|
[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]
|
Re: [PLUG] two interfaces and security
|
Only to piggy-back on Bill's point, there are two more reasons that you
want this separate box ... it's easier to build because there are fewer
tools and packages installed (which is the fewer targets to hit) and it
is harder to use once broken into ... because you haven't left anything
useful for attacking your internal network - or outside an network from
your compromised firewall.
Sure, tcpdump, sniffit, ngrep, etc. are great tools to use on your home
firewall, but if you leave them behind for the intruder you may as well
get your name legally changed to Kris Kringle.
andrew.
On Sat, 2 Jun 2001, Bill Jonas wrote:
> It sounds basically correct, but keep in mind that part of the advantage
> of having a separate firewall is that if it's broken in to, you have a
> much easier time of rebuilding just that one machine that you don't have
> your work on. (A sacrificial machine, of sorts.) If your workstation
> does double duty as your firewall, then an intruder has one fewer
> machine to crack before he gets to the interesting stuff.
>
______________________________________________________________________
Philadelphia Linux Users Group - http://www.phillylinux.org
Announcements-http://lists.phillylinux.org/mail/listinfo/plug-announce
General Discussion - http://lists.phillylinux.org/mail/listinfo/plug
|
|