[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Gnumed-devel] thanks re mimencode

From: Karsten Hilbert
Subject: Re: [Gnumed-devel] thanks re mimencode
Date: Sun, 12 May 2002 14:40:25 +0200
User-agent: Mutt/

> Does that include firewall servers, e.g. which say receive in http  some
> embedded protocol ( e.g. soap) , which does some validation of received 
> requests, then reconstructs requests , then forwards to the real server,
> which is on a different network ( the intranet lan) .
> Requests to the proxy firewall on the postgresql port aren't forwarded,
> but could be logged. 
Essentially this is a cleverly conceiled variant of the
three-tier system Horst talked about earlier thinly veiled in
the cloth of security proxying.

So, yes, you could filter all incoming traffic and apply
arbitrary rules to it but, no, you can't stop someone with
physical access to the proxied postgresql server from easily
rooting the box.

GPG key ID E4071346 @
E167 67FD A291 2BEA 73BD  4537 78B9 A9F9 E407 1346

reply via email to

[Prev in Thread] Current Thread [Next in Thread]