Paul Fertser <fercer...@gmail.com>:
> Hello Eric,
>
> On Tue, May 24, 2016 at 03:29:34PM -0400, Eric S. Raymond wrote:
> > Now check your security. You need to be behind a NAT box or firewall
> > for the next several steps.
>
> Sorry to chime in again with my nitpicks but this particular wording
> seems to make an impression that NAT is somehow similar to firewall
> security-wise. Though it's technically correct that in practice NAT
> might complicate an attack in a manner not unlike firewall's, wording
> like this is worrysome.
>
> Security must be conscious, not accidental, not come as a side
> effect. NAT was never meant to be a security device so it shouldn't be
> advertised as such. So if you aim to educate your users properly,
> IMHO talking about NAT here is not appropriate. YMMV.
I'll take a patch.
--
<a href="http://www.catb.org/~esr/";>Eric S. Raymond</a>
_______________________________________________
devel mailing list
devel@ntpsec.org
http://lists.ntpsec.org/mailman/listinfo/devel
