Full Disclosure mailing list archives

Previous By Date Next
Previous By Thread Next

Re: OSS passive firewall

From: Ron DuFresne <dufresne () winternet com>
Date: Thu, 10 Apr 2003 11:33:43 -0500 (CDT)

a firewall sitting as a network bridge, correct?  Not all that new, and
talked of a number of times in the various lists.  The documentation might
be a good thing<TM>  though I'm suspecting that also might have already
been done...

Thanks,

Ron DuFresne

On Thu, 10 Apr 2003 f0x () squirrelsoup net wrote:


About an OSS passive packet monitoring thing.  I know openbsd can do
direct interface to interface packet forwarding, and you can add a bunch
of ip-chains ish stuff to this to make a completely invisible yet quite
functional firewall.  A very good description of what exactly I mean by
this and how to go about doing it can be found here:
http://www.openlysecure.org/openbsd/how-to/invisible_firewall.html  It's
pretty interesting a terribly secure (terribly in a good way :-p).

Gabe Arnold
www.squirrelsoup.net

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html



~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
"Cutting the space budget really restores my faith in humanity.  It
eliminates dreams, goals, and ideals and lets us get straight to the
business of hate, debauchery, and self-annihilation." -- Johnny Hart
        ***testing, only testing, and damn good at it too!***

OK, so you're a Ph.D.  Just don't touch anything.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
Previous By Date Next
Previous By Thread Next

Current thread: