|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: [Dailydave] This just in: Firewalls are obsolete
From: Gadi Evron (ge
linuxbox.org)
Date: Mon Jul 11 2005 - 18:23:47 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Hi Florian,
> This isn't quite as dumb as it sounds. People begin to realize that
> it doesn't make sense to license expensive firewalling software which
> suffers from the same vulnerabilities as the services you are trying
> to protect (roughly speaking).
>
> For complex protocols, you need one implementation which gets it
> right, not two or more which come close, but not close enough.
Actually, yeah..
I am getting rather tired of "everything over port 80" and calling
everything a firewall this or firewall that.
Getting into a world where you have a so called "firewall" for every
type of service that goes over port 80 or you have to somehow try and
manage to block it in your proxy while still trying to allow the rest is
insane.
Gadi.
_______________________________________________
Dailydave mailing list
Dailydavelists.immunitysec.com
https://lists.immunitysec.com/mailman/listinfo/dailydave
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]