Firewall Wizards mailing list archives

Re: Ok, so now we have a firewall, we're safe, right?

From: Carson Gaspar <carson () taltos org>
Date: Thu, 02 Jun 2005 04:26:57 -0400

--On Tuesday, May 31, 2005 6:42 PM -0400 Chris Blask <chris () blask org>wrote:

The data and operational ability is there to give visibility into network
activity - it's just a Very Large Numbers problem (but so are Large
Primes, and we just keep building bigger gear to handle it).  Products
exist to do this today, just not many people are using them yet.

That sort of capability doesn't solve all the world's problems, but it
makes a lot of things clearer.

No argument here - I'm all for obsessive log retention and analysis. I justwanted to raise the issue of email attachment attack vectors being stupidlyeasy to prevent in the general case. There are some nasty corner cases(having to do with MIME ambiguity and encoding bogosity), but they'resolvable.


--
Carson

_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

Current thread:

RE: Ok, so now we have a firewall, we're safe, right?, (continued)
- RE: Ok, so now we have a firewall, we're safe, right? Bill McGee (bam) (Jun 01)
  - Message not available
    - Going meta (was RE: Ok, so now we have a firewall...) Marcus J. Ranum (Jun 02)
    - Re: Going meta (was RE: Ok, so now we have a firewall...) Bennett Todd (Jun 02)
    - Re: Going meta (was RE: Ok, so now we have a firewall...) Scott Stursa (Jun 02)
    - Re: Going meta (was RE: Ok, so now we have a firewall...) Chris Blask (Jun 04)
    - RE: Going meta (was RE: Ok, so now we have a firewall...) Brian Loe (Jun 10)
    - Re: Going meta (was RE: Ok, so now we have a firewall...) R. DuFresne (Jun 10)
    - Re: Going meta (was RE: Ok, so now we have a firewall...) Marcus J. Ranum (Jun 04)
    - Re: Going meta (was RE: Ok, so now we have a firewall...) Dave Piscitello (Jun 02)
    - Re: Going meta (was RE: Ok, so now we have a firewall...) Marcus J. Ranum (Jun 02)
- Re: Ok, so now we have a firewall, we're safe, right? Carson Gaspar (Jun 02)
- Re: Ok, so now we have a firewall, we're safe, right? Chris Blask (Jun 02)
- Re: Ok, so now we have a firewall, we're safe, right? Marcus J. Ranum (Jun 02)
  - Re: Ok, so now we have a firewall, we're safe, right? Paul D. Robertson (Jun 02)
    - Re: Ok, so now we have a firewall, we're safe, right? Marcus J. Ranum (Jun 02)
    - Re: Ok, so now we have a firewall, we're safe, right? Paul D. Robertson (Jun 02)
    - Re: Ok, so now we have a firewall, we're safe, right? Marcus J. Ranum (Jun 02)
    - Re: Ok, so now we have a firewall, we're safe, right? Paul D. Robertson (Jun 02)
    - Re: Ok, so now we have a firewall, we're safe, right? Marcus J. Ranum (Jun 04)
    - Re: Ok, so now we have a firewall, we're safe, right? Paul D. Robertson (Jun 04)
    - Re: Ok, so now we have a firewall, we're safe, right? ArkanoiD (Jun 04)

(Thread continues...)