Security Basics mailing list archives

RE: SMTP behind NAT

From: "Tariq Naik" <Tariq_Naik () symantec com>
Date: Fri, 8 May 2009 09:35:08 +0530

Hi,

My name is Tariq Naik, and I'm a Symantec Consultant. While I'm not
writing on behalf the company in any official capacity, I wanted to
point out that there is a ROI in being a good Netizen. It saves your
upload bandwidth. It will also prevent your resources like SMTP servers
for being black listed which might if true result in your genuine
outbound mails being blocked. 

Regards,
Tariq


-----Original Message-----
From: listbounce () securityfocus com [mailto:listbounce () securityfocus com]
On Behalf Of Murda Mcloud
Sent: Thursday, May 07, 2009 6:57 AM
To: gillettdavid () fhda edu; 'Georg Pichler'
Cc: security-basics () securityfocus com
Subject: RE: SMTP behind NAT

 Egress filtering is part of being a "good netizen".  If something 
that doesn't belong has gotten into your network, it's nice to not be

the vector that spreads it to others.


Hear, hear. I hadn't really thought of it along those lines, David-being
the selfish mug that I am. Quite zen, when I think about it.
Interconnectedness of all beings these days; in an electronic sense at
least.

or blocking legitimate activity.

And these days, I am even worried by legit activity, in terms of the
potential for damage. Firewalls aren't going to protect me if my kids
download malicious files via msn etc. But having
limits(firewalls/proxies
etc) on outgoing traffic may alert me to that and also can cut down the
attack space in the first place. How many 'legit' sites have been found
to be hosting malicious files?

I can imagine that there are many corporate LAN's spamming the world.

------------------------------------------------------------------------
This list is sponsored by: InfoSec Institute

Need to pass the CISSP? InfoSec Institute's CISSP Boot Camp in both
Instructor-Led and Online formats is the most concentrated exam prep
available. Comprehensive course materials and an expert instructor means
you pass the exam. Gain a laser like insight into what is covered on the
exam, with zero fluff!

http://www.infosecinstitute.com/courses/cissp_bootcamp_training.html
------------------------------------------------------------------------

------------------------------------------------------------------------
This list is sponsored by: InfoSec Institute

Need to pass the CISSP? InfoSec Institute's CISSP Boot Camp in both Instructor-Led and Online formats is the most
concentrated exam prep available. Comprehensive course materials and an expert instructor means you pass the exam. Gain
a laser like insight into what is covered on the exam, with zero fluff!

http://www.infosecinstitute.com/courses/cissp_bootcamp_training.html
------------------------------------------------------------------------

Current thread:

SMTP behind NAT Georg Pichler (May 01)
- RE: SMTP behind NAT Michael.Randazzo (May 01)
- Re: SMTP behind NAT Laurens Vets (May 01)
- Message not available
  - Re: SMTP behind NAT Georg Pichler (May 04)
    - Re: SMTP behind NAT Aaron Howell (May 04)
    - RE: SMTP behind NAT Murda Mcloud (May 05)
    - Re: SMTP behind NAT Georg Pichler (May 06)
    - RE: SMTP behind NAT Murda Mcloud (May 06)
    - RE: SMTP behind NAT David Gillett (May 07)
    - RE: SMTP behind NAT Murda Mcloud (May 07)
    - RE: SMTP behind NAT Tariq Naik (May 08)
    - Re: SMTP behind NAT bartlettNSF (May 11)
- <Possible follow-ups>
- Re: SMTP behind NAT Rob Taylor (May 01)
- Re: SMTP behind NAT krymson (May 07)