[CentOS] courier mail for Centos
Les Mikesell
lesmikesell at gmail.com
Thu Dec 6 16:24:19 UTC 2012
On Thu, Dec 6, 2012 at 10:13 AM, Robert Moskowitz <rgm at htt-consult.com> wrote:
>
>>> Filtering Inbound Firewalls are generally useless if the user of the
>>> system doesn't know what they're doing. A lot of intrusions these days
>>> are the result of inbound policy permitted traffic in causing someone to
>>> initiate an outbound connection that gets them hacked.
>>
>> And you expect someone to be better at stopping this with iptables and
>> a 'howto' than dedicated hardware and vendor training/support?
>
>
> And outbound rule writing is very hard, as you have to sniff out traffic
> many times to figure out why an app is failing and then write a rule to
> allow that app out.
More like impossible in the general case, although you can always get
any specific case to work if you spend enough time at it. But to
catch some of the most likely known problems you need packet
inspection to at least the level of URL filtering.
--
Les Mikesell
lesmikesell at gmail.com
More information about the CentOS
mailing list