[olug] Security
Brian Wiese
bwiese at cotse.com
Tue Jan 8 17:55:52 UTC 2002
On Mon, 7 Jan 2002 03:40:51 -0600
Brian Wiese <bwiese at cotse.com> wrote:
> > Also the DMZ can't access the internet, since the hacker is most
likely
> > going to install DDOS tools or use ftp to add more software to your
> machine.
> > If the machine can't get out, it's not as useful.
>
> How am I supposed to update it? lol :) That makes things a little more
> difficult, but thats what you always (it seems) have to sacrifice for
> security, is usability. Perhaps I can open it up/add a route quick for
> updates, then remove the route again. Thats simple enough. Is it secure
> enough?
I guess the 'secure' thing to do, would be take the server for the
unfortnate 'down time', block all connections to it, then add the route to
connect to the net to get updates, possibly even reconnect the cable to
different dmz/network.
Brian
---------
FREEDOM! - Braveheart
-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_
For help contact olug-help at bstc.net - run by ezmlm
to unsubscribe, send mail to olug-unsubscribe at bstc.net
or `mail olug-unsubscribe at bstc.net < /dev/null`
(c)2001 OLUG http://www.olug.org
-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_
More information about the OLUG
mailing list