Firewall Wizards mailing list archives
RE: RE: In defense of non standard ports
From: "R. DuFresne" <dufresne () sysinfo com>
Date: Fri, 27 Jan 2006 16:41:12 -0500 (EST)
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Tue, 24 Jan 2006, Behm, Jeffrey L. wrote:
On Tuesday, January 24, 2006 10:57 AM, Marcus J. Ranum so spake:Most organizations have already given up control over outgoing traffic. What they don't realize is that, by extension, they have also given up control over incoming traffic.And, to me, are seeming to make it more difficult for those who haven't to maintain control. Overheard at the water cooler: "Well, company X allows this traffic, why don't we? They are much larger than us and probably understand security *much* better than we do. Since they think it's safe, shouldn't we think it's safe, too?" I'm still looking for wording used to combat the cluelessness of such mindset in both our own companies, as well as companies that are creating situations that make us run web traffic on non-web ports.
Didn't mom supply such wording when we were kids;Just because <insert a name here> wants to jump off the bridge, does that mean you need to join them?
Thanks, Ron DuFresne- -- ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
admin & senior security consultant: sysinfo.com http://sysinfo.com Key fingerprint = 9401 4B13 B918 164C 647A E838 B2DF AFCC 94B0 6629 ...We waste time looking for the perfect lover instead of creating the perfect love. -Tom Robbins <Still Life With Woodpecker> -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (GNU/Linux) iD8DBQFD2pN6st+vzJSwZikRApTYAKCMJ1W2ur/ROWQa/jJxLNJZAmegVACgkH95 qE89Tx0LfOMv6WzQ0dzvW/w= =QfRL -----END PGP SIGNATURE----- _______________________________________________ firewall-wizards mailing list firewall-wizards () honor icsalabs com http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
Current thread:
- RE: RE: In defense of non standard ports R. DuFresne (Feb 01)
- RE: RE: In defense of non standard ports Jim Seymour (Feb 02)
- <Possible follow-ups>
- Re: RE: In defense of non standard ports R. DuFresne (Feb 01)
- Re: RE: In defense of non standard ports Paul D. Robertson (Feb 02)
- RE: RE: In defense of non standard ports Bill Royds (Feb 02)
- RE: RE: In defense of non standard ports R. DuFresne (Feb 20)
- Re: RE: In defense of non standard ports R. DuFresne (Feb 02)
- Re: RE: In defense of non standard ports Paul D. Robertson (Feb 02)