Christ Schlacta wrote: >no, I'm saying exposing windows to the internet is always a bad idea. >it should NEVER be in a dmz, and should always be protected by the >firewall with a policy reject or policy drop.
I'll politely disagree, I think you are being "a bit strong" there. I'm as 'sceptical' about Windows as most - I'm the lone Mac and linux guy in a totally Windows setup at work. The bulk of our public servers are running Windows, they are as capable of being an internet host as Linux provided you manage them properly. And of course, the whole point of having a DMZ is so that you have got separation from the outside via the firewall - plus separation from your LAN in case a public host does get compromised. But that's getting a bit off topic for both this thread and the list. -- Simon Hobson Visit http://www.magpiesnestpublishing.co.uk/ for books by acclaimed author Gladys Hobson. Novels - poetry - short stories - ideal as Christmas stocking fillers. Some available as e-books. ------------------------------------------------------------------------------ Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day trial. Simplify your report design, integration and deployment - and focus on what you do best, core application coding. Discover what's new with Crystal Reports now. http://p.sf.net/sfu/bobj-july _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
