[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Have they stopped teaching Defense in Depth?

Subject: Have they stopped teaching Defense in Depth?
From: jra at baylink.com (Jay Ashworth)
Date: Wed, 16 Nov 2011 08:36:21 -0500 (EST)
In-reply-to: <CAAAwwbUqkxszsC8QHkXdDFX7WQRFqLcyBv9qURARPnUaa3d7gQ@mail.gmail.com>

----- Original Message -----
> From: "Jimmy Hess" <mysidia at gmail.com>

> Or, the attack is against a legitimate user's outbound connection, for example:
> a user behind the firewall connects to a web site, a vulnerability
> in their browser is exploited
> to install a trojan -- the trojan tunnels to the attacker over an
> outgoing port that is allowed on the firewall.

Oh, certainly; I have lots of web browsers running on my servers.

All The World Is Not A Workstation, guys.

Cheers,
-- jra
-- 
Jay R. Ashworth                  Baylink                       jra at baylink.com
Designer                     The Things I Think                       RFC 2100
Ashworth & Associates     http://baylink.pitas.com         2000 Land Rover DII
St Petersburg FL USA      http://photo.imageinc.us             +1 727 647 1274

Follow-Ups:
- Have they stopped teaching Defense in Depth?
  - From: leigh.porter at ukbroadband.com (Leigh Porter)
- Have they stopped teaching Defense in Depth?
  - From: Valdis.Kletnieks at vt.edu (Valdis.Kletnieks at vt.edu)

References:
- Have they stopped teaching Defense in Depth?
  - From: mysidia at gmail.com (Jimmy Hess)

Prev by Date: Have they stopped teaching Defense in Depth?
Next by Date: Have they stopped teaching Defense in Depth?
Previous by thread: Have they stopped teaching Defense in Depth?
Next by thread: Have they stopped teaching Defense in Depth?
Index(es):
- Date
- Thread