Firewall Wizards mailing list archives
Re: Castles and Security
From: "Karl Wolfgang" <karl_wolfgang () hotmail com>
Date: Thu, 04 Jan 2001 02:05:43 -0000
1. The "bastion host" / reinforced firewall concept may go the way of castles and the Maginot Line if dynamic defenses are not put in place. Clausewitz stated "If you entrench yourself behind strong fortifications, you compel the enemy to seek a solution elsewhere".
2. Application programmers have begun to place other protocols within HTTP and HTTPS, which are allowed through most firewalls. This protocol tunneling means that, unless very aggressive proxies are available with a firewall, it won't be as effective.
3. Telecommuter / home systems are notoriously lax on desktop security. A personnel DSL connection to the Internet with static IP coupled with VPN tunnel into a protected network provide the devil's playground for a repeat of a Microsoft / QAZ exploit or something similar.
karl_wolfgang () hotmail com _________________________________________________________________ Get your FREE download of MSN Explorer at http://explorer.msn.com _______________________________________________ firewall-wizards mailing list firewall-wizards () nfr com http://www.nfr.com/mailman/listinfo/firewall-wizards
Current thread:
- Re: Castles and Security Karl Wolfgang (Jan 03)
- <Possible follow-ups>
- RE: Re: Castles and Security Duquette, John (Jan 04)
- Re: Re: Castles and Security Graham Allan (Jan 04)
- RE: Re: Castles and Security Marcus J. Ranum (Jan 04)
- Re: Re: Castles and Security harley (Jan 04)
- RE: Re: Castles and Security Smith Gary-GSMITH1 (Jan 04)
- Re: Re: Castles and Security Talisker (Jan 04)
- Re: Re: Castles and Security Darren Reed (Jan 05)
- Re: Re: Castles and Security Talisker (Jan 04)