We wanted our firewall to authenticate all users before they can get out on
the Internet. Everyone must enter their ID and password for FTP, Telnet,
HTTP, etc. Now for the interesting part. There is no authentication
required for Gopher!!!! Go figure!!!! Any old ya-hoo who sits down at a
system can Gopher all day long without us knowing who they are. They can
even retrieve files!!!!
I'm being told by ANS that our firewall is 'performing as designed' and that
if I see this as a problem, they will "see what they can do - time
permitting." Some of us around here don't see this as a problem. Others
are coming unhinged starting to question the soundness of ANS.
Am I being a little panicky or can I trust ANS that they are not allowing
stuff to come in as easily as they are stuff going out? I would appreciate
anyones feelings/experiences. Thanks - s2
=========================================================================
_/_/_/ _/_/_/ _/_/_/ _/ _/ _/_/_/ Butterworth Hospital
_/ _/ _/ _/ _/ _/ 100 Michigan N.E. MC-64
_/ _/ _/_/ _/ _/ _/_/ Grand Rapids, MI 49507
_/ _/ _/ _/ _/ _/ Steve Stamper 616-732-8866
_/_/_/ _/ _/_/_/ _/ _/_/_/ sstamper @
bw .
brhn .
org
=================== "It is a good day to die." =========================
|
|
