Security Basics mailing list archives
RE: Unrestricted Outbound Web Server Access Opinion
From: "David Gillett" <gillettdavid () fhda edu>
Date: Wed, 4 May 2005 15:38:34 -0700
There are a few common reasons to allow your webserver to have unrestricted outbound access. DNS for local daemon name resolution, SMTP for any mail that may need to be sent, NTP for keeping accurate time, and so on.
None of these requires *unrestricted* outbound access. In every case, the outbound access that is necessary is well defined and can be easily restricted to just what is needed. David Gillett
Current thread:
- Unrestricted Outbound Web Server Access Opinion Paul Guibord (May 03)
- Re: Unrestricted Outbound Web Server Access Opinion Jon Hart (May 04)
- RE: Unrestricted Outbound Web Server Access Opinion David Gillett (May 05)
- Re: Unrestricted Outbound Web Server Access Opinion David Glosser (May 05)
- RE: Unrestricted Outbound Web Server Access Opinion Hamish Stanaway (May 05)
- RE: Unrestricted Outbound Web Server Access Opinion Micro Kluge (May 05)
- Re: Unrestricted Outbound Web Server Access Opinion Diego Kellner (May 05)
- Re: Unrestricted Outbound Web Server Access Opinion Mark Leonard (May 05)
- RE: Unrestricted Outbound Web Server Access Opinion Keenan Smith (May 10)
- Re: Unrestricted Outbound Web Server Access Opinion Chris Keladis (May 11)
- <Possible follow-ups>
- RE: Unrestricted Outbound Web Server Access Opinion Andrew Shore (May 05)
- Re: Unrestricted Outbound Web Server Access Opinion Jon Hart (May 04)