CD based Fw or not?
This is a discussion on CD based Fw or not? within the Linux Security forums, part of the System Security and Security Related category; Hi list, The right and secured firewall system is an endless story. I would be interessted in yor opinions on ...
|
|||||||
| FAQ | Members List | Calendar | Search | Today's Posts | Mark Forums Read |
10-28-2003
|
|||
|
|||
CD based Fw or not?
Hi list,
The right and secured firewall system is an endless story. I would be interessted in yor opinions on what kind of firewall is more "secure". CD based Firewalls with a config floppy disc or a hardend linux installation on hard disc? As I am searching for projects what distribution would you prefer when you need VPN functionality. Externel and internal http, https proxy as well as ftp. And a generic proxy like rinted to proxy requests like imap, pop, hbci, ssh etc. Any opinions are very welcomed. Thank you Regards Markus -- One OS to rule them all, One OS to find them, One OS to bring them all and in the darkness bind them. www.xsys.biz 
|
|
10-28-2003
|
|||
|
|||
|
Re: CD based Fw or not? -> Addon
>As I am searching for projects what distribution would you prefer when >you need VPN functionality. Externel and internal http, https proxy as >well as ftp. And a generic proxy like rinted to proxy requests like >imap, pop, hbci, ssh etc. by distribution I mean software like Devil-Linux, Smoothwall, IPCop, Sentry Firewall. -- One OS to rule them all, One OS to find them, One OS to bring them all and in the darkness bind them. www.xsys.biz
|
|
10-28-2003
|
|||
|
|||
|
Re: CD based Fw or not?
Markus Bender <idontwantspam-leftstart-markus.bender@xsys.biz-rightstop> wrote:
> The right and secured firewall system is an endless story. I would be > interessted in yor opinions on what kind of firewall is more "secure". > CD based Firewalls with a config floppy disc or a hardend linux > installation on hard disc? CD based (or read only hard disk) is a good idea, if you're fearing intruders and manipulation of your firewall implementation. So they will not be able to persist any modifications. But that's it. > As I am searching for projects what distribution would you prefer when > you need VPN functionality. No distribution, LFS. Or any distribution, but with an own run-level and just well-known, trustworthy software. > Externel and internal http, https proxy as > well as ftp. And a generic proxy like rinted to proxy requests like > imap, pop, hbci, ssh etc. The distribution really does not matter. Better do use only software which you will trust on that box. And keep an eye on the CERT advisories and bugtraq when new security holes were found. VB. -- X-Pie Software GmbH Postfach 1540, 88334 Bad Waldsee Phone +49-7524-996806 Fax +49-7524-996807 mailto:vb@x-pie.de http://www.x-pie.de
|
|
10-30-2003
|
|||
|
|||
|
Re: CD based Fw or not?
>No distribution, LFS. Or any distribution, but with an own run-level
>and just well-known, trustworthy software. So you would not recommend something like Devil-Linux, IPCop, Sentry Fw? Markus -- One OS to rule them all, One OS to find them, One OS to bring them all and in the darkness bind them. www.xsys.biz
|
|
10-31-2003
|
|||
|
|||
|
Re: CD based Fw or not?
Markus Bender <idontwantspam-leftstart-markus.bender@xsys.biz-rightstop> wrote in message news:<mpa2qv039lpt1ke8ndve8geemnp8ptu8f4@4ax.com>. ..
> >No distribution, LFS. Or any distribution, but with an own run-level > >and just well-known, trustworthy software. > > > So you would not recommend something like Devil-Linux, IPCop, Sentry > Fw? > > Markus http://www.nsa.gov/selinux/
|
Linear Mode
