-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 The Saturday 2008-03-29 at 17:33 +0100, Per Jessen wrote:
Carlos E. R. wrote:
The Saturday 2008-03-29 at 15:39 +0100, Per Jessen wrote:
If you're on a LAN, you don't really need a firewall, do you?
Of course we do. The worst attacks come from inside.
Carlos, you're joking, right? I have zero attacks from the inside, but plenty from the outside. In the last week, just one of my systems had 126062 ssh attacks from 41 unique IPs.
No, I'm not joking. It is not the same type of attack, and you may not detect it as "attack". It is worst because they have internal knowledge. It is also worst because thinking that the internal network is safe makes people trusty, leaving the machines defenceless. And consider that if the internal network has thousands of computers, it is not easy to know everybody. Then, there is the other kind: some outside chap managed somehow to subvert an internal low security computer, and uses it to atack other high interest targets, from the inside. It can also be a virus: a windows machine with a virus atacking everybody in sight. Or... imagine an internal server catching a worm, and this trying to spread... There are many scenarios. - -- Cheers, Carlos E. R. -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.4-svn0 (GNU/Linux) iD8DBQFH7oDotTMYHG2NR9URAlRjAJ9h+bSVMFbka7jtic/wveOJBDMfwACdGc9F CNG/3Qj9CVbxLoiLCiqQpB0= =lrGU -----END PGP SIGNATURE----- --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-factory+help@opensuse.org