On Wednesday 12 September 2001 22:38 pm, Jay Nugent wrote:
> No flame from me. I don't like firewalls either. They block ONLY
> those ports that you're not running servers on. But if I'm already NOT
> running services on those ports, what's the point?
>
> Oh! This is it! If I'm a screwup and I accidentally run a service I
> didn't intend to, I guess I've just exposed myself, without a firewall.
> But gosh, if I screwup the config on the firewall I expose myself anyway.
> Little difference in my opinion. Think about what you do on EVERY machine
> in your network. Don't hide behind the FALSE SECURITY that a firewall
> might pretend to give you. I've scanned too many friends and customers
> networks that have firewalls only to find they didn't configure the FW
> correctly, exposing themselves, all the while sleeping snug as a bug at
> night :-(
>
> NMAP SCAN your entire network regularly. Watch your logs constantly.
> Read Bugtraq, redhat-security, etc.
>
> --- Jay
>
> P.S. I *LIVE* as root on my systems as well. Know what's gonna happen
> BEFORE you hit enter. No better way to condition yourself to PAY
> ATTENTION to what you're doing :-)
You've just been un-GROK'd. Welcome to the club.. :o)
--
+----------------------------------------------------------------------------+
+ Bruce S. Marshall [EMAIL PROTECTED] Bellaire, MI 09/12/01 23:08 +
+----------------------------------------------------------------------------+
"I'm all for computer dating,
But I wouldn't want one to marry my sister."
_______________________________________________
http://linux.nf -- [EMAIL PROTECTED]
Archives, Subscribe, Unsubscribe, Digest, Etc
->http://linux.nf/mailman/listinfo/linux-users
