Re: firewall subdomain naming schemes

[Mikael Olsson <mikael.olsson () enternet se>]

lewst wrote:
> Hostnames don't provoke attacks.

Yes they do. If the Bad Guys(tm) have a list of known bugs
in different OS/es (very common) and want to attack you,
they'll instantly know what machines to target if you've
added OS types to their names.

Also, if you designate names based on department (house
names and floor numbers maybe be back tracked to departments,
right?) the Bad Guys will also know where to hit if they're
interested in certain pieces of data, rather than having go
through every single machine there is.

Knowing where to hit and how to hit decreases the risks
of tripping IDSes or ending up in logs, which makes you
a more attractive target, should you provide info to make
this possible.

... 'nuff rambling from me :-)

/Mike

-- 
Mikael Olsson, EnterNet Sweden AB, Box 393, S-891 28 ÖRNSKÖLDSVIK
Phone: +46 (0)660 105 50           Fax: +46 (0)660 122 50
Mobile: +46 (0)70 248 00 33
WWW: http://www.enternet.se        E-mail: mikael.olsson () enternet se