Academic Integrity: tutoring, explanations, and feedback — we don’t complete graded work or submit on a student’s behalf.

It\'s become standard fare for security minded organisations to block everything

ID: 656989 • Letter: I

Question

It's become standard fare for security minded organisations to block everything other than 80 and 443. As a result, more and more applications (other than web browsers) are learning to use these ports for their needs too.

Naturally malicious programs do that too, which then means that to have any real security, firewalls have to actually examine the data stream and block based on application data instead of just ports...

This seems to indicate that port based blocking was a short sighted approach to begin with, kind of like input validation solely on client...

In that case, should we not stop blanket blocking nonstandard ports, and go for more fine grained filtering in the first place...? Or are there other reasons to keep the port-whitelist approach?

Explanation / Answer

You're absolutely correct. There's nothing magical about port 80, or port 443. There's nothing inherently secure about one port or another, or even one protocol or another. If you block everything but HTTP, everyone will simply start using HTTP. The attackers can and do always move faster than everything else. They aren't limited by maintaining old infrastructure.

In essence, protocols and ports aren't secure or insecure. Blocking them is just another form of security theatre.

Related Questions

It\'s a 3 part question. A fellow student of mathematical bent tells you that th
Question #2105226
It\'s a C++ program of singly linked list class template. Bellow is the header f
Question #3721729
It\'s a Christmas time and so I hope I\'ll be pardoned for asking a question whi
Question #2282204
It\'s a LISP Programming problem please help me! I need to make remove-2nd funct
Question #3804716
It\'s a MATLAB question, Need a help with it (Don\'t have to use the program) 3.
Question #1994982
It\'s a MATLAB question, Need a help with it (Don\'t have to use the program) 3.
Question #2319916
It\'s a business that we make tractors and sells them by 4,000 AED each. We\'re
Question #2470251
It\'s a clear, calm night. You and your sweetheart are enjoying the beautiful re
Question #1448963
Hire Me For All Your Tutoring Needs
Integrity-first tutoring: clear explanations, guidance, and feedback.
Drop an Email at
drjack9650@gmail.com
Chat Now And Get Quote

Navigate

Previous
It\'s asking for pressure head, elevation head, and hydraulic head. I\'m having
Next
It\'s becoming more important to recognize individual differences in a workplace

Integrity-first tutoring: explanations and feedback only — we do not complete graded work. Learn more.