Firewalls: Suggestion for firewall for deliberately insecure company?

Firewalls
(December 1994)

Indexed By Thread: [Previous] [Next]

Subject:	Suggestion for firewall for deliberately insecure company?
From:	jet @ abulafia . genmagic . com (J. Eric Townsend)
Date:	Sat, 17 Dec 94 10:53:07 -0800
To:	Jay Vassos-Libove <libove @ libove . mindspring . com>
Cc:	firewalls-digest @ GreatCircle . COM
In-reply-to:	<199412171714 . MAA02224 @ libove . mindspring . com>

Jay Vassos-Libove writes:
 > Do any of you folks have suggestions for a particular firewall 
 > product/service for a company which deliberately has no security
 > inside its own borders, and wants to remain that way, but also wants
 > to have access to the outside network?

check the archive for discussions of the "crunchy shell, soft insides"
model.

Basically, your users want to get to the net from inside, this can be
achieved with a socks host.

If you simply do not allow remote access, especially from the internet
(block ports with a router), you've just saved yourself a huge amount
of security work.  (Use dedicated lines for remote access (dial back
if you're cheap).)

--eric

References:

Suggestion for firewall for deliberately insecure company?
From: Jay Vassos-Libove <libove @ libove . mindspring . com>

Indexed By Date	Previous:	Suggestion for firewall for deliberately insecure company? From: Jay Vassos-Libove <libove @ libove . mindspring . com>
Indexed By Date	Next:	information on NetGate packet filtering firewall From: charisse @ SmallWorks . COM (Charisse Castagnoli)
Indexed By Thread	Previous:	Suggestion for firewall for deliberately insecure company? From: Jay Vassos-Libove <libove @ libove . mindspring . com>
Indexed By Thread	Next:	Re: Suggestion for firewall for deliberately insecure company? From: Marcus J Ranum <mjr @ tis . com>