Firewall Wizards mailing list archives
Re: How automate firewall tests
From: jseymour () linxnet com (Jim Seymour)
Date: Mon, 21 Aug 2006 08:52:49 -0400 (EDT)
"Marcus J. Ranum" <mjr () ranum com> wrote: [snip]
If you want to look at things from my (admittedly weird) perspective, the current fondness for "patch your software constantly" is proof positive that packet-based firewalls don't (and never did) work except for at a very gross level.
[snip] That's not "weird" by any stretch of the imagination. It may be "unpopular." It may not be "mainstream." But weird it ain't. It's just intelligent, educated and honest. Problem is: People (read: PHBs, mainly) don't want intelligent, educated and honest. They want their latest whiz-bang crosses-the-boundary-between-internal-secure-and- external-unsafe application to just work and don't bother me with the details thankyouverymuch. Never mind the ISPs that knowingly give electronic Petri dishes direct connectivity to the 'net, without even a modicum of blocking/filtering/what-have-you. This is complicated by Certain Vendors who proclaim that sophisticated computing environments can be capably managed by somebody who's taken a short course or read a few books, and a point-n-drool GUI. The results are predictable. Virus'/worms/Trojans run amok. Email delivery is unreliable. Major corporations regularly find their internal network paralyzed. And on and on. Oddly enough: The people "victimized" by all this exhibit all the signs of insanity: They keep doing the same thing and expecting different results. You're not "weird," Marcus. It's the rest of 'em that're weird. I'm reminded of this: "If fifty million people say a stupid thing, it is still a stupid thing." - Anatole France Jim _______________________________________________ firewall-wizards mailing list firewall-wizards () listserv icsalabs com https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards
Current thread:
- Re: How automate firewall tests, (continued)
- Re: How automate firewall tests Patrick M. Hausen (Aug 22)
- Re: How automate firewall tests Chris Blask (Aug 23)
- Re: How automate firewall tests Crispin Cowan (Aug 28)
- Re: How automate firewall tests Marcus J. Ranum (Aug 28)
- Re: How automate firewall tests Marcus J. Ranum (Aug 28)
- Re: How automate firewall tests Cat Okita (Aug 29)
- Re: How automate firewall tests Marcus J. Ranum (Aug 23)
- Re: How automate firewall tests Jim Seymour (Aug 23)
- Re: How automate firewall tests Tina Bird (Aug 23)
- Re: How automate firewall tests lordchariot (Aug 23)
- Re: How automate firewall tests Jim Seymour (Aug 21)
- Re: How automate firewall tests Chris Byrd (Aug 21)
- Message not available
- Re: How automate firewall tests Marcus J. Ranum (Aug 22)
- Re: How automate firewall tests Keith A. Glass (Aug 20)
- Re: How automate firewall tests R. DuFresne (Aug 23)
- Re: How automate firewall tests Jim Seymour (Aug 23)
- Re: How automate firewall tests haim [howard] roman (Aug 23)
- Re: How automate firewall tests sai (Aug 20)
- Re: How automate firewall tests Dave Piscitello (Aug 30)
- Re: How automate firewall tests Marcus J. Ranum (Aug 20)