Firewall Wizards mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Firewall administration.

From: Ted Doty <ted () iss net>
Date: Sun, 12 Oct 1997 14:32:53 -0400
At 09:33 AM 10/12/97 -0700, Bennett Todd wrote:

On Sun, Oct 12, 1997 at 10:57:05AM -0400, Ted Doty wrote:



Even if you assume a simple and unchanging policy, someone still needs to
cruise thru the logs to see what's happening on the connection.


It's better if some does, yes. But if they can't afford to have some one do
it, that doesn't mean they won't still be better off with the firewall, even
ignoring the logs.


[rest of message deleted]

At this point we reach the religeous question: can you set up a true "fire
and forget" security implementation?  At the risk of opening up a flame
war, I'd like to poll the readers of the list.

Anyone who's interested, please send me (ted () iss net) a message with your
opinion; I'll summarize for the group.

- Ted

----------------------------------------------------------------------------
Ted Doty, Internet Security Systems | Phone: +1 770 395 0150
41 Perimeter Center East            | Fax:   +1 770 395 1972
Atlanta, GA 30346  USA              | Web: http://eng.iss.net/~tdoty
----------------------------------------------------------------------------
PGP key fingerprint: 362A EAC7 9E08 1689  FD0F E625 D525 E1BE
Previous By Date Next
Previous By Thread Next

Current thread: