Always assume that any machine that has contact with the internet can be
cracked. If you put it onto the DMZ, a cracker will be limited in what he
can do by the firewall. If you put the machine on the internal LAN, then he
has access to your full LAN if/when the machine gets cracked.
On Wednesday, September 01, 1999 12:13 PM, Roy
[SMTP:[EMAIL PROTECTED]] wrote:
> We have the option of placing a www app server outside our firewall, in
the
> DMZ or behind the firewall in our LAN by opening port 80 to the www app
> server's IP address.
>
> What are the pros and cons of placing it in the DMZ vs in the LAN?
>
>
>
> -
> [To unsubscribe, send mail to [EMAIL PROTECTED] with
> "unsubscribe firewalls" in the body of the message.]
*****************************************************************************
The information in this email is confidential and may be legally privileged.
It is intended solely for the addressee. Access to this email by anyone else
is unauthorized.
If you are not the intended recipient, any disclosure, copying, distribution
or any action taken or omitted to be taken in reliance on it, is prohibited
and may be unlawful. When addressed to our clients any opinions or advice
contained in this email are subject to the terms and conditions expressed in
the governing KPMG client engagement letter.
*****************************************************************************
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
