On Tue, Mar 20, 2001 at 05:48:27PM -0600, Timothy Wilson wrote:
> Here's the question: How 'bout putting a 2nd NIC in the Webserver and
> putting that NIC on the internal network? The 2nd one would get a 10.* IP
> address and shouldn't have any trouble accessing the tape library.
Do that and your webserver effectively becomes an alternate firewall,
albeit one which is not likely to be fully secured, since that's not its
intended role. Attackers would then have two routes to choose from for
breaching your internal network.
As others have said, this would be some very bad ju-ju.
--
Linux will do for applications what the Internet did for networks.
- IBM, "Peace, Love, and Linux"
Geek Code 3.1: GCS d? s+: a- C++ UL++$ P++>+++ L+++>++++ E- W--(++) N+ o+
!K w---$ O M- V? PS+ PE Y+ PGP t 5++ X+ R++ tv b+ DI++++ D G e* h+ r y+