 |
Post AsxhUffBZqSbMS4SlE by [email protected] |
 |
More posts by [email protected] |
|
Post #AsxR7pzBQwUfRtVzRg by [email protected] |
|
1 likes, 3 repeats |
|
|
|
"Relying on NAT for security is like relying on your underwear to stop a b… |
|
|
|
Post #AsxRZXx84dejd1lblI by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@mwl I'd trust the underwear more though ngl... |
|
|
|
Post #AsxS9JwRdz0ObCVNdA by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@mwl I've always liked Hugh Daniel's "If you're NAT on the net… |
|
|
|
Post #AsxSruW917skmKSv0y by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@mwlI am not sure why anyone would consider NAT a security protocol? It is Netw… |
|
|
|
Post #AsxSrudwY87XAW79Ae by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@unusnemo it offered minimal protection for a couple years in the 90s. |
|
|
|
Post #AsxWYTsoDdAiUJ3cGm by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@mwl NAT requires connection tracking and by its nature prevents incoming conne… |
|
|
|
Post #AsxgkrGW6nFW1Wgf1E by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@mwl @unusnemo NAT and CGNAT need to die #IPv6 |
|
|
|
Post #AsxgmmVskRFPrdn6zQ by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@mwl No hate from me on this subject |
|
|
|
Post #AsxgpY2P1Xrlq1Jzv6 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@unusnemo @mwl No one can send packets directly to arbitrary ports to machines … |
|
|
|
Post #AsxhBE8vflfUVSiBge by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@mwlBack when IP Masquerading may have been considered protection I am sure. No… |
|
|
|
Post #AsxhUffBZqSbMS4SlE by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@[email protected] Waiting for the section about VLAN then! |
|
|
|
Post #Asxkxo3Tkt6BeG1CPA by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@divzilla ah, there it is.Nope, sorry. Not a security measure. Not even a mitig… |
|
|
|
Post #AsxlO7hxJDaW86V3R2 by ltning |
|
0 likes, 0 repeats |
|
|
|
@mwl "any more". What changed? uPNP? |
|
|
|
Post #AsxmPNx8Uq7AkvlYbg by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@ltning UPnP, attack vectors, all sorts of things.When the clients were raw HTT… |
|
|
|
Post #AsxxPKGVJ1dwoa01jM by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@mwl do you have any E.T.A. when you might be asking for tech reviews?I’ll tr… |
|
|
|
Post #AsxxPKNEtz1z9T9PEG by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@drscriptt If I can avoid debacle, it'll be late this month.Debacle has bee… |
|
|
|
Post #AsyOKcnzdzwZd9e9mC by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@mwl Spoken like someone who doesn’t wear a steel codpiece. |
|
|
|
Post #AsyclKjkKT2QlkI2bI by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@unusnemo @mwl and, yet, this bad idea persIsts |
|
|
|
Post #Asycm4UmCSOcgddjea by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@mwl @ltning While I agree with the whole idea of not depending on NAT for secu… |
|
|
|
Post #AsycyJvGfRZU0as6oy by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@mwl @ltning Specifically, I've seen to many orgs host their stuff behind a… |
|
|
|
Post #AsyiA6Ae7doUbTV5Xs by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@mwl |
|
|
|
Post #Asysm85eQvH96OwAwS by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@tony I worked in more than one org that did think NAT=security. |
|
|
|
Post #Asyt15Qyag8nCz2nNg by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@david_chisnall ouch! steel conducts heat too well. You want defense in depth, … |
|
|
|
Post #AszQco0J8mq8dpACWG by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@cynicalsecurity @mwl And chainmail bikinis! |
|
|
|
Post #AszQt9xBIgq9LlV1QO by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@mwl right. So late Q3 or early Q4 of `26. Got it. |
|
|
|
Post #At3akQVm949IGszjmq by ltning |
|
1 likes, 0 repeats |
|
|
|
@ljrk @mwl I still fail to grasp this. What does a firewall do that NAT doesn&#… |
|
|
|
Post #At3jDcYpE0MJfkqxHM by [email protected] |
|
2 likes, 0 repeats |
|
|
|
@ltning @ljrk the word "firewall" is a whole separate discussion. tld… |
|
|
|
Post #At55SnBoNjEF89giki by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@mwl @ltning Yup, the term "firewall" is quite... uh, tricky. But ind… |
|
|
|
Post #At55ZMblbop4iVxhDM by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@mwl @ltning Fun fact: There was some vuln with some home routers that literall… |
