Dailydave mailing list archives
Re: This just in: Firewalls are obsolete
From: Gadi Evron <ge () linuxbox org>
Date: Tue, 12 Jul 2005 01:23:47 +0200
Hi Florian,
This isn't quite as dumb as it sounds. People begin to realize that it doesn't make sense to license expensive firewalling software which suffers from the same vulnerabilities as the services you are trying to protect (roughly speaking). For complex protocols, you need one implementation which gets it right, not two or more which come close, but not close enough.
Actually, yeah..I am getting rather tired of "everything over port 80" and calling everything a firewall this or firewall that.
Getting into a world where you have a so called "firewall" for every type of service that goes over port 80 or you have to somehow try and manage to block it in your proxy while still trying to allow the rest is insane.
Gadi.
_______________________________________________
Dailydave mailing list
Dailydave () lists immunitysec com
https://lists.immunitysec.com/mailman/listinfo/dailydave
Current thread:
- This just in: Firewalls are obsolete Jonatan B (Jul 11)
- Re: This just in: Firewalls are obsolete Florian Weimer (Jul 11)
- Re: This just in: Firewalls are obsolete Gadi Evron (Jul 11)
- Re: This just in: Firewalls are obsolete Florian Weimer (Jul 11)
- Re: This just in: Firewalls are obsolete Gadi Evron (Jul 11)
- Re: This just in: Firewalls are obsolete Gadi Evron (Jul 11)
- Re: This just in: Firewalls are obsolete Blue Boar (Jul 11)
- Re: This just in: Firewalls are obsolete Florian Weimer (Jul 11)
- Re: This just in: Firewalls are obsolete Gadi Evron (Jul 11)
- Re: This just in: Firewalls are obsolete Florian Weimer (Jul 11)
- Re: This just in: Firewalls are obsolete Blue Boar (Jul 11)
- Re: This just in: Firewalls are obsolete Blue Boar (Jul 11)
- Re: This just in: Firewalls are obsolete I)ruid (Jul 12)
- Re: This just in: Firewalls are obsolete Florian Weimer (Jul 11)