Path: utzoo!utgpu!news-server.csri.toronto.edu!cs.utexas.edu!uunet!mcsun!ukc!icdoc!sot-ecs!tjc
From: tjc@ecs.soton.ac.uk (Tim Chown)
Newsgroups: comp.protocols.tcp-ip
Subject: Re: well-behaved firewalls
Message-ID: <8310@ecs.soton.ac.uk>
Date: 27 Jun 91 09:24:40 GMT
References: <BOB.91Jun17182958@volitans.MorningStar.Com> <1991Jun25.003609.22406@pa.dec.com> <tr.677973063@samadams> <113425@sgi.sgi.com>
Organization: University of Southampton, UK
Lines: 16

In <113425@sgi.sgi.com> rpw3@rigden.wpd.sgi.com (Rob Warnock) writes:

>Organizations which prefer, for whatever reasons, to have a more "homey"
>atmosphere within their "walls" (internal internet) tend to prefer the firewall
>approach. It allows the conveniece of, say, open guest accounts on internal
>systems without worrying about uninvited outside "guests". Yet a "well-behaved"
>firewall -- together with a few specially-secured servers -- still allows a
>controlled degree of sharing and communication. (E.g., my house allows the
>postal deliveryperson to drop mail through the slot, allows the gas meter
>to be read, and allows garbage to be carted away -- all without my being
>there to approve it.)
 
The problem comes with remembering to shut all the windows ... ;-)

Tim
--