Full Disclosure mailing list archives

Re: AW: Zone Alarm

From: Shawn McMahon <smcmahon () eiv com>
Date: Thu, 5 Jun 2003 09:29:38 -0400

On Wed, Jun 04, 2003 at 10:30:15PM -0400, JT said:

I always thought it was illogical to let packets reach the machine I'm
trying to protect. I'd rather pass through a dedicated machine. Are there
any advantages TO using a production machine as a firewall??


Well, 80% of attacks are internal, so there's an advantage to having a
software firewall as ONE of your layers, in that it's pretty costly to
have a seperate dedicated firewall for every machine.


-- 
Shawn McMahon     | Let every nation know, whether it wishes us well or ill,
EIV Consulting    | that we shall pay any price, bear any burden, meet any
UNIX and Linux    | hardship, support any friend, oppose any foe, to assure
http://www.eiv.com| the survival and the success of liberty. - JFK

Attachment: _bin
Description:

Current thread:

YABBT [1] - Re: Zone Alarm, (continued)
- - - YABBT [1] - Re: Zone Alarm Jason (Jun 04)
    - Re: YABBT [1] - Re: Zone Alarm Michael Osten (Jun 04)
    - Re: YABBT [1] - Re: Zone Alarm Ron DuFresne (Jun 05)
    - Re: YABBT [1] - Re: Zone Alarm Jason (Jun 05)
    - Re: AW: Zone Alarm morning_wood (Jun 04)
    - Re: AW: Zone Alarm Shawn McMahon (Jun 05)
    - Re: AW: Zone Alarm morning_wood (Jun 05)
    - Re: AW: Zone Alarm Adam Lydick (Jun 06)
    - Re: AW: Zone Alarm Nick FitzGerald (Jun 04)
    - RE: AW: Zone Alarm JT (Jun 04)
    - Re: AW: Zone Alarm Shawn McMahon (Jun 05)
    - Re: AW: Zone Alarm Ron DuFresne (Jun 05)
    - Re: AW: Zone Alarm BlueRaven (Jun 13)
    - Re: AW: Zone Alarm Michael Reilly (Jun 04)
    - Re: Zone Alarm BlueRaven (Jun 13)
    - Re: Zone Alarm Dave Howe (Jun 13)
    - Re[2]: Zone Alarm 3APA3A (Jun 13)
    - Re: Zone Alarm BlueRaven (Jun 16)
  - Re: Zone Alarm Sven Hoexter (Jun 04)
    - Re: Zone Alarm Shawn McMahon (Jun 04)
  - Re: Zone Alarm Cedric Blancher (Jun 04)

(Thread continues...)