RE: RE: In defense of non standard ports

["R. DuFresne" <dufresne () sysinfo com>]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Tue, 24 Jan 2006, Behm, Jeffrey L. wrote:

> On Tuesday, January 24, 2006 10:57 AM, Marcus J. Ranum so spake:
>
> > Most organizations have already given up control over outgoing
> > traffic. What they don't realize is that, by extension, they have
> > also given up control over incoming traffic.
>
> And, to me, are seeming to make it more difficult for those who haven't
> to maintain control.
>
> Overheard at the water cooler: "Well, company X allows this traffic, why
> don't we? They are much larger than us and probably understand security
> *much* better than we do. Since they think it's safe, shouldn't we think
> it's safe, too?"  I'm still looking for wording used to combat the
> cluelessness of such mindset in both our own companies, as well as
> companies that are creating situations that make us run web traffic on
> non-web ports.

Didn't mom supply such wording when we were kids;


Just because <insert a name here> wants to jump off the bridge, does that 
mean you need to join them?

Thanks,

Ron DuFresne
- -- 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
        admin & senior security consultant:  sysinfo.com
                        http://sysinfo.com
Key fingerprint = 9401 4B13 B918 164C 647A  E838 B2DF AFCC 94B0 6629

...We waste time looking for the perfect lover
instead of creating the perfect love.

                -Tom Robbins <Still Life With Woodpecker>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)

iD8DBQFD2pN6st+vzJSwZikRApTYAKCMJ1W2ur/ROWQa/jJxLNJZAmegVACgkH95
qE89Tx0LfOMv6WzQ0dzvW/w=
=QfRL
-----END PGP SIGNATURE-----
_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards