Re: IPCop for Small-Business Network: Web Proxy Usage

From: Leythos (void_at_nowhere.lan)
Date: 06/22/05 

Date: Wed, 22 Jun 2005 10:44:53 GMT

In article <11bi0992h9gsr94@news.supernews.com>, no.spam@my.place
says...
> In all the years I have run computers I have had no virus, no trojan, no
> worm that got in, only a few outside system effects (sasser, winnuke,
> codered hitting my cicso router), which I quickly found solutions for.
> I know from which I speak.

I've been using computers since 76, can say that I've NEVER been
compromised in all that time - not run Linux for a firewall on any
system yet.

> And I speak: anytime you are setting up a network of windows machines,
> they need to communicate with the net only through a single firewall
> machine (they talk to it, it talks to the net). This firewall machine
> should be running linux, with either esmith or smoothwall firewall
> software. Keeping the firewall outside your windows machines means that
> no virus/trojan/worm/hacker has any chance at them and their extreme
> vulnerabilities until after it gets past the firewall (which has no
> performance impact on the other machines, running separately). This,
> along with a NAT router to outright block ports you just don't want
> open, is an almost perfect security combination against everything but
> trojans. Linux isn't perfect, but it's many orders of magnitude more
> secure than any windows, and thus makes the right choice for a
> firewall. Running only that one program on it, you don't need to be a
> neckbeard linux ghuru to use it.

Even a simple NAT device will block those attacks from your machine. If
every internet user would just have NAT enabled on their ISP provided
router we would all be a lot better off (by default). 

-- 
--
spamfree999@rrohio.com
(Remove 999 to reply to me)

Relevant Pages

  • Re: Changing a Binary Value in the Registry? (Topic Tilt to NTP)
    ... If the computers are different dates it won't synch. ... Got a personal software firewall running on either host? ... >> the Linux machine astro_pc, and found XP didn't like that. ... >> to astropc, but XP seems to at times cling to the notion that its astro_pc. ...
    (microsoft.public.windowsxp.general)
  • Re: Linux or BSD alternative to Windows Home Server
    ... My questions were about Gentoo vs. Linux for a sever, ... I will probably eventually have a dedicated firewall ... if you were to have a file server which is accessible ... I'm aware that I could probably create scripts to regularly backup ...
    (comp.os.linux.misc)
  • Re: OT - Desktop Linux
    ... I've got both windows and linux boxes. ... But are there any desktop operating systems out there which enjoy a dis- ... software firewall, have a good and up to date ...
    (alt.sports.basketball.nba.la-lakers)
  • Re: Which Linux OS best for beginner to setup as Web / Mail server / Internet sharer and firewall?
    ... >>I don't want to start a flame war, but in my experience OpenBSD is best ... >>boxes if you must run linux for applications. ... > linux inside the firewall? ... web server? ...
    (comp.os.linux.networking)
  • Re: [fw-wiz] Recommendation needed for a firewall appliance
    ... >>I was unsuccessful in getting an IPSec VPN going with a Win2K ... >There are several firewall specific linux distros, Astaro, Coyote ... >There are some small firewall units, and there are small Managed Security ... >> for Windows, OSX and Linux. ...
    (Firewall-Wizards)