[BBLISA] Firewall question #2
miah
jjohnson at sunrise-linux.com
Fri Mar 12 01:25:15 EST 2004
I hope your using some sort of token based auth then, because a keyboard sniffer will ruin all of that.
-miah
On Fri, Mar 12, 2004 at 11:14:09AM -0500, A Page in the Life of ... wrote:
> I think, with all due respect to the arguement, that BOTH should be the
> answer.
>
> Having both a crunchy outside AND a crunchy center should be the call of
> the day.
>
> You also should encrypt all your traffic. SSH to other machines, mail
> should be using STARTLS, both for authenticaton, and to encrypt content.
> IM traffic should be encrypted end-to-end, CVS should be used to share
> documents, and done over SSH, et al.
>
> The less there is to sniff, and the less there is unauthenticated, the less
> there is for the virus folks to play with. If you have suspenders and a
> belt, it takes a much more traumatic event to pants you.
>
> -dkap
>
> P.S. There are two levels of paranoia. Complete, and insufficient.
>
>
> _______________________________________________
> bblisa mailing list
> bblisa at bblisa.org
> http://www.bblisa.org/mailman/listinfo/bblisa
>
More information about the bblisa
mailing list