> Hello Alan, OK, Then Why ? I really do hate prim answers like
> this w/o any explanation . Tia, JimL
Its trivial for me to find your DNS servers, 20 faked source packets and
you are without DNS. A non experienced sysadmin is going to take a very
long time to figure out where the DNS went.
It also wont detect some of the cleverer slow port scans. So it gives you
no more security but makes you easier to take out.
You can build tools that generate basic firewalling for most end user setups
and ask only simple questions. I'm about to release a new version of one
(gnome-lokkit). [and if you want to port it to kde please do...]
Alan
-
To unsubscribe from this list: send the line "unsubscribe linux-net" in
the body of a message to [EMAIL PROTECTED]
