nanog mailing list archives

Re: I don't need no stinking firewall!

From: "Dobbins, Roland" <rdobbins () arbor net>
Date: Sun, 10 Jan 2010 06:32:18 +0000


On Jan 10, 2010, at 1:22 PM, harbor235 wrote:

Again, a firewall has it's place just like any other device in the network, defense in >>> depth is a prudent 
philosophy to reduce the chances of compromise, it does not >>>eliminate it nor does any architecture you can think 
of, period


What a ridiculous statement - of course it does.

*The place of the stateful firewall is in front of clients, not servers*.  

I'm not going to continue the unequal contest of pitting real-world operational experience against Confused Information 
Systems Security Professional brainwashing.  One can spout all the buzzwords and catchphrases one wishes, but at the 
end of the day, it's all dead wrong - and anyone naive enough to fall for it is setting himself up for a world of hurt.

-----------------------------------------------------------------------
Roland Dobbins <rdobbins () arbor net> // <http://www.arbornetworks.com>

    Injustice is relatively easy to bear; what stings is justice.

                        -- H.L. Mencken

Current thread:

Re: I don't need no stinking firewall!, (continued)
- - - Re: I don't need no stinking firewall! bill from home (Jan 08)
    - Re: I don't need no stinking firewall! Dobbins, Roland (Jan 08)
    - Re: I don't need no stinking firewall! bill from home (Jan 08)
    - Re: I don't need no stinking firewall! Dobbins, Roland (Jan 08)
    - Re: I don't need no stinking firewall! Joel Jaeggli (Jan 08)
    - Re: I don't need no stinking firewall! Dobbins, Roland (Jan 08)
    - Re: I don't need no stinking firewall! Joel Jaeggli (Jan 08)
    - Re: I don't need no stinking firewall! harbor235 (Jan 09)
    - Re: I don't need no stinking firewall! Dobbins, Roland (Jan 09)
    - Re: I don't need no stinking firewall! harbor235 (Jan 09)
    - Re: I don't need no stinking firewall! Dobbins, Roland (Jan 09)
    - Re: I don't need no stinking firewall! Dobbins, Roland (Jan 09)
    - Re: I don't need no stinking firewall! Michael K. Smith (Jan 10)
    - RE: I don't need no stinking firewall! George Bonser (Jan 10)
    - Re: I don't need no stinking firewall! Randy Bush (Jan 10)
    - Re: I don't need no stinking firewall! Brian Keefer (Jan 10)
    - RE: I don't need no stinking firewall! George Bonser (Jan 10)
    - Re: I don't need no stinking firewall! Dobbins, Roland (Jan 10)
    - RE: I don't need no stinking firewall! George Bonser (Jan 10)
    - Re: I don't need no stinking firewall! Warren Kumari (Jan 13)
    - Re: I don't need no stinking firewall! Dobbins, Roland (Jan 13)

(Thread continues...)