[afnog] https through NAT

Phil Regnauld regnauld at nsrc.org
Thu Oct 11 15:29:13 UTC 2012


Mark Tinka (mark.tinka) writes:
> 
> But it doesn't matter, the security is in the network :-).

	I've got a large metal tower to sell you in Paris, if you believe that :)

	Bill Cheswick said, years ago: enterprise networks are "A crunchy shell
	around a soft, chewy center". It's best to start assuming that you ARE
	insecure and potentially compromised, and work from there, and secure all
	the points of access, which includes applications.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 535 bytes
Desc: not available
URL: <http://afnog.org/pipermail/afnog/attachments/20121011/681f201d/attachment.sig>


More information about the afnog mailing list