Seriously? This is some home user who has nary a clue about how to use Automatic Updates...and you want to teach him about egress filtering?
I'd rather hear about n3td3v or whatever the fuck his name is. > ----- Original Message ----- > From: "john s" <[email protected]> > To: "G. D. Fuego" <[email protected]> > Cc: "[email protected]" <[email protected]> > Subject: Re: [Full-disclosure] Dumb question: Is Windows box behind a router > safe ? > Date: Tue, 22 Sep 2009 16:15:20 -0500 > > > On Tue, Sep 22, 2009 at 4:09 PM, G. D. Fuego <[email protected]> wrote: > > > > On Sep 22, 2009, at 3:18 PM, john s <[email protected]> wrote: > > > >> On Tue, Sep 22, 2009 at 2:01 PM, G. D. Fuego <[email protected]> wrote: > >>> > >>> On Sep 22, 2009, at 2:29 PM, Steven Anders <[email protected]> wrote: > >>>> > >>>> I have always thought that having a computer behind the router > >>>> (since router has firewall) is generally safe, but I would love to > >>>> hear insights or thoughts. > >>> > >>> Nope. A firewall should protect you against inbound connection > >>> attempts only. > >>> > >> > >> A well configured firewall segregates and monitors ingress and egress > >> traffic on a network segment. Controlling outbound connectivity > >> doesn't stop internal host app-level exploitation, but it can mitigate > >> post-exploit damages and can also possibly provide an alert to the > >> compromise... > > > > How many home users do you know with egress filtering enabled? > > > > Is this a security mailing list? ;) > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ > -- _______________________________________________ Surf the Web in a faster, safer and easier way: Download Opera 9 at http://www.opera.com Powered by Outblaze _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
