In response to A. Padgett Peterson:
> >P.S. I don't like posting anonymously, but I am sure most of you
> > understand. :-)
> a) (personal opinion) If I felt a need to be anonymous, I'd find another
Well, that wasn't too fair. Not all companies are like yours, nice and
secure. We all have to start some where.
> b) If you do not think that the overseas I'net links are not monitored
> and gozintas and gozoutas matched up, you are not paranoid enough for
> network security 8*).
I don't claim to be secure through obscurity, nor do I kid myself that I
am safe because I posted anonymously, but if I choose to post anonymously
to give myself a false sense of security, then that is my prerogative.
As far as being "not paranoid" enough, when there are so many issues to
confront, one cannot loose site of the big picture. Yes, I know there are
ways to break sendmail. We have seen it ourselves. But when the front door
is wide open, planning is crucial to secure the system in an efficient and
highly effective manner. It has taken me one year to get management to listen
to me and the fact I got over that political hurdle is a great milestone.
(bureaucracy reigns in this company).
Actually, I posted to this list because I was
interested in the expertise of those who post to this list. I read so much on
this topic, but it doesn't mean I know how to do it all, nor will I profess
that I do.
The issue of network performance, especially through a firewall is of great
concern here. I have to convince a lot of people we can get ample & sufficient
network performance through the firewall. If I can't, then we might never
see security on the network level.
The biggest reason why I posted the question here is that I have already asked
several firewall vendors this question and, basically, they are not sure of
network performance through a firewall above T1. That is why I post the question
here. I felt it was harmless and I don't see a problem with posting it
I am not interested in getting into a philosophical discussion about posting
anonymously. I am solely interested in getting some opinions about the
complicated issues that might smother our ability to secure our network.
To find out more about the anon service, send mail to help @
Due to the double-blind, any mail replies to this message will be anonymized,
and an anonymous id will be allocated automatically. You have been warned.
Please report any problems, inappropriate use etc. to admin @