Dailydave mailing list archives
Re: This just in: Firewalls are obsolete
From: dan () geer org
Date: Tue, 12 Jul 2005 07:45:22 -0400
Our design goal for Project Athena (MIT, 1985-1990) was precisely that -- you are not done until your platform can sit naked on the Internet. For many (many) years, MIT had no firewalls at all and today has a defensive perimeter organized around vandalism like DDoS rather than protection. Lawrence Berkeley Labs did the same though I do not know today's status there. In general, if you can presume sentient owners and operators then eschew perimeter protections. If you have owners and operators who are bumpkins or hail from a family of liability lawyers, then at least make a good show of protecting them. At MIT, we did enjoy sentient owners and operators -- enough so that for years we published the root password in the same spirit that your hair dryer says "no user serviceable parts inside" directly above the phillips-head screws that open the case. --dan _______________________________________________ Dailydave mailing list Dailydave () lists immunitysec com https://lists.immunitysec.com/mailman/listinfo/dailydave
Current thread:
- Re: This just in: Firewalls are obsolete, (continued)
- Re: This just in: Firewalls are obsolete Blue Boar (Jul 11)
- Re: This just in: Firewalls are obsolete I)ruid (Jul 12)
- Re: This just in: Firewalls are obsolete rdump (Jul 12)
- Re: This just in: Firewalls are obsolete Gadi Evron (Jul 11)
- Re: This just in: Firewalls are obsolete Florian Weimer (Jul 11)
- Re: This just in: Firewalls are obsolete Gadi Evron (Jul 11)
- Re: This just in: Firewalls are obsolete Florian Weimer (Jul 11)
- Re: This just in: Firewalls are obsolete byte_jump (Jul 12)
- Re: This just in: Firewalls are obsolete Florian Weimer (Jul 11)
- Re: This just in: Firewalls are obsolete Derek Vadala (Jul 11)
- Re: This just in: Firewalls are obsolete Daniele Muscetta (Jul 12)
- Re: This just in: Firewalls are obsolete dan (Jul 12)
- Re: This just in: Firewalls are obsolete nakona () alltel net (Jul 13)
- Re: Re: This just in: Firewalls are obsolete Gadi Evron (Jul 13)
- Re: Re: This just in: Firewalls are obsolete plonky (Jul 13)
- Re: Re: This just in: Firewalls are obsolete Dave Aitel (Jul 13)
- Re: Re: This just in: Firewalls are obsolete Gadi Evron (Jul 13)