[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] ipchains installation

Subject: Re: [cobalt-users] ipchains installation
From: "Nico Meijer" <cobalt-users@xxxxxxxxxxxxxxx>
Date: Mon Apr 23 00:48:06 2001
List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>

Hi Rodolfo!

Great to see you're back.

> ipchains will be the first thing on your box to see a packet; Portsentry
> will only see what gets passed from there.

Very true.

> (Which raises an interesting
> question: if only the ports in use are passed by ipchains, but Portsentry
> only checks ports that are *not* in use, then what use is Portsentry on a
> machine with ipchains?)

In that case portsentry is utterly useless.

Maybe look at it this way: (sorry for the grim happenings below; don't let
you kids read this)

portsentry: Some guy, possible burglar, pushes your front door to see if
it'll open up. Once he does, he is electrocuted by your extra special,
Zircon encrusted door knob.

ipchains: Some guy, possible burglar, *wants* to push your front door to see
if it'll open up. Once he walks up to the gates, he's Dobermann food.

Which solution would you choose for your valuable server?

> Why on Earth would you use a default ACCEPT policy?

That's a scary thought... Nico

References:
- Re: [cobalt-users] ipchains installation
  - From: Rodolfo J. Paiz

Prev by Date: [cobalt-users] OFF TOPIC - CHINESE CYBER ATTACK
Next by Date: [cobalt-users] SOMEONE HAS A VIRUS
Previous by thread: Re: [cobalt-users] ipchains installation
Next by thread: Re: [cobalt-users] ipchains installation

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index