Security (was RE: Why NOT the web?) -- MIDRANGE-L

On Thu, 30 Dec 2004, Walden H. Leverich wrote:

If you don't have a firewall blocking all but port web traffic to a web
server, you should be taken out back and shot. If you are browsing the
web from a server you should be taken out back and shot. If you are
running outlook on a server, you should be taken out back and shot. If
you haven't followed best-practices for locking down IIS and running
(and re-running) baseline security analysis you should be taken out back
and shot!


Best security practices for IIS is to remove it and use something else.

I also ask myself these questions:
  Why should browsing the web be so dangerous?
  Why should checking my email be so dangerous?

If a machine is so crappy that these simple tasks cannot be performed safely then get rid of that machine. If I am working to resolve some issue on a server and the documentation is online are you telling me I need separate machine to read the online documentation? That's ridiculous. As I see it, anyone who introduces such inept machines into my network needs to be taken out back and shot.

James Rich

It's not the software that's free; it's you.
        - billyskank on Groklaw

This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.