7MS #6: Fun Firewall Rules - part 2 (audio)
In this episode I continue talking about some basic firewall rules that many organizations don’t have in place.
- Limit outbound DNS requests to just the ISP servers (or whatever external servers you use).
- Anytime a firewall rule is changed, perform a vulnerability scan and/or port scan to validate changes. Sometimes the “any/any” rules can cause some serious damage.