publications concerning port forwarding

To:	pen-test <pen-test@securityfocus.com>
Subject:	publications concerning port forwarding
From:	"Jason L. Ellison" <infotek@datasync.com>
Date:	Tue, 10 Apr 2007 17:12:59 -0500 (CDT)
Delivered-to:	sp-com-lists@consult.net
Delivered-to:	pentest-list2@consult.net
Delivered-to:	mailing list pen-test@securityfocus.com
Delivered-to:	moderator for pen-test@securityfocus.com
List-help:	<mailto:pen-test-help@securityfocus.com>
List-id:	<pen-test.list-id.securityfocus.com>
List-post:	<mailto:pen-test@securityfocus.com>
List-subscribe:	<mailto:pen-test-subscribe@securityfocus.com>
List-unsubscribe:	<mailto:pen-test-unsubscribe@securityfocus.com>
Mailing-list:	contact pen-test-help@securityfocus.com; run by ezmlm
Resent-date:	Tue, 10 Apr 2007 21:09:06 -0600 (MDT)
Resent-from:	pen-test-return-1078483897@securityfocus.com
Resent-message-id:	<20070411030906.AFA9715EFD8@outgoing2.securityfocus.com>
Resent-sender:	listbounce@securityfocus.com
Sender:	listbounce@securityfocus.com

List,

  I'm currently doing work for a large company as a consultant.  Another
consultant is installing a MS Exchange server and is now requesting for me
to forward ports on the PIX from the Internet to internal servers.  I have
explained that port forwarding is very risky but they don't seem to
understand.  Are there any publications that can be used to show the link
between port forwarding and bad security posture.  I've scoured and found
nothing (maybe its to obvious to document?)...

-Jason Ellison

------------------------------------------------------------------------
This List Sponsored by: Cenzic

Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.

http://www.cenzic.com/products_services/download_hailstorm.php?camp=701600000008bOW
------------------------------------------------------------------------

<Prev in Thread]	Current Thread	[Next in Thread>
publications concerning port forwarding, Jason L. Ellison <= Re: publications concerning port forwarding, Ben Nell Re: publications concerning port forwarding, vtlists Re: publications concerning port forwarding, Brendan Murray RE: publications concerning port forwarding, Wiedemann, Adrian RE: publications concerning port forwarding, Jason L. Ellison RE: publications concerning port forwarding, Wiedemann, Adrian Message not available RE: publications concerning port forwarding, Wiedemann, Adrian RE: publications concerning port forwarding, Jason L. Ellison Re: publications concerning port forwarding, Jamie Riden RE: publications concerning port forwarding, Jason Rahl

Previous by Date:	Nessus-Nmap command line, José Luis Jerez
Next by Date:	Re: Boot floppy, Clint P. Garrison MBA, CISSP, QSA
Previous by Thread:	Nessus-Nmap command line, José Luis Jerez
Next by Thread:	Re: publications concerning port forwarding, Ben Nell
Indexes:	[Date] [Thread] [Top] [All Lists]