[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: Passive mode ftp

To: 'Mikael Olsson' <mikael.olsson@enternet.se>
Subject: RE: Passive mode ftp
From: Vincent de Lau <Vincent.de.Lau@tridion.com>
Date: Tue, 15 Aug 2000 16:14:29 +0200
Cc: "Firewalls (E-mail)" <Firewalls@Lists.GNAC.NET>


    [ Part 1, Text/PLAIN (charset: ISO-8859-1 "Latin 1")  28 lines. ]
    [ Unable to print this part. ]

    [ The following text is in the "iso-8859-1" character set. ]
    [ Your display is set for the "US-ASCII" character set.  ]
    [ Some characters may be displayed incorrectly. ]


-----Original Message-----
From: Mikael Olsson [mailto:mikael.olsson@enternet.se]
Sent: dinsdag 15 augustus 2000 15:14
To: Graham Wheeler
Cc: Andrew Lawrence; Firewalls (E-mail)
Subject: Re: Passive mode ftp

> Considering that inside users (processes, if you like) can always
> connect out through some means or another, I'd rather have my
> firewall concentrate on keeping external Bad Guys out, rather than
> attempting to concentrate on the futile task of keeping internal Bad
> Guys inside.
>
> ... but that's just my point of view, I guess ;)

I agree with you. The only way to keep Bad Guys in, is to have one rule
in the firewall: Deny All

It is better to keep Bad Guys out with the firewall, attachment blocking
in e-mail, virusscanning the e-mail and the desktop and train the users.

That makes $.04

Vincent de Lau
 System Administrator / MSCE

 Tridion (http://www.tridion.com)
 mailto:Vincent.de.Lau@tridion.com

Prev by Date: RE: IP addressing on firewall
Next by Date: RE: IP addressing on firewall
Prev by thread: Re: Passive mode ftp
Next by thread: Re: Passive mode ftp
Index(es):
- Date
- Thread