Re: [SLUG] Hardware firewall

From: Steve (steve@szmidt.org)
Date: Fri Apr 09 2004 - 09:29:53 EDT

Next message: Levi Bard: "Re: [SLUG] New/old spam fighting idea"
Previous message: wchast@utilpart.com: "RE: [SLUG] A question of databases"
In reply to: chris: "[SLUG] Hardware firewall"
Next in thread: Levi Bard: "Re: [SLUG] Hardware firewall"
Reply: Levi Bard: "Re: [SLUG] Hardware firewall"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Friday 09 April 2004 05:13 am, chris wrote:
> <slug@nks.net>

Actually even a 486 has enough processing power to fill a T1.

The most secure OS to do this with is OpenBSD(.org). They security audit
every line of code in it. In the last seven years they have only had one
remote access hole in the default install. They even have workarounds for
the security "holes" in the i386 class CPUs.

To get the CD is about $45 and takes about 15 min to install. Then following
the steps for packet filter, under networking documentation online you can
have yourself a state of the art firewall in an hour or two of learning how
it works and configuring it for your needs. (I do it in 15 minutes
usually.)

No OS comes close to securing a box the way they do. Even $60,000 commercial
firewalls has a hard time keeping up with them. You'll find almost every
LAB that tests PCs using it as they have had the opportunity to come across
it. The way they can do what even the "big boys" have a hard time with is
due to not being driven by money but by technology.

In terms of working with it it only needs 48MB RAM and a 500M Drive (plus at
least two NICs of course). Being BSD it's very similar to Linux.

Actually on the subject of BSD. Out of the 50 longest running servers
online, 48 of them are running BSD.
- --
Steve

"They that would give up essential liberty for temporary safety deserve
neither liberty nor safety."
Benjamin Franklin

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.3 (GNU/Linux)

iD8DBQFAdqVVljK16xgETzkRAvA3AKC+KzPpEYoBp6u6UdcLdMZ7ao5ykACeL5UH
74c+6vCI4P9EuACO4O9DTbI=
=nMgR
-----END PGP SIGNATURE-----

-----------------------------------------------------------------------
This list is provided as an unmoderated internet service by Networked
Knowledge Systems (NKS). Views and opinions expressed in messages
posted are those of the author and do not necessarily reflect the
official policy or position of NKS or any of its employees.

Next message: Levi Bard: "Re: [SLUG] New/old spam fighting idea"
Previous message: wchast@utilpart.com: "RE: [SLUG] A question of databases"
In reply to: chris: "[SLUG] Hardware firewall"
Next in thread: Levi Bard: "Re: [SLUG] Hardware firewall"
Reply: Levi Bard: "Re: [SLUG] Hardware firewall"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.3 : Fri Aug 01 2014 - 20:18:50 EDT