On Saturday, November 2, 2002, at 04:04 PM, Ernest E Vogelsinger wrote:
Well, I'll just have to go on ahead and disagree with you. :)At 21:55 02.11.2002, Jason Costomiris said: --------------------[snip]----------------------------------------[snip]--------------------# Safe default policies iptables -P INPUT DROP iptables -P OUTPUT ACCEPT iptables -P FORWARD DROP
I beg to disagree - using an output default polica of ACCEPT opens a wide
door for any Trojans that may make it into your network on one way or the
other. Maybe this is academic - having DROP as rule for fw input SHOULD
leave anything safe at the fw-box itself, but you never know...
I've been using the Internet since the late 80s, and I've never once been the "victim" of a trojan or a virus. As far as I'm concerned, people who get infected with trojans and virii are generally wearing the digital equivalent of a "kick me" sign. It's not hard to manage to not get infected - even my mother can do this.
--
Jason Costomiris <><
E: jcostom {at} jasons {dot} org / W: http://www.jasons.org/
Quidquid latine dictum sit, altum viditur.
--
redhat-list mailing list
unsubscribe mailto:redhat-list-request@;redhat.com?subject=unsubscribe
https://listman.redhat.com/mailman/listinfo/redhat-list
