Security through obscurity may not be advisable as a primary defense, but it
is an excellent philosophy to compliment your existing infrastructure.
Personally, I would try avoiding any practice that drew attention to my
architecture to the casual observer.
I'm sure that you can come up with a naming scheme that seems a bit more
arcane to those outside your company, and still have it make logical sense
to you and your staff. It will not obfuscate those who are more intimately
familiar with your company's structure, but then again - if they are - you
already have something to worry about anyway.
I know I didn't help you much, I was just casting a vote for obscurity.
Very Respectfully,
Michael E. Cummins
"Experience comprises illusions lost, rather than wisdom gained."
- Joseph Roux
====================================================
And for you automated email spammers out there,
here are the email addresses of the current board of
the Federal Communications Commission:
Chairman William Kennard: [EMAIL PROTECTED]
Commissioner Susan Ness: [EMAIL PROTECTED]
Commissioner Harold Furchtgott-Roth: [EMAIL PROTECTED]
Commissioner Michael Powell: [EMAIL PROTECTED]
Commissioner Gloria Tristani: [EMAIL PROTECTED]
And let's help you send some spam to the USPS, too:
[EMAIL PROTECTED]
====================================================
> -----Original Message-----
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED]]On Behalf Of Truman Boyes
> Sent: Wednesday, February 02, 2000 2:48 PM
> To: [EMAIL PROTECTED]
> Subject: DNS Reverse Records Best Practices
>
>
> Hi,
>
> I am going through many network blocks this week, cleaning out PTR
> entries for outdated systems and assigned blocks. I would like to update
> most of the reverse records for the routers and gateway systems at the
> same time. Do any of you have thoughts on proper naming conventions of
> reverse records for gateways ? Could you see potential risks associated
> with having the geographical location or organization name in the record
> ? For instance, core-1.atm155.newark.example.com would give me information
> regarding the importance of the router, the company name, the location,
> and the type of link. Of course security through obscurity is NO SECURITY
> at all, but ... any thoughts ?
>
> .truman.boyes.
>
> /"\
> \ / CAMPANHA DA FITA ASCII - CONTRA MAIL HTML
> X ASCII RIBBON CAMPAIGN - AGAINST HTML MAIL
> / \
>
> -
> [To unsubscribe, send mail to [EMAIL PROTECTED] with
> "unsubscribe firewalls" in the body of the message.]
>
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
