Subject: Re: Firewalls
From: Paul J. Lucas (pauljlucas@mac.com)
Date: Tue Aug 07 2001 - 09:11:15 MDT
On Tue, 7 Aug 2001, Graham Leggett wrote:
> Makes no difference - a Linux box is likely to be secured by you, the
> black-box firewall is likely secured by people with deadlines making it
> as easy as possible for the lowest common denominator user.
Re: deadlines. Fortunately that's counterbalanced by the fear
of lawsuits for compromises.
Re: LCD. Ease-of-use doesn't mean insecure. The "it's easy so
it must be a toy" attitude is precisely the attitude that keeps
Linux from becoming a mainstream home OS.
> For a small network, the black boxes are fine,
Which is all this thread was ever about...
> but I woulndn't trust them for a larger network.
Who said anything about a larger network? But, since you
brought it up, for a larger network, buy a Netscreen(TM) if
you're really serious.
> Security isn't a "checkbox".
Sounds like a marketing line. The point you miss is that *is*
for the precise case I was rebutting you about: external
administration.
> There are a whole miriad of creative ways in which someone might sniff or
> hijack your connection.
So show us documented cases where home-oriented firewall boxes
have been compromised. Prove it.
- Paul
This archive was generated by hypermail 2a24 : Tue Aug 07 2001 - 08:20:16 MDT