On Thu, 2010-05-20 at 16:09 -0400, Shawn Bakhtiar wrote: > Back to the original issue. > > I still say having firewalls from higher security zones to lower ones, does > not make sense. Security is only valid when it is INBOUND. Outbound security > is no security at all, just a pain for your users. > Although this is way off topic for this group here's a couple of basic scenarios for you...
1. How can you stop an infected PC on your network talking to it's controller 2. How can you stop an infected PC on your network spewing spam to the world+dog? ...in a simple and controllable manner ( and yes, you will always get infected PCs on your internal network ). Point 2. above is a no-brainer - just stop outgoing traffic on port 25 from all but your mail servers; point 1. takes a bit more work. Steve -- Steve Holdoway <st...@greengecko.co.nz> http://www.greengecko.co.nz MSN: st...@greengecko.co.nz Skype: sholdowa
_______________________________________________ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml
