I think I misinterpreted the original intent when someone said if everyone
used encryption, firewall administrators would go away. I thought they meant
encryption was going to solve the security problems. I think they were
actually implying that firewalls couldn't do their work if everything was
encrypted. If IPSEC encrypts the transport level port numbers along
with the payload, I'd have to agree unless the firewall was part of
the organization's IPSEC infrastructure and had access to the keys.
Sort of like the fate of packet sniffers and RMON probes.
--
Gary Flynn
Security Engineer - Technical Services
James Madison University
Please R.U.N.S.A.F.E.
http://www.jmu.edu/computing/info-security/engineering/runsafe.shtml
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
