Firewall Policy Configuration Myth Examined

Risk Management and Vulnerabilities Security Policy Management

by Sam Erdheim Sep 27, 2012

Recently, we posted a blog on firewall misconfiguration horror stories. One of the great security myths is that inbound traffic is more dangerous than outbound traffic. This is based on the false notion that
unlike traffic from outside the network flowing in, traffic originating
from the inside the network is secure. But traffic from inside the
network can include, for example, bots that are transmitting sensitive
information. In this latest firewall management 201 video, Professor Avishai Wool shares some of his latest research, in which he identifies the mishandling of outbound traffic (E.g. allowing Outbound SMTP
from over 256 IP addresses) as the most common firewall configuration issue.

Enjoy!

< Previous

Have Your Cake AND Eat It Too with Tighter Control and Increased Access

Next >

Forget the Fire Drill – Understanding Your Security Policy and Leveraging Situational Awareness to Defend Against APTs

Subscribe to Blog

Receive notifications of new posts by email.

Categories

Firewall Policy Configuration Myth Examined

Have Your Cake AND Eat It Too with Tighter Control and Increased Access

Forget the Fire Drill – Understanding Your Security Policy and Leveraging Situational Awareness to Defend Against APTs

Subscribe to Blog

Our Bloggers

Professor Wool Educational Videos

Best Practices for Amazon Web Services (AWS) Security

Resources

Network Security Policy Management Lifecycle

Latest Tweets

Archives

Posts

Compliance Made Easy: How to improve your risk posture with automated audits

Removing insecure protocols In networks

Network segmentation best practices (how to implement)

CSPM importance for CISOs. What security issues can be prevented\defended with CSPM?

AlgoSec and Zero-Trust for Healthcare

Introduction to Cloud Risk Management for Enterprises