On Wed, 18 Jul 2012, Edward Ned Harvey wrote:
From: Andrew Hume [mailto:[email protected]]
Sent: Wednesday, July 18, 2012 10:31 AM
point taken.
due to $WORK constraints, the available cluster filesystems can't work
due to firewalls etc.
Wait ... The firewall guys won't allow you to mount some remote storage, but
they will allow you to read it and write it? How is that even possible?
The IP network guys have strong restrictions over boxes talking to each
other over ethernet
the SAN network guys have a big, flat, fiberchannel network with no
controls.
As a result, two boxes that can't talk to each other on the network can
setup a "covert channel" to bypass the access policies and talk to each
other over the SAN.
Knowing Andrew, I very much doubt that what he's trying to do is intended
to be bad, but the exact same thing that he is doing is what a bad guy
would do to bypass your network access policies.
David Lang
_______________________________________________
Tech mailing list
[email protected]
https://lists.lopsa.org/cgi-bin/mailman/listinfo/tech
This list provided by the League of Professional System Administrators
http://lopsa.org/
