Hi, On Thu, Jul 17, 2014 at 12:07:57PM -0400, Soren Harward wrote: > the worst case scenario is that the user's machine gets compromised.
This is an extreme likely case, but it will not happen by a network
based attack. Compromises these days on end hosts happen due to garbage
the users click on (in mail, in web sites, etc.), much less due to
network attacks (because client systems have become more robust to these,
and they all come with a host firewall by default today).
So always assume that the compromised host is already *in* your network,
and then re-evaluate your router firewall requirements.
gert
--
USENET is *not* the non-clickable part of WWW!
//www.muc.de/~gert/
Gert Doering - Munich, Germany [email protected]
fax: +49-89-35655025 [email protected]
pgpz91XsOUdoy.pgp
Description: PGP signature
_______________________________________________ openwrt-devel mailing list [email protected] https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-devel
