound Ports? Mark Merchant (Nov 18)
- RE: Open All Outbound Ports? G. Class (Nov 21)
- Message not available
- RE: Open All Outbound Ports? Mark Merchant (Nov 22)
- RE: Open All Outbound Ports? Chris Alliey (Nov 15)
- RE: Open All Outbound Ports? Garbrecht, Frederick (Nov 11)