[120835] in North American Network Operators' Group
Re: D/DoS mitigation hardware/software needed.
daemon@ATHENA.MIT.EDU (Dobbins, Roland)
Tue Jan 5 02:59:21 2010
From: "Dobbins, Roland" <rdobbins@arbor.net>
To: NANOG list <nanog@nanog.org>
Date: Tue, 5 Jan 2010 07:54:33 +0000
In-Reply-To: <5a318d411001042338i354b99d5w3a6e0d38a38adc75@mail.gmail.com>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On Jan 5, 2010, at 2:38 PM, Darren Bolding wrote:
> PCI DSS does not require a "Web application firewall".
<http://searchsoftwarequality.techtarget.com/news/article/0,289142,sid92_gc=
i1313797,00.html>
Since no business is going to allow an external 'code review' (if it's even=
possible, given that they're likely using COTS products, the source code o=
f which they simply don't have), this defaults to a requirement for the 'We=
b application firewall'.
;>
-----------------------------------------------------------------------
Roland Dobbins <rdobbins@arbor.net> // <http://www.arbornetworks.com>
Injustice is relatively easy to bear; what stings is justice.
-- H.L. Mencken
