home *** CD-ROM | disk | FTP | other *** search
- Newsgroups: comp.protocols.tcp-ip
- Path: sparky!uunet!think.com!snorkelwacker.mit.edu!bloom-picayune.mit.edu!math.mit.edu!drw
- From: drw@jordan.mit.edu (Dale R. Worley)
- Subject: Re: Firewall usage (was: Re: ping works, but ftp/telnet get "no route)
- In-Reply-To: gary@sci34hub.sci.com's message of 23 Jul 92 14:20:26 GMT
- Message-ID: <DRW.92Jul27143657@jordan.mit.edu>
- Sender: news@athena.mit.edu (News system)
- Nntp-Posting-Host: jordan.mit.edu
- Organization: MIT Dept. of Tetrapilotomy, Cambridge, MA, USA
- References: <BrruC8.FEo@spock.dis.cccd.edu> <BrsM1C.36v@cs.columbia.edu>
- <1992Jul23.142026.20112@sci34hub.sci.com>
- Date: Mon, 27 Jul 1992 19:36:57 GMT
- Lines: 12
-
- As far as I've seen, much of the problem with firewalls is not that
- they exist, but that they are badly configured. For instance, I've
- seen firewalls that would allow "inside" users to telnet out, but they
- couldn't rlogin out. A good firewall should allow everything that is
- permitted and nothing that is forbidden, and so improves security
- without adding any additional burden to proper usage.
-
- Dale
-
- Dale Worley Dept. of Math., MIT drw@math.mit.edu
- --
- What do you mean, *you're* a solipsist?
-