> > This is heavily geared towards NT, seeing that
>
> I don't think it should make much difference. In my view, the same basic
> security principles apply regardless of OS. Of course, the practical
> solutions may differ... ;-)
>
[Kunz, Peter] Valid point.
> > it's the operating system of choice for new people,
>
> Do you really think so?
>
[Kunz, Peter] Have you been following recent discussions? :-))
> > 1. Hide as much information as possible
> > (in this context, as few publicly accessible IPs
> > as possible)
>
> "Security through obscurity is no security."
>
> > If you have the ability to disguise your web server's
> > address through means of static adress translation,
> > do so. See rule #1.
>
> See rule #1. ;-)
>
> Rather, I think you should be looking at running a good, secure web
> server. Fix the problem, not the symptoms.
>
[Kunz, Peter] THe problem is, Mikael should have set rule 1 as run
a secure server, and 1a as hide as much as possible. His approach is not
security by obscurity, but to offer as little info as possible to the
outside world, ie a valid and necessary step in securing a site. As a first
setp, however, it is wise to set your comment as the goal.
cu
-pete
>
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
