Firewalls: Re: Allow SSL through a firewall?

Firewalls
(January 1996)

Indexed By Thread: [Previous] [Next]

Subject:	Re: Allow SSL through a firewall?
From:	peter @ nmti . com (Peter da Silva)
Date:	Fri, 12 Jan 1996 16:34:08 -0600 (CST)
To:	jclark @ picard . nib . com (Jay R. Clark)
Cc:	dwl @ hnc . com, firewalls @ GreatCircle . COM
In-reply-to:	<Pine . LNX . 3 . 91 . 960112105751 . 6501A-100000 @ picard . nib . com> from "Jay R. Clark" at Jan 12, 96 11:02:04 am

> In our case we accumulate data from callers for our clients, the data is 
> confidential/propriatary, if we leave it out on the sacrificial machine 
> we run the risk of letting 4th parties obtain it and create one hella 
> liablility problem for ourselfs and for our clients.

On the other hand, a web server is a helluva complex thing to have behind the
firewall. What if someone compromises it (and I've seen some pretty horrible
holes in CGI scripts!)???

Best would be to put it on a separate firewalled subnet off your lobby, so
if someone breaks it they don't get carte blanche on your internal net.

References:

Re: Allow SSL through a firewall?
From: "Jay R. Clark" <jclark @ picard . nib . com>

Indexed By Date	Previous:	Re: "Title for Firewall Admin? From: peter @ nmti . com (Peter da Silva)
Indexed By Date	Next:	Re: "Title for Firewall Admin? From: "Paul D. Robertson" <proberts @ clark . net>
Indexed By Thread	Previous:	Re: Allow SSL through a firewall? From: "Jay R. Clark" <jclark @ picard . nib . com>
Indexed By Thread	Next:	Re: Allow SSL through a firewall? From: Rick Smith <smith @ sctc . com>