Great Circle Associates Firewalls
(June 1996) 		 
Indexed By Date: [Previous] [Next] Indexed By Thread: [Previous] [Next]
Subject: RE: NT firewalls & NOS admins
From: Michael Dillon <michael @ memra . com>
Organization: Memra Software Inc. - Internet consulting
Date: Tue, 4 Jun 1996 12:16:30 -0700 (PDT)
To: Russ <Russ . Cooper @ RC . Toronto . on . ca>
Cc: "Firewalls @ GreatCircle . COM" <Firewalls @ GreatCircle . COM>
In-reply-to: <01BB519B . 75874280 @ rwcooper . rc . toronto . on . ca> 
On Mon, 3 Jun 1996, Russ wrote:

> It never ceases to amaze me how some Unichs seem to think that only UNIX 
> experience is viable when it comes to working with an Internet connection. 

Who said that? Anyway, experience comes from doing it and since UNIX and
the Internet have been around a lot longer than NT it's not surprising
that most of the people with solid time-tested Internet experience have a
UNIX background. 

> Some may be surprised to find out that TCP/IP has been included in NT since 
> it was first released, and its been around for quite some time in DOS or 
> Windows. 

Most UNIX network admins have been attaching DOS boxes, Macs and Windows
machines via TCP/IP to UNIX servers for eons.

> One doesn't need a UNIX degree to know how IP works, or how the 
> Internet works, for that matter.

I beg to differ. It only takes a while to get a basic familiarity with IP
and the Internet but while I didn't get a degree in IP I certainly did
spend an equivalent amount of time and effort in studying and learning the
finer details.

> I know quite a few UNIX SQL administrators 
> who wouldn't know how to configure their inetd if it bit them in the ass.

Doesn't surprise me. Why should a database administrator need to know
anything about configuring the network. Managing the company's central
mission-critical database is important enough on its own.

> - More security breaches occur internally than happen via an Internet 
> connection.

This is a good point and some people are looking at ways to use firewall
technology internally to protect against this.

> - Most companies do not have a security policy of any kind.

Unfortunately...

> Then there are the *majority* of companies who 
> neither need, nor can afford, to have either, yet still want to be part of 
> the 'net.

Right now these folks tend to be installing firewalls that are recommended
to them by a consultant (or their ISP) and are maintained by the
consultant (or their ISP).

> Surely you jest...like IP is rocket science or something...sheesh. I've 
> never administered a UNIX system in my life, does it show that much?

When you are talking about firewalls, then yes, IP *IS* rocket science.
If you just mean setting up a few Windows or Macintosh or OS/2 desktops to
connect to the net, then no, there is no rocket science.

Michael Dillon                                   ISP & Internet Consulting
Memra Software Inc.                                 Fax: +1-604-546-3049
http://www.memra.com                             E-mail: michael @
 memra .
 com
References:
Indexed By Date Previous: Re: WWW proxy to cut off Java.
From: nreadwin @ london . micrognosis . com (Neil Readwin)
Next: Firewalls performance
From: "Marcus J. Ranum" <mjr @ clark . net>
Indexed By Thread Previous: RE: NT firewalls & NOS admins
From: Russ <Russ . Cooper @ RC . Toronto . on . ca>
Next: Cross Realm Kerberos/DCE Proxy, NAT, UDP
From: Adam Safier <asafier @ explorer . csc . com>
Google
 
Search Internet Search www.greatcircle.com