Firewall Wizards mailing list archives

Previous By Date Next
Previous By Thread Next

Re: IPv6 support in firewalls

From: "Behm, Jeffrey L." <BehmJL () bv com>
Date: Mon, 27 Aug 2007 16:57:02 -0500
But they *are* in charge, and will be increasingly so. How
do you change that? Anyone with a $50/mo 1, 3, or 5Mb ISP
Connection and a PC is "on the net," secured or not...(more
likely, not).

You have to KISS, if you want these folks to use whatever
mechanism is in place. Make it more complicated than,
"open the box, plug this cable in here, and that one in
there, done," and it won't get used. That's why the NAT
device market took off so quickly. One can't expect the
end user to configure a "stateful packet filter for
outbound only connections." That's *not* gonna happen.




On Monday, August 27, 2007 4:20 PM, Paul D. Robertson wrote:


On Mon, 27 Aug 2007, Behm, Jeffrey L. wrote:


Stupid users, who click on an unknown .exe are a good
enough vector to exploit, as you are seeing today...


Which is why I'm convinced those users should not be in charge of their



own security.


_______________________________________________
firewall-wizards mailing list
firewall-wizards () listserv icsalabs com
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards
Previous By Date Next
Previous By Thread Next

Current thread: