I m not sure bt i think iptables provide static rules and do not detect the intrusions,, i mean we can make a project which can create dynamic rules for iptable, as when required...
On Mon, Mar 19, 2012 at 8:35 PM, Olaf van der Spek <[email protected]> wrote: > On Mon, Mar 19, 2012 at 3:57 PM, Harsh vardhan verma > <[email protected]> wrote: >> hii to all,, i wanted to ask something related to security things in >> drizzle,, IP spoofing is a serious threat on internet today,, It can >> create DOS attack(Denial Of Service) as well as can poison the >> database n can even lead to man-in-middle attack,, do we need a >> pluggable solution, like a lite fiewall on drizzle server,, I mean for >> those who need better security, can plug this feature,, so can a lite >> firewall or maybe a lite IDS can be a gsoc project for drizzle.. > > What advantage would it provide over a normal firewall (like iptables)? > Database servers shouldn't listen on a public port anyway. > > -- > Olaf _______________________________________________ Mailing list: https://launchpad.net/~drizzle-discuss Post to : [email protected] Unsubscribe : https://launchpad.net/~drizzle-discuss More help : https://help.launchpad.net/ListHelp
