On Thursday 12 July 2007, Theo v. Werkhoven wrote: > > On Thursday 12 July 2007, Theo v. Werkhoven wrote: > > > Of course, at $DAYJOB, I do /not/ let company PCs have unrestricted > > > access to high ports on the outside, better safe than sorry with > > > Windows PCs, dealing with company data and passwords etc... > > > > Really? > > So something as simple as web browsing requires all sorts of > > proxying, and every internet oriented package needs to be proxied > > or SOCKSified? > > No proxy, just a limited set of ports that I allow to connect to, like > web, pop3(s), imap(s), vpn, ftp etc., and some special ports for accounting > and airline reservation packages (but only to and from specific > hosts).
Ok, I misread your post as limiting the high ports that software could use to access remote sites. You are limiting remote ports (targets). Of course lots of nasty things just port 80..... -- _____________________________________ John Andersen -- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
