Security Basics mailing list archives

Re: Personal Firewall rulebase

From: "Meritt James" <meritt_james () bah com>
Date: Tue, 07 Oct 2003 10:46:58 -0400

Personally, I would recommend blocking everything (nice, simple rule)
then only allowing those services that are identified as necessary.  And
THEN if someone gripes about simething breaking you would be able to
shove the problem off onto THEM, and insist upon THEM properly
registering their service!

Jim

Angie Urtel wrote:

How about following the principle of least privilege - not allow anything
and then see what breaks?  Work backwards from there.

-----Original Message-----
From: ssgrif () yahoo com [mailto:ssgrif () yahoo com]
Sent: Monday, October 06, 2003 3:24 AM
To: security-basics () securityfocus com
Subject: Personal Firewall rulebase

Hi,

I need to create a rulebase from scratch for our corporate cenrally managed
personal firewall solution.

I was hoping I could get some advice on quick wins or sites that could help
me get the basics set up first.

The personal Firewall software in question here is Zone Labs Integrity Agent
along with Integrity Server.

Thanks

G

---------------------------------------------------------------------------
----------------------------------------------------------------------------

---------------------------------------------------------------------------
----------------------------------------------------------------------------


-- 
James W. Meritt CISSP, CISA
Booz | Allen | Hamilton
phone: (410) 684-6566

---------------------------------------------------------------------------
----------------------------------------------------------------------------

Current thread:

Personal Firewall rulebase ssgrif (Oct 06)
- <Possible follow-ups>
- RE: Personal Firewall rulebase Angie Urtel (Oct 06)
  - Re: Personal Firewall rulebase Meritt James (Oct 07)