On Thursday 12 July 2007, Theo v. Werkhoven wrote:
On Thursday 12 July 2007, Theo v. Werkhoven wrote:
Of course, at $DAYJOB, I do /not/ let company PCs have unrestricted access to high ports on the outside, better safe than sorry with Windows PCs, dealing with company data and passwords etc...
Really? So something as simple as web browsing requires all sorts of proxying, and every internet oriented package needs to be proxied or SOCKSified?
No proxy, just a limited set of ports that I allow to connect to, like web, pop3(s), imap(s), vpn, ftp etc., and some special ports for accounting and airline reservation packages (but only to and from specific hosts).
Ok, I misread your post as limiting the high ports that software could use to access remote sites. You are limiting remote ports (targets). Of course lots of nasty things just port 80..... -- _____________________________________ John Andersen -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org