Security Basics mailing list archives

Re: suggestions on a good firewall

From: "Jeff" <jeffr76 () yahoo com>
Date: Thu, 22 May 2003 13:20:49 -0400

That is and is not true.
remember that just because you chose a firewall software you are still as
vulnerable as the OS that you are running on.for example if lets say you are
running X and a bug/flaw in the TCP/IP stack causes a buffer overflow. whose
fault is that the OS or the firewall that is running on top of sed OS. now
that was a really basic example
 but you can get the idea. there are cretin parts of the OS that the
firewall must depend on. and if they have a failer it could pose a problem
for you firewall. This
problem could and does still exist in CISO ISO or the like.
You are only as strong as your weakest link
Jeff
----- Original Message ----- 
From: "dschaible" <dschaible () cssiinc com>
To: "'Jeff'" <jeffr76 () yahoo com>; <security-basics () securityfocus com>; "'Ing
Bernardo Lopez'" <bloodk () prodigy net mx>
Sent: Thursday, May 22, 2003 11:27 AM
Subject: RE: suggestions on a good firewall


OK, I'll bite too.  I know there is this Holy War between Linux and *BSD.
But a well configured firewall is a well configured firewall, whatever the
OS.  A lot of the Hardware Firewalls on the market run Linux kernels.

The firewall that's right for you is one you know how to configure and meets
the needs you need to fulfill.  To just say that X is a poor firewall is a
little on the ignorant side.

- Derek

-----Original Message-----
From: Jeff [mailto:jeffr76 () yahoo com]
Sent: Tuesday, May 20, 2003 12:36 PM
To: security-basics () securityfocus com; Ing Bernardo Lopez
Subject: Re: suggestions on a good firewall


ok I'll bite
Why is Linux or the others in this thread a bad idea as a
firewall. I see
you would recommend a hardware firewall. does this mean like
a linksys or
netgear or raptor or one of those type of LINUX based
firewall systems.
I have deployed Linux,Cisco, and raptors based firewall and
the difference I
have see is support and cost.
Linux being the less cost and Cisco being the most.
if it was my network and I was making the security policy I
would chose
Linux or raptor Cisco is just too much money for a personal
or small company
network.
just my .02
Jeff
----- Original Message ----- 
From: "Ing Bernardo Lopez" <bloodk () prodigy net mx>
To: <security-basics () securityfocus com>
Sent: Monday, May 19, 2003 4:49 PM
Subject: Re: suggestions on a good firewall

Yea, linux as a firewall is poor than microsoft, bether use

OpenBSD or buy
a

hardware firewall... dont be a poor freak guy...

On Saturday 17 May 2003 12:07, kerberus wrote:

Please get a real Firewall use OpenBSD and PF

On Fri, 2003-05-16 at 14:50, Tom Sevy wrote:

I 2nd ipcop as a suggestion...

-----Original Message-----
From: Mike Moore [mailto:mike () moorecomputing net]
Sent: Thursday, May 15, 2003 7:14 PM
To: security-basics () securityfocus com
Subject: RE: suggestions on a good firewall


Or even better www.ipcop.org . A lot better support and

no abuse.

-----Original Message-----
From: Dan Tesch [mailto:dantel () rb-group com]
Sent: Wednesday, May 14, 2003 1:37 PM
To: Beaney, Derek; security-basics () securityfocus com
Subject: Re: suggestions on a good firewall


Try www.smoothwall.org

Beaney, Derek wrote:

im planning on making a firewall for my home

system.. I am running

windowsXP / SuSE 8.1 dual boot  what I want to do is

set up another

computer to act as a firewall for my main system. what I


want this to

do is to be able to control what enters and leaves

my system  with
a

way to set up permissions. preferably I would like to have a


firewall

running on either a Linux or Unix os ... no m$ =) tia



---------------------------------------------------------------------------
Thinking About Security Training? You Can't Afford Not To!

Vigilar's industry leading curriculum includes:  Security +, Check Point, 
Hacking & Assessment, Cisco Security, Wireless Security & more! Register Now!
--UP TO 30% off classes in select cities-- 
http://www.securityfocus.com/Vigilar-security-basics
----------------------------------------------------------------------------

Current thread:

RE: suggestions on a good firewall, (continued)
- - RE: suggestions on a good firewall Dan DeVoe (May 17)
- RE: suggestions on a good firewall Tom Sevy (May 17)
  - RE: suggestions on a good firewall kerberus (May 19)
    - Re: suggestions on a good firewall Ing Bernardo Lopez (May 20)
    - RE: suggestions on a good firewall Mark Ng (May 20)
    - Re: suggestions on a good firewall Jeff (May 21)
    - Re[2]: suggestions on a good firewall Malte von dem Hagen (May 21)
    - Re: Re[2]: suggestions on a good firewall Jeff (May 22)
    - Re[4]: suggestions on a good firewall Malte von dem Hagen (May 23)
    - RE: suggestions on a good firewall dschaible (May 23)
    - Re: suggestions on a good firewall Jeff (May 23)
    - RE: suggestions on a good firewall Jason Dixon (May 26)
    - RE: suggestions on a good firewall Mark (fat) (May 21)
    - RE: suggestions on a good firewall Daniel B. Cid (May 22)
    - RE: suggestions on a good firewall silvia ghezzi (May 22)
    - RE: suggestions on a good firewall lassal (May 23)
    - Re: suggestions on a good firewall Andreas Happe (May 22)
    - RE: suggestions on a good firewall Daniel R. Miessler (May 21)
    - RE: suggestions on a good firewall Jon Pastore (May 30)
- RE: suggestions on a good firewall Dan . Hemphill (May 19)
- Re: suggestions on a good firewall salgak (May 21)

(Thread continues...)