Re: recommend Linux firewalls for non-profit

From: Ginger Git (gingergit_at_PleaseRemoveNOSPAM.)
Date: 04/28/03 

Date: Mon, 28 Apr 2003 18:21:28 +0000 (UTC)

Dave,

if you are such a expert please do explain to me how this is insecure as a
transparent Bridge.and host on the inside can be insecure and can be
exploited if you are port forwarding etc

Come on give us the benifit of your wisdom please.

"Dave Thornburgh" <dave-thorn@nodash.adelphia.net> wrote in message
news:YFbra.7453$1K5.3989198@news3.news.adelphia.net...
>
> "Ginger Git" <gingergit@PleaseRemoveNOSPAM.> wrote in message
> news:b8gctj$hol$1@sparta.btinternet.com...
> >
> > but if the bridge has no IP address and therefore cannot be accessed
> remotly
> > then there for it is secure! anything behind it is as secure as the
> platform
> > / security in place on it. you could install checkpoint FW-1 on Ipso and
> > that is secure for the firewall but the devices behind it can still be
> > hacked if the right exploits are used on those hosts.
> >
> > What my point is - "If you cannot see the transpent Bridge you cannot
> attack
> > it / reconfigure it etc" I am not talking about anything else. What part
> of
> > that last line don't u understand??????? Would you like me to give you a
> > lesson in Security?
>
> You've already given us a lesson in how you approach security. Some of
the
> rest of us are painfully aware of situations which prove you wrong, but if
> you're going to continue to ignore the possibility, then I'll just have to
> make sure I never rely on your security efforts. Otherwise, there's not
> much point in flogging an expired equine.
>
> Dave
>
> 

---
Outgoing mail is certified Virus Free.
Checked by AVG anti-virus system (http://www.grisoft.com).
Version: 6.0.474 / Virus Database: 272 - Release Date: 18/04/2003

Relevant Pages

  • Re: NAT external/Public IP
    ... secure than it already is. ... Like I said before: either a host is ... Why not Security by Design plus Security by Obscurity? ...
    (Security-Basics)
  • Re: marshal vs pickle
    ... >> security. ... The marshal module is not intended to be secure against ... >> doesn't construct arbitrary code objects. ... Marshal is similarly insecure if you evaluate a code ...
    (comp.lang.python)
  • Re: SBS 2003 and TS-App Mode
    ... It was a security decision, Tim. ... My user base is secure. ... >>users but instead you are going to make your Domain controller insecure. ...
    (microsoft.public.windows.server.sbs)
  • Re: Ten least secure programs
    ... none of these type of arguments (though there's no reason why ... alleged security firm isn't qualified. ... B, provided there's nothing else added, is secure. ... illustrates that some are insecure and some are not. ...
    (Security-Basics)
  • Re: Found, a new rootkit
    ... passwords is far more insecure than a typical Windows system. ... I have an MSDOS machine which is absolutely secure. ... any Linux machine with external access ever could hope to be. ... All systems without physical access level security have missing ...
    (Fedora)
Quantcast