RE: Opinions on rules

[elsasser]

This may seem like a good policy and easy to administer, but it takes just one trojan that gets in via an email and installs itself on a user's computer and starts transmitting the farm to the outside world and it's all over. Not to mention all the spyware that's out there that sends a lot of information out from your machine. _________________________________________________ Erik Elsasser                  System Engineering CyberGuard Corporation           Northeast Region -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Edward Ingram Sent: April 03, 2001 7:05 PM To: [EMAIL PROTECTED] Subject: Opinions on rules In our company, we have about 40-50 users...many who run apps like AIM, ICQ, IRC, as well as lots of proprietary company software that requires the use of non registered ports.  Since we don't really have a policy on users running messenger apps and such, and I really could care less right now, would it be safe to have an initial rule that allows all inside connections to the outside and to allow all established connections back in?  That would save a lot of trouble vs. specifically allowing certain ports out and blocking everything else. Ed