[Techtalk] DMZs, etc.
Michelle Murrain
tech at murrain.net
Mon Dec 10 16:39:28 EST 2001
At 03:02 PM 12/10/2001, you wrote:
>Just a spot of theory here:
>
>The reason for putting servers in a DMZ and having a separate zone for
>internal boxes is that servers run extra software and have extra ports
>open. This makes them more vulnerable than workstations.
>
>NOT having a firewall between the servers and the workstations makes the
>workstations (and the local traffic) almost as vulnerable as the
>servers. This is usually considered A Bad Thing - at least in commercial
>situations.
OK, it sounds like it makes the most sense to set up the DMZ, and live with
the extra heat and cost. I just wish that someone would come up with really
cheap (<$500) linux-based network appliances that don't take much
electricity, or generate much heat. Anyone heard of such a thing?
.Michelle
---------------------------------------
Michelle Murrain, Ph.D.
tech at murrain.net
AIM:pearlbear0
http://www.murrain.net/ for pgp public key
More information about the Techtalk
mailing list