Re: how deep do i need to dive ?
From: Ari Rankum (Ari_Rankum_at_invalid.invalid)
Date: 03/31/04
- Previous message: /dev/rob0: "Re: identd log entries"
- In reply to: dnk0h: "Re: how deep do i need to dive ?"
- Next in thread: John: "Re: how deep do i need to dive ?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 31 Mar 2004 00:56:45 GMT
dnk0h wrote:
> the linksys router/firewall does the trick. you shouldnt really need
> anything configured on the linux box as far as firewall goes, unless
> you're forwarding ports to it from the linksys or have made the linux
> box dmz.
The reason you would want more than that is that new hacks get
discovered all the time. If it were published tomorrow that there's an
admin backdoor in the Linksys firmware, you can be sure lots and lots of
attempts to subvert Linksys boxes would be made before they were all
patched (of course, they never *all* get patched). If the Linksys, or
what have you, is all you've got, you've just become the low hanging
fruit on the net. If you had a host-based firewall as well, you'd
likely still be safe, even though your moat just got filled in. Because
most of the victims on the net have no special significance to the
authors of malware, most hacks are very single-minded. If the hack
doesn't work against machine A, move on to machine B. As a result,
having more than one line of defense is a pretty good idea in general.
- Previous message: /dev/rob0: "Re: identd log entries"
- In reply to: dnk0h: "Re: how deep do i need to dive ?"
- Next in thread: John: "Re: how deep do i need to dive ?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
