So far we've been able to hold the line at work, but there are more and more
idiotic applications coming on line every day. One application actually
wanted ftp to work on port 80 (http)! Told them it couldn't be done because
we use real firewalls, application gateways (IMO, yours may vary).
Personally I think this kind of insanity really needs to be stopped. It
would be like saying in one town the green lights mean stop and the red
lights mean go. And streets that are prime numbers are one way only.
Another reason we give for not opening undocumented ports is the
diagnostics. We can't perform independent tests to verify the operation or
lack of operation of port of an undocumented component.
-----Original Message-----
From: Paul D. Robertson [mailto:[EMAIL PROTECTED]]
Sent: Monday, December 04, 2000 3:01 PM
To: Al Potter
Cc: Samir Fahim; [EMAIL PROTECTED]
Subject: Re: Corba application using random ports
On Mon, 4 Dec 2000, Al Potter wrote:
> with. Why anyone would spec a protocol like this these days is beyond me.
Because idiots will open firewalls instead of batting the application
designer about the head with a clue-by-four. I can't count the number of
idiotic vendors I've sent packing due to idiotic protocol design.
Paul
----------------------------------------------------------------------------
-
Paul D. Robertson "My statements in this message are personal opinions
[EMAIL PROTECTED] which may have no basis whatsoever in fact."
PSB#9280
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
*****************************************************************************
The information in this email is confidential and may be legally privileged.
It is intended solely for the addressee. Access to this email by anyone else
is unauthorized.
If you are not the intended recipient, any disclosure, copying, distribution
or any action taken or omitted to be taken in reliance on it, is prohibited
and may be unlawful. When addressed to our clients any opinions or advice
contained in this email are subject to the terms and conditions expressed in
the governing KPMG client engagement letter.
*****************************************************************************
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
