I didn't get any flame for stating; a dual-subnet attached NT webserver
was an O.K. solution, where one can't get past the TCP/IP NT system
onto a NETBEUI/IPX network unless the webserver had access to internal
systems. Hmm.
Let me make another statement:
"If systems in a company's network use challenge/response authentication
and password encryption for all connections (such as where NT is headed),
there isn't justification for a firewall anymore. Traditional Firewalls
are designed for UNIX environments where plaintext or unprotected
applications live, such as telnet/ftp/smtp/popmail/xwindows."
Hmm. Maybe next-generation firewalls will need to look at application/
RPC transactions that desktop/server PCs use instead of just network port
number traffic.
(opinin ping)
Bill Stout
_______________________________________________________________________________
Senior Systems Admin NT/Backoffice/Solaris/WWW-Db/Firewalls/Cisco/VM-UNIX/VMS
Hitachi Data Systems 408-970-4822 --- Disclaimer: I speak only for myself
Follow-Ups:
|
|
