-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Well said!
- -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Kent Borg Sent: Thursday, February 13, 2003 9:03 AM To: [EMAIL PROTECTED] Subject: Re: What is the disadvantage of Linux firewall, rather then using ready to use firewall (checkpoint, trustix, cyberguard, watchguard etc) On Thu, Feb 13, 2003 at 07:56:23AM -0600, Dave Ihnat wrote: > We all urgently push you to implement a firewall...any firewall... No we don't (with or without smilies), I do not advise a firewall unless you are trying to protect some MS Windows garbage and that is a losing battle you are better off not trying to fight. These days Red Hat ships quite secure. Keep it up to date, use good passwords--passwords that you don't reuse elsewhere, turn off services you don't use, and be extremely careful about customizing things you don't understand or you can quickly open up holes Red Hat carefully didn't open. Be a bit nervous about Open Office and its scripting, it is new and might start supporting some MS scripting nasties. Be nervous about Javascript, it is not Java and was not designed with security in mind. Use a dumb e-mail program that doesn't try to do fancy stuff for you, ASCII text e-mail is safe, the fancier you get beyond that the riskier it is. Do all that and what do you need a firewall for? Have a firewall and you will be complacent and not do all that but still be vulnerable to many risks. Firewalls are treated as single magic bullets when security has to be bit by bit. A big part of being secure in Red Hat is the enormous work Red Hat has done on all the bits. - -kb, the Kent who considers firewalls medieval. - -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED]?subject=unsubscribe https://listman.redhat.com/mailman/listinfo/redhat-list -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (MingW32) Comment: For info see http://www.gnupg.org iEYEARECAAYFAj5LtPYACgkQUhfuBU5zU4MPogCeIaTcQ4Uljn1Bto6AWtQWmUwC w7QAnizgrmCi0FyG7gV0ETA2jlshv4TC =n19s -----END PGP SIGNATURE----- -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED]?subject=unsubscribe https://listman.redhat.com/mailman/listinfo/redhat-list