Security Basics mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Open All Outbound Ports?

From: mitch_latham () attbi com
Date: Sun, 10 Nov 2002 08:41:16 +0000
Bad idea, That would allow remote access style trojans and  ddos bots to have a 
nice big foot hole to step in, just my 2 cents

--
Windows is a 32-bit extension and a
graphical
shell for a 16-bit patch to an
8-bit operating system originally
coded for a 4-bit microprocessor,
written by a 2-bit company that
can't stand 1-bit of competition"

Hi, 

Our firewall group has came to me several times over the last few months
wanting my approval to open all of the “OUTBOUND” ports on our firewall facing
the internet.  Their argument is that this would not significantly reduce our
security and it will reduce their time/effort in administration.  They claim
they get several requests a week to open up out bound ports and the number
keeps growing each month. They want to go for the gusto…and open up all 65,000+
outbound ports.

I am in the security area and they want my agreement/sign off before they do
this.  It just does not “feel/smell right” but I am losing ground with my
arguments.  What are some good arguments I can use?  

Tony


__________________________________________________
Do you Yahoo!?
U2 on LAUNCH - Exclusive greatest hits videos
http://launch.yahoo.com/u2
Previous By Date Next
Previous By Thread Next

Current thread: