Firewall Wizards mailing list archives

Re: Firewall best practices

From: Martin Barry <marty () supine com>
Date: Mon, 19 Apr 2010 11:01:42 +0200

$quoted_author = "Morty" ;


If you have IDS, your perspective might change because crypto-enabled
ports cause you to lose insight.


...and every app that wants to work around a firewall just encrypts it's
traffic and runs the server on port 443.

It would be nice to not be "enumerating badness" and blacklisting IPs
running services on port 443 that are against corporate policy but trying
for "default deny and whitelist" would cause a DOS on support resources.

cheers
Marty
_______________________________________________
firewall-wizards mailing list
firewall-wizards () listserv icsalabs com
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards

Current thread:

Re: Firewall best practices, (continued)
- Re: Firewall best practices Anton Chuvakin (Apr 14)
  - Re: Firewall best practices Jason Lewis (Apr 14)
    - Re: Firewall best practices Darden, Patrick S. (Apr 15)
    - Re: Firewall best practices Paul D. Robertson (Apr 15)
    - Re: Firewall best practices Darden, Patrick S. (Apr 15)
    - Re: Firewall best practices John Morrison (Apr 15)
    - Re: Firewall best practices Darden, Patrick S. (Apr 15)
    - Re: Firewall best practices Marcus J. Ranum (Apr 15)
    - Re: Firewall best practices Morty (Apr 16)
    - Re: Firewall best practices Darden, Patrick S. (Apr 22)
    - Re: Firewall best practices Martin Barry (Apr 22)
    - Re: Firewall best practices Marcus J. Ranum (Apr 22)
    - Re: Firewall best practices Martin Barry (Apr 23)
    - Re: Firewall best practices Marcus J. Ranum (Apr 26)
    - Re: Firewall best practices Carson Gaspar (Apr 27)
    - Re: Firewall best practices ArkanoiD (Apr 28)
    - Re: Firewall best practices david (Apr 26)
    - Re: Firewall best practices John Morrison (Apr 27)
    - Re: Firewall best practices Harrell, Matthew (Apr 27)
    - Re: Firewall best practices Marcus J. Ranum (Apr 27)
    - Re: Firewall best practices Paul D. Robertson (Apr 27)

(Thread continues...)