lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <20040425134626.GA19796@ics.muni.cz>
From: krajicek at ics.muni.cz (Ondrej Krajicek)
Subject: Firewall solution for Windows 2003 Server

On Sat, Apr 24, 2004 at 09:48:01PM +0100, Lee wrote:
> Are you suggesting that the win2003 server will be the point of contact for
> the Internet? is this a wise choice or just a product of your setup?

It is not, as you might have noticed, I work for a university. The servers
I have on my mind are completely inaccessible from outside our
'private' network. I need another measure of protection to eliminate
access to services which could not be disabled (ports: 135, 147, 139
and 445) and to have some reliable logging facility. We have
another boxes to do the firewall/router work and they really do not
run Windows... :).

I do not plan to use Windows servers to do firewall, routing/nat work,
it seems to me as a really silly idea ;).

> I dont like application layer firewalls, they fill me with dread, yes the
> displays are nice , but that doesnt mean it cant be acheived elsewhere.

So do I.

Best Regards,

Ondra

+>>>-----------------------------------------------------------------+
|Ondrej Krajicek                                                 (-KO|
|Institute of Computer Science, Masaryk University Brno, CR          |
|http://isildur.ics.muni.cz/~ondra               krajicek@....muni.cz|
+--------------------------------------------------------------------+


Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ