[lug] Firewall != Linux, Was -> Broadband
Wayde Allen
wallen at boulder.nist.gov
Tue Aug 1 16:31:51 MDT 2000
On Tue, 1 Aug 2000, Chris M wrote:
> > And why was that so? Because of a glitch/bug in the Linux code?
> A security hole. wu-ftpd, sendmail, etc. A modem connected to the computer
> in one case. Or a simple DoS, any number of things. I mean the sky is truly
> the limit with so many knobs to turn and lock down.
> If Linux worked great as a firewall
> and I was sure I wouldn't get calls in the middle of the night, I'd install
> them.
>
> So let's admit Linux isn't as good as a commercial firewall then, because
> the incidence of trouble (where trouble == firewall compromise) is far lower
> for commercial products since they do eliminate a large component of
> failure: human judgment and training.
OK, I think I've pulled out the important parts of your position. Namely,
Linux has too many options so that the configuration isn't exactly
trivial. If I've missed something let me know.
- Wayde
(wallen at boulder.nist.gov)
More information about the LUG
mailing list