lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [thread-next>] [day] [month] [year] [list] 
Date: Tue, 22 Sep 2009 22:20:07 -0600
From: Chris <r0ck@...ramail.com>
To: "john s" <rwnin.security@...il.com>,
	"G. D. Fuego" <gdfuego@...il.com>
Cc: "full-disclosure@...ts.grok.org.uk" <full-disclosure@...ts.grok.org.uk>
Subject: Re: Dumb question: Is Windows box behind a router
 safe ?

Seriously?  This is some home user who has nary a clue about how to use Automatic Updates...and you want to teach him about egress filtering?

I'd rather hear about n3td3v or whatever the fuck his name is.

> ----- Original Message -----
> From: "john s" <rwnin.security@...il.com>
> To: "G. D. Fuego" <gdfuego@...il.com>
> Cc: "full-disclosure@...ts.grok.org.uk" <full-disclosure@...ts.grok.org.uk>
> Subject: Re: [Full-disclosure] Dumb question: Is Windows box behind a router	safe ?
> Date: Tue, 22 Sep 2009 16:15:20 -0500
> 
> 
> On Tue, Sep 22, 2009 at 4:09 PM, G. D. Fuego <gdfuego@...il.com> wrote:
> >
> > On Sep 22, 2009, at 3:18 PM, john s <rwnin.security@...il.com> wrote:
> >
> >> On Tue, Sep 22, 2009 at 2:01 PM, G. D. Fuego <gdfuego@...il.com> wrote:
> >>>
> >>> On Sep 22, 2009, at 2:29 PM, Steven Anders <anderstev@...il.com> wrote:
> >>>>
> >>>> I have always thought that having a computer behind the router
> >>>> (since router has firewall) is generally safe, but I would love to
> >>>> hear insights or thoughts.
> >>>
> >>> Nope.  A firewall should protect you against inbound connection
> >>> attempts only.
> >>>
> >>
> >> A well configured firewall segregates and monitors ingress and egress
> >> traffic on a network segment.  Controlling outbound connectivity
> >> doesn't stop internal host app-level exploitation, but it can mitigate
> >> post-exploit damages and can also possibly provide an alert to the
> >> compromise...
> >
> > How many home users do you know with egress filtering enabled?
> >
> 
> Is this a security mailing list? ;)
> 
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/

>







-- 
_______________________________________________
Surf the Web in a faster, safer and easier way:
Download Opera 9 at http://www.opera.com

Powered by Outblaze

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ