Reverse Firewalls to stop DDos Attacks?

Posted: Fri Jul 23, 2004 8:20 am

Anybody have a Reverse Firewall? One answer to stopping spammers and even crackers is by using reverse firewalls. Reverse firewalls could be embedded in every cable modem and wireless access point for home users.

For those of you who need background information... A traditional firewall is designed to stop attacks from the outside coming in; a reverse firewall stops an attack going out, Apparently, a reverse firewall would reduce the value of recruiting your home PC as a member of a botnet because normal users have no need to send out floods of e-mail, which reverse firewalls can stop, but they do allow a normal flow of e-mail. Sounds like a plan to me! Now if i can just find a reverse firewall... I'll just hold up a mirror to my existing one!

Posted: Fri Jul 23, 2004 7:52 pm

Hillarious Raven. A mirror.... Razz

Posted: Fri Jul 23, 2004 8:23 pm

It's about time they went after the REAL problem behind virus attacks... stupid people with computers.

Posted: Sat Jul 24, 2004 4:39 am

hey! im not the real problem behind virus attack!
o.. wait.. Confused

anyway, cant the ISP's build in a reversed firewall in their servers?
would be easyer then to get 1 in every modem..

Posted: Sat Jul 24, 2004 8:49 am

yes but it would be just as easy for the corporations to start installing them in the modems as they ship. short term idea would be your fix long term would be the other one.

plus two firewalls are always better than one...

Posted: Sat Jul 24, 2004 3:57 pm

but think of it this way, if you instal a mirror firewall on a modem, people will hack/remove em. or use a old modem that hasnt got a firewall on it.. or maybe even build their own modems..
theres always a way round it..

Posted: Sat Jul 24, 2004 6:36 pm

A. if its hardcoded into the modem it is impossible to hack/remove it
B. that will always be an alternative untill 5-10 years after the tech is implimented.
C. It is impossible (from what i understand) to build your own modem because of FCC regulations. so that will never be an issue

Guest

A 'reverse' firewall would only allow for more idiots on the internet ... not less. Pretty much any real world security/safety feature has proven that it doesn't stop the idiots from causing accidents and killing themselves.

Plus imagine the helpdesk-calls ... The default firewall for XP already causes enough trouble since people 'forget' it exists.

You know what really stops spam ?
Disconnect the computer from the internet by default and force people to think before they act.

That's why analog modems used to be so good as users only enabled them whenever *they* needed/wanted to be on-line.
Of course it wasn't userfriendly to dial-in every time you wanted to be, but at least it made it impossible for the enemy to use your computer without your knowledge.

Today's broadband makes internet an invisible extension and almost like a virtual harddrive with infinite space.

As for the 'secure' e-mail suggestion in the article. Any security requires passwords. How many people actively maintain their own passwords ?
How many are using one of those tools that remembers the passwords for them ?

Posted: Sun Jul 25, 2004 10:27 pm

Jafo,

It is good to see you back around here. Always nice to have old skoolers around.