Hosting Provided By

Re: A question for the list...

From: Gary Flynn <flynngn(at)jmu.edu>
Date: Thu May 22 2003 - 16:30:52 EDT

What about making the default be "no inbound connections" and having a web interface where a customer can open ports if they find it necessary? The web page could guide them regarding which ports are necessary for which applications. Even if some folks just clicked "open everything" the bulk of the population would be protected.

I'm not sure what to say about the problems with router performance. Other access control implementations could probably be designed to improve the efficiency of this process using (better?) hardware support for the filtering function.

-- 
Gary Flynn
Security Engineer - Technical Services
James Madison University

----------------------------------------------------------------------------

*** Wireless LAN Policies for Security & Management - NEW White Paper ***
Just like wired networks, wireless LANs require network security policies 
that are enforced to protect WLANs from known vulnerabilities and threats. 
Learn to design, implement and enforce WLAN security policies to lockdown enterprise WLANs.

To get your FREE white paper visit us at:    
http://www.securityfocus.com/AirDefense-incidents
----------------------------------------------------------------------------

Received on Fri May 23 13:27:25 2003

This message: [ Message body ]
Next message: Whiteside, Larry [contractor]: "RE: ICMP/SYN Flood"
Previous message: Justin Pryzby: "Re: [ANNOUNCE] protocol watcher"
In reply to: Steve Barnet: "Re: A question for the list..."
Next in thread: Valdis.Kletnieks(at)vt.edu: "Re: A question for the list..."
Reply: Valdis.Kletnieks(at)vt.edu: "Re: A question for the list..."

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 14:02:06 EDT