Firewall Wizards mailing list archives

Re: how prevelant

From: ArkanoiD <ark () eltex net>
Date: Tue, 12 Oct 2004 16:33:16 +0400

On Fri, Oct 08, 2004 at 03:05:59PM -0400, R. DuFresne wrote:


how common is it for a company to have it's NT domain and novell
athentication pass openly across the internet,


Damn bad idea.

and have this be the
requirement to access VPN tunnel rights from outside into the company?


I don't think so. Even VPN should be used with care, because security
status of outer end of tunnel is questionable.

The firewalls I manage keep all windows related protocols in the 135-139,
445 and 5000 ports arenas internal only, none f this traffic passes
outside the firewalls, none is allowedto pass outside, unltess tunneled.
Is this not a standard practise with any org with half a clue of security,
or am I being more tightfisted with access and control then is the norm?

Thanks,

Ron DuFresne


_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

Current thread:

how prevelant R. DuFresne (Oct 11)
- Re: how prevelant Paul D. Robertson (Oct 11)
  - Re: how prevelant Kevin (Oct 12)
- Re: how prevelant Jason Lewis (Oct 11)
  - Re: how prevelant Kevin Sheldrake (Oct 12)
- Re: how prevelant ArkanoiD (Oct 12)
- <Possible follow-ups>
- Re: how prevelant Brian Ford (Oct 12)
- RE: how prevelant Melson, Paul (Oct 12)