> personally, i don't agree with network admins claiming
> opening security ports is a risk. ports 80 and 25 are
> almost always open and they offer plenty of risk. the
> question really is, is the admin knowledgeable enough to
> control traffic security. companies like checkpoint (they
> might have been acquired - not sure) make/made great
> products for securing internet/network traffic.
With all due respect, I suspect you're not a network admin!
Any time you open a port, it's a risk - it's another thing that has to be
watched. There are typically limited resources for what a network
administrator can deal with, and no matter what products you buy to help
monitor security issues, they still require human guidance and intervention.
I've seen enough misconfigured firewalls to know that you can't simply buy
hardware and software to solve security issues.
The question here is, do the risks outweigh the rewards? From the network
admin's point of view, probably not - until someone convinces him otherwise.
Dave Watts, CTO, Fig Leaf Software
http://www.figleaf.com/
voice: (202) 797-5496
fax: (202) 797-5444
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Structure your ColdFusion code with Fusebox. Get the official book at
http://www.fusionauthority.com/bkinfo.cfm
Archives: http://www.mail-archive.com/[email protected]/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists
