Security Basics mailing list archives

RE: Unrestricted Outbound Web Server Access Opinion

From: "David Gillett" <gillettdavid () fhda edu>
Date: Wed, 4 May 2005 15:38:34 -0700

There are a few common reasons to allow your webserver to have
unrestricted outbound access.  DNS for local daemon name resolution,
SMTP for any mail that may need to be sent, NTP for keeping accurate
time, and so on.


None of these requires *unrestricted* outbound access.  In every case,
the outbound access that is necessary is well defined and can be easily 
restricted to just what is needed.

David Gillett

Current thread:

Unrestricted Outbound Web Server Access Opinion Paul Guibord (May 03)
- Re: Unrestricted Outbound Web Server Access Opinion Jon Hart (May 04)
  - RE: Unrestricted Outbound Web Server Access Opinion David Gillett (May 05)
  - Re: Unrestricted Outbound Web Server Access Opinion David Glosser (May 05)
- RE: Unrestricted Outbound Web Server Access Opinion Hamish Stanaway (May 05)
- RE: Unrestricted Outbound Web Server Access Opinion Micro Kluge (May 05)
- Re: Unrestricted Outbound Web Server Access Opinion Diego Kellner (May 05)
- Re: Unrestricted Outbound Web Server Access Opinion Mark Leonard (May 05)
- RE: Unrestricted Outbound Web Server Access Opinion Keenan Smith (May 10)
  - Re: Unrestricted Outbound Web Server Access Opinion Chris Keladis (May 11)
- <Possible follow-ups>
- RE: Unrestricted Outbound Web Server Access Opinion Andrew Shore (May 05)