[Dshield] MS Patching side-effects

Valdis.Kletnieks@vt.edu Valdis.Kletnieks at vt.edu
Thu Aug 18 19:45:04 GMT 2005


On Thu, 18 Aug 2005 14:40:20 EDT, David Taylor said:
> control based on IP/Subnet, hostname from port/to port, etc.  Using IPSEC
> you can place a virtual IP/Packet Filter around all of your workstations
> which would block most of these attacks from hosts outside the network as
> well as hosts from within the network.

Just remember, kiddies - this only delays the devastation until the first
infected laptop gets inside the perimeter.

Having said that, it's still a good idea to implement it anyhow, as long as
you remember what its limitations are....

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 226 bytes
Desc: not available
Url : http://www.dshield.org/pipermail/list/attachments/20050818/9223868f/attachment.bin


More information about the list mailing list