Yes, I remember the discussion,

Yes, I remember the discussion, and I think Dave Winer is 'not getting it.' As Ken MacLeod says (and I echoed in the conversation):

"As a reminder, firewalls are only a perimeter tool, site security is a combination of perimeter, network, external connections, host, application, and user education issues."
This is called, in the FIREWALL FAW calls this "Defense in Depth" which is what I think is the best. Do not rely on every machine being secure cause users are stupid and will let crap in that you just can't help. On the other hand, perimeter defense will similarly, as Winer points out, let viruses and other nasties in.

As in most things, a heterogenous defense is best.

About this Entry

This page contains a single entry by published on May 9, 2000 10:34 AM.

Damm! I forgot to was the previous entry in this blog.

Tiki Artist a Perl/Tk Rapid is the next entry in this blog.

Find recent content on the main index or look in the archives to find all content.

Monthly Archives

Pages

Powered by Movable Type 5.2.2