On Sep 22, 2009, at 3:18 PM, john s <[email protected]> wrote:
> On Tue, Sep 22, 2009 at 2:01 PM, G. D. Fuego <[email protected]> > wrote: >> >> On Sep 22, 2009, at 2:29 PM, Steven Anders <[email protected]> >> wrote: >>> >>> I have always thought that having a computer behind the router >>> (since router has firewall) is generally safe, but I would love to >>> hear insights or thoughts. >> >> Nope. A firewall should protect you against inbound connection >> attempts only. >> > > A well configured firewall segregates and monitors ingress and egress > traffic on a network segment. Controlling outbound connectivity > doesn't stop internal host app-level exploitation, but it can mitigate > post-exploit damages and can also possibly provide an alert to the > compromise... How many home users do you know with egress filtering enabled? _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
