Comments on: Segmented Web Browsing Will Be the DMZ of the 2010′s

By: Matt

Matt — Mon, 22 Feb 2010 23:28:36 +0000

What about email then ? If a browser is able to deliver malicious content, so are all the other html implementations present in email user agents.

By: Matt

Matt — Mon, 22 Feb 2010 18:28:36 +0000

What about email then ? If a browser is able to deliver malicious content, so are all the other html implementations present in email user agents.

By: fagesdaniel

fagesdaniel — Wed, 10 Feb 2010 14:03:18 +0000

Hello,
as a co-founder of commonIT (http://commonit.com), I can only totally agree with your post. At commonIT, we've developed "Virtual Browser" which implements this type of architecture with some interesting extensions as the "sessions isolation" function which give the capability to run different web browsers in different environments (both for security and compatibility reasons).

Best regards,
Daniel.

By: uberVU - social comments

uberVU - social comments — Sun, 31 Jan 2010 03:51:32 +0000

Social comments and analytics for this post…

This post was mentioned on Twitter by frasty: Segmented Web Browsing Will Be the DMZ of the 2010′s – http://danielmiessler.com/blog/segmented-web-browsing-will-be-the-dmz-of-the-2010s…

By: Guest

Guest — Wed, 27 Jan 2010 19:50:09 +0000

Dear Curious,

If you look at the bottom of the page you referenced, you will see that it credits this blog as the original source.

By: Curious

Curious — Wed, 27 Jan 2010 08:20:19 +0000

This post is a direct rip (without credit) from Securifeed http://securifeed.org/node/18203, or is it the other way around? Clarification would be appropriate.

By: Kenneth Rickey Swain II

Kenneth Rickey Swain II — Tue, 26 Jan 2010 21:10:59 +0000

I currently boot to BackTrack 4 livecd from a virtual machine for banking and sensitive items. The thought process here is that an exploit would not stay resident since it is a live cd and the likely hood of it harming my machine is reduced since it is in VM.

By: Erwin

Erwin — Tue, 26 Jan 2010 13:07:40 +0000

I've created a setup with a similar goal in a job a while ago. I've set up a Linux server in the DMZ that was used to serve Firefox sessions to Windows using the Xming X server. Up- and downloads were only possible by using a special drop zone in the filesystem that was automatically virus scanned and synced to the production network.
It was working really well, but finally they stopped using it because the users kept complaining about not being able to download files directly to their desktop :(

By: Segmented Web Browser DMZ. « Aspects of computer security

Segmented Web Browser DMZ. « Aspects of computer security — Tue, 26 Jan 2010 07:23:06 +0000

[...] Intreg articolul aici. [...]

By: Laszlo

Laszlo — Tue, 26 Jan 2010 07:01:11 +0000

"... virtualized, isolated browser farms."
Where can i read more about this subject?
How would this scale up for enterprises with thousands of browsing users?