On Sun, 10 Dec 2000, Roy G. Culley wrote:
> If all firewall administrators had your attitude then most s/w
> developers of Internet applications would be tunnelling everything
> already.
I don't get it. First you accuse Paul of dictatorial attitude and now
you're saying that what it would achieve is the one thing all
administrators should _actively_ be going for: improved security, and I
don't see how anything could currently improve the security of the
Internet more than tunneling traffic over strong encryption.
But flames aside, there's better things to waste time and bandwidth on
than proving who mimics a five-year old kid best.
> When that day comes you and I are out of a job as firewalls will be
> useless.
I don't see tunneling making firewalls less useful in _any_ way. What's
wrong with increased data security, as long as the level of security is
in balance with the usability and flexibility of the the net by those
who it was meant for (in this case I mean the trusted people only. Local
users, clients, whatever).
There's always going to be buggy software that will be (root) exploited,
there's always going to be ignorant users with sorry excuses of a joke
for passwords and, most of all, for as long as it's us humans taking
care of the networks, there's always going to be the human "oops, i
didn't notice" and "oh yeah, i forgot" effects in system administration
level, which will allow access for the curious ones determined to take a
peek.
There's a couple of reasons why firewalls will still be useful even if
all actual traffic was secured.
.pi.
--
Petteri Lyytinen - [EMAIL PROTECTED] - http://www.students.tut.fi/~typo/
+ Watashi no chikara de susumu +
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
