nanog mailing list archives

RE: "top secret" security does require blocking SSH

From: Christopher Palmer <chrisp () bitstream net>
Date: Mon, 10 Jul 2000 13:42:50 -0500 (CDT)


Alex Bligh said:

need. I'm not an expert, but there is good information theory
that says once you allow more than trivial bit rates in/out
of an organization, blocking covert communication encapsulated
one way or another becomes extremely hard.


On Sun, 9 Jul 2000, Roeland M.J. Meyer wrote:

Actually, it isn't so hard. Northgrum.com has firewall, moat,
alligators, and free-fire kill-zone <g>.


Are you referring to what Alex said when you say `it isn't so hard'? If
so, I'm confused; could you elaborate (what good would a firewall,
moat or other do)?

If not, ignore this. :)


--
Christopher Palmer : Random Coding Guy : bitstream.net
(my other car is a cdr)

Current thread:

RE: RBL-type BGP service for known rogue networks?, (continued)
- - RE: RBL-type BGP service for known rogue networks? Roeland M.J. Meyer (Jul 08)
    - Re: RBL-type BGP service for known rogue networks? Rodney Joffe (Jul 08)
    - Re: RBL-type BGP service for known rogue networks? John Payne (Jul 09)
    - Re: RBL-type BGP service for known rogue networks? Dana Hudes (Jul 08)
    - RE: RBL-type BGP service for known rogue networks? Roeland M.J. Meyer (Jul 09)
    - "top secret" security does require blocking SSH Greg A. Woods (Jul 09)
    - Re: "top secret" security does require blocking SSH Alex Bligh (Jul 09)
    - RE: "top secret" security does require blocking SSH Derrick (Jul 09)
    - Re: "top secret" security does require blocking SSH Alex Bligh (Jul 09)
    - RE: "top secret" security does require blocking SSH Roeland M.J. Meyer (Jul 09)
    - RE: "top secret" security does require blocking SSH Christopher Palmer (Jul 10)
    - RE: "top secret" security does require blocking SSH Greg A. Woods (Jul 09)
    - Re: "top secret" security does require blocking SSH Greg A. Woods (Jul 09)
    - Open Broadcast Amplifier networks list. Simon Lyall (Jul 12)
    - Re: "top secret" security does require blocking SSH Stephen Sprunk (Jul 09)
    - RE: RBL-type BGP service for known rogue networks? Sabri Berisha (Jul 09)
    - RE: RBL-type BGP service for known rogue networks? Roeland M.J. Meyer (Jul 09)
    - Re: RBL-type BGP service for known rogue networks? Richard Irving (Jul 09)
    - RE: RBL-type BGP service for known rogue networks? Derek J. Balling (Jul 09)
    - RE: RBL-type BGP service for known rogue networks? Roeland M.J. Meyer (Jul 09)
    - Re: RBL-type BGP service for known rogue networks? Valdis . Kletnieks (Jul 10)

(Thread continues...)