-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
> -----Original Message-----
> From: Ben Nagy [mailto:[EMAIL PROTECTED]]
> Sent: Thursday, March 15, 2001 4:25 PM
>
> [...]
> My problem with honeypots has always been that by giving
> crackers a leg-up
> into the DMZ you create a situation whereby you actually increase
> the exposure of the servers you actually care about.
> [...]
> If these are just regular boxes, what's to stop someone
> rooting it and then
> attacking the network? [...]
If you are talking about _the_ DMZ, I agree. I would not put honey
pots in the _same_ DMZ like external servers. Instead they should be
on their _own_ DMZ which can be another leg off the firewall,
appropriately secured.
So, another year, another legality debate. Let's see where this
thread ends this time...
Regards,
Frank
-----BEGIN PGP SIGNATURE-----
Version: PGP Personal Privacy 6.5.8
Comment: PGP or S/MIME encrypted email preferred.
iQA/AwUBOrIoWJytSsEygtEFEQKl6gCfXT1xXKlluvuIj9RxA7akkNT6LmwAoPH7
o3CXhXmBh4ZKvqqFTNtHFzfy
=t+7A
-----END PGP SIGNATURE-----
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
