Conversation:
Notices
-
Joshua Judson Rosen (rozzin)'s status on Thursday, 12-Jun-2014 09:18:01 EDT 
Joshua Judson Rosen
Why is important for !security to block #ping? Because #dogma? http://www.lacunae.org/ping-why-do-i-need-to-block-ping -
Former Bob Jonkman -- Please use the new server at https://gs.jonkman.ca (bobjonkmanformer)'s status on Thursday, 12-Jun-2014 11:06:26 EDT 
Former Bob Jonkman -- Please use the new server at https://gs.jonkman.ca
I allow the network facing router to respond to ping, but the pings dont pass through the firewall. Other services (web, mail, XMPP) are already responding to requests, so it's not like the IP address is undiscoverable. Ping provides a valuable diagnostic tool. Joshua Judson Rosen repeated this. -
Joshua Judson Rosen (rozzin)'s status on Thursday, 12-Jun-2014 14:53:37 EDT
Joshua Judson Rosen
Is there a rationale for having a firewall block nodes inside from *pinging out*? -
Former Bob Jonkman -- Please use the new server at https://gs.jonkman.ca (bobjonkmanformer)'s status on Friday, 13-Jun-2014 12:30:30 EDT
Former Bob Jonkman -- Please use the new server at https://gs.jonkman.ca
#Best_Practices would say "Block everything, allow only what's necessary" implying that outbound ping should be blocked. In practice, I allow outbound ping. Philosophically, I'm in favour of an #OpenWeb, so I'm inclined to allow outbound everything. However, realities pervail (including $EMPLOYER policies), so I don't necessarily preach what I practice. Joshua Judson Rosen repeated this. -
Joshua Judson Rosen (rozzin)'s status on Friday, 13-Jun-2014 16:31:53 EDT
Joshua Judson Rosen
"Not preaching what you practice" sounds preferable to "not practicing what you preach", if only because "not preaching" sounds good. I wish more people would practice that ☺ ladyj likes this.
-
All Hacker Poesy content and data are available under the