On Sat, 31 May 2003, terry white wrote:
> : Which kernel would be best? 2.0.x, 2.2.x, or 2.4.x?
>
> i would suggest the 2.2.25 kernel. it's stable, runs like a champ,
> and at this point in time, pretty secure. the 2.4.x kernel has just seen
> a security problem up-to-and-including 2.4.20. the suggested fix for
> that is the latest 'release-candidtae'. on a production machine, i don't
> think so.
While I agree with your sentiment of having to update the kernel in the 2.4.x
series, I will point out that if you want stateful packet inspection you
simply don't have a choice. PNAT under 2.2.x doesn't do stateful packet
inspection at all.
--Arthur Corliss
Bolverk's Lair -- http://arthur.corlissfamily.org/
Digital Mages -- http://www.digitalmages.com/
"Live Free or Die, the Only Way to Live" -- NH State Motto
