| TIP: Click on subject to list as thread! | ANSI |
| echo: | |
|---|---|
| to: | |
| from: | |
| date: | |
| subject: | Re: how not to build a firewall |
From: Mike '/m'
On Sun, 18 Sep 2005 13:57:18 -0400, "Geo" wrote:
>"Mike '/m'" wrote in message
>news:cd1ri1ptskanoj22hmg3on0bom68hg9r7d{at}4ax.com...
>
>> OpenBSD is a good choice for me for this application. It's very
>> flexible,
>
>I've always thought flexibility is a bad thing to have in a firewall, the
>more ways you can do stuff the easier it is to leave yourself open or the
>easier it is to get hacked if someone finds a limited access method.
>
>One of the reasons I like pix is because they are such a nightmare to work
>with. Makes for a real undesirable hacking experience.
I meant flexible as in, I can use it for different things if I want. For
example, the items I mentioned in my message, I'm not using them, so I
don't even need to know about their configuration becaue they are not
turned on.
For the firewall, I just start with a simple Block All rule, and then let
in only what I want to traverse the firewall.
/m
--- BBBS/NT v4.01 Flag-5
* Origin: Barktopia BBS Site http://HarborWebs.com:8081 (1:379/45)SEEN-BY: 633/267 270 5030/786 @PATH: 379/45 1 106/2000 633/267 |
|
| SOURCE: echomail via fidonet.ozzmosis.com | |
Email questions or comments to sysop@ipingthereforeiam.com
All parts of this website painstakingly hand-crafted in the U.S.A.!
IPTIA BBS/MUD/Terminal/Game Server List, © 2025 IPTIA Consulting™.