On 2023-05-02 13:52, Per Jessen wrote:
Carlos E. R. wrote:
On 2023-05-02 13:02, Per Jessen wrote:
I can not understand not running firewalls in all machines.
Yet you seem unable or (even unwilling?) to explain your reasons for doing so, on a trusted network.
Because to me it is the natural thing to do. It is you who should explain why not!
I'm sorry, I thought I had. Because they are trusted machines on a trusted network.
In your case, you obviously don't trust your own network, which is a bit odd, but you know best.
I don't trust the router, and I was right. I don't have a separate network for guests. Anything can go rogue one day. I have some machines with Windows. Including virtual ones. By the way, Windows firewall is ON by default. <https://security.stackexchange.com/questions/225658/does-it-make-sense-to-put-a-firewall-within-a-lan-to-protect-sensitive-informati>
In stark contrast, I am perfectly happy to explain why I don't and never have - because "all machines" on my trusted network are trusted. If they weren't, the network wouldn't be trusted.
Any machine can eventually go rogue.
Maybe that is natural state of things to you, but not to me. My machines do exactly what I tell them.
Till they don't. There can come a trojan or virus one day. I haven't had one since 1987 or thereabouts, but who knows.
In an enterprise environment, most successful attacks come from inside.
Those are socially engineered attacks. A firewall is not intended to nor capable of dealing with those.
Depends. -- Cheers / Saludos, Carlos E. R. (from 15.4 x86_64 at Telcontar)