Firewall Wizards mailing list archives

Re: Why are developers choosing to...

From: Barney Wolff <barney () databus com>
Date: Mon, 23 Jan 2006 12:53:19 -0500

On Sun, Jan 22, 2006 at 12:31:36PM +1100, mlh wrote:


Back to the topic Certainly I've had cases of people asking for access to
some (in this case govt) website on an odd port, and I said
that they should just ask the server admin to use the standard ones.


If you are going to allow https traffic at all, since you cannot see
what is being communicated, what security advantage is achieved by
forbidding traffic to high ports?  I see none.

The situation is not symmetrical.  Forbidding inbound traffic except to
known valid cases is easy to justify.

-- 
Barney Wolff         http://www.databus.com/bwresume.pdf
I never met a computer I didn't like.
_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

Current thread:

Re: Why are developers choosing to..., (continued)
- Re: Why are developers choosing to... Paul D. Robertson (Jan 20)
  - Re: Why are developers choosing to... Joseph S D Yao (Jan 20)
    - Re: Why are developers choosing to... Paul D. Robertson (Jan 20)
- Re: Why are developers choosing to... Karl Mueller (Jan 20)
- Re: Why are developers choosing to... Adrian Grigorof (Jan 20)
  - Re: Why are developers choosing to... Greg Spath (Jan 20)
- Message not available
  - Re: Why are developers choosing to... hermit921 (Jan 20)
    - Re: Why are developers choosing to... Paul D. Robertson (Jan 20)
- Re: Why are developers choosing to... Darren Reed (Jan 20)
- Re: Why are developers choosing to... mlh (Jan 23)
  - Re: Why are developers choosing to... Barney Wolff (Jan 23)
- Re: Why are developers choosing to... Keith A. Glass (Jan 20)
  - Re: Why are developers choosing to... Greg Spath (Jan 20)
- RE: Why are developers choosing to... Behm, Jeffrey L. (Jan 20)
- RE: Why are developers choosing to... Behm, Jeffrey L. (Jan 20)