Re: Linux firewall/IDS/NAT suggestions
carrion_at_ravel.ufrj.br
Date: 05/31/03
- Previous message: Scott Gifford: "Re: Linux firewall/IDS/NAT suggestions"
- Maybe in reply to: Scott Gifford: "Re: Linux firewall/IDS/NAT suggestions"
- Next in thread: Seth Arnold: "Re: Linux firewall/IDS/NAT suggestions"
- Reply: Seth Arnold: "Re: Linux firewall/IDS/NAT suggestions"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Sat, 31 May 2003 12:12:44 -0300 To: Shawn Duffy <pakkit@codepiranha.org>
Just one question ...
What's the advantage of having the Firewall/NAT rules written on a CD-R media?
If an attacker can modify the rules, it's very probable that (s)he can stop
the Firewall/NAT or even change the source of the rules.
Demetrio Carrión
> > Should the NAT and Firewall rules be written and maintained on CD-R media
> so
> > a malicious attacker cannot hide rule changes? Should the firewall be
> > re-initialized on a schedule to ensure the live rules are those from the
> > read-only media?
>
> That's not a bad idea... I have never tried it so I don't know what
> problems you may run into.
-------------------------------------------------
This mail sent through IMP: http://horde.org/imp/
- Previous message: Scott Gifford: "Re: Linux firewall/IDS/NAT suggestions"
- Maybe in reply to: Scott Gifford: "Re: Linux firewall/IDS/NAT suggestions"
- Next in thread: Seth Arnold: "Re: Linux firewall/IDS/NAT suggestions"
- Reply: Seth Arnold: "Re: Linux firewall/IDS/NAT suggestions"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
