Firewall Wizards mailing list archives

Previous By Date Next
Previous By Thread Next

Re: DNS Names for external services

From: Henri Salo <henri () nerv fi>
Date: Tue, 13 Apr 2010 22:36:14 +0300
On Tue, 13 Apr 2010 11:16:06 -0500
"Behm, Jeff" <jbehm () burnsmcd com> wrote:


Just curious, what is your opinions of the security vs. ease of use
trade-offs on putting DNS entries in (vs. making people know/use an
IP address) for services you expose to the Internet.

For example, 

webmail.companynamehere.com for your webmail service

www.companynamehere.com for your web site

The two above are typically common and don't cause me much concern.
What about this next one?

vpn.companynamehere.com for your employees to access your company's
VPN server

It's this last one that really begs the question. Should I just as
well use the name "attackmehere.companynamehere.com" rather than
vpn.companynamehere.com. I searched around on the Internet, but
couldn't really find pros and cons...

Just looking for opinions. There are no "right" answers ;-)

Jeff


Please use domain example.com in your examples. Domain
companynamehere.com is registered.

---
Henri Salo
_______________________________________________
firewall-wizards mailing list
firewall-wizards () listserv icsalabs com
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards
Previous By Date Next
Previous By Thread Next

Current thread: