Security Basics mailing list archives

Previous By Date Next
Previous By Thread Next

RE: SMTP behind NAT

From: "Murda Mcloud" <murdamcloud () bigpond com>
Date: Thu, 7 May 2009 11:27:25 +1000
 Egress filtering is part of being a "good netizen".  If something
that doesn't belong has gotten into your network, it's nice to not
be the vector that spreads it to others.


Hear, hear. I hadn't really thought of it along those lines, David-being the
selfish mug that I am. Quite zen, when I think about it. Interconnectedness
of all beings these days; in an electronic sense at least. 


or blocking legitimate activity.


And these days, I am even worried by legit activity, in terms of the
potential for damage. Firewalls aren't going to protect me if my kids
download malicious files via msn etc. But having limits(firewalls/proxies
etc) on outgoing traffic may alert me to that and also can cut down the
attack space in the first place. How many 'legit' sites have been found to
be hosting malicious files?

I can imagine that there are many corporate LAN's spamming the world.




------------------------------------------------------------------------
This list is sponsored by: InfoSec Institute

Need to pass the CISSP? InfoSec Institute's CISSP Boot Camp in both Instructor-Led and Online formats is the most 
concentrated exam prep available. Comprehensive course materials and an expert instructor means you pass the exam. Gain 
a laser like insight into what is covered on the exam, with zero fluff! 

http://www.infosecinstitute.com/courses/cissp_bootcamp_training.html
------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: