R: [Cooker-firewall] cooker-firewall
- Original Message - From: Donavan Nelson [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Thursday, May 10, 2001 7:42 PM Subject: [Cooker-firewall] cooker-firewall Hello Everyone: What is the latest version of this distro? I seem to have a hard time finding information about this distro. Any suggestions for web site, etc? I cant find infos about cooke-firewall. I planned to setup up 3 servers and I'd like to use this distro. So my question is: when the stable release comes out? one month? two? Best Regards to all and thanks for the best work (I am beening a happy user of Mandrake since mdk5 Venice) Miguel Beccari
Re: R: [Cooker-firewall] cooker-firewall
On Fri, 11 May 2001, Miguel Beccari wrote: :~ Hello Everyone: :~ :~ What is the latest version of this distro? :~ :~ I seem to have a hard time finding information about this distro. Any :~ suggestions for web site, etc? :~ :~ :~I cant find infos about cooke-firewall. :~ :~I planned to setup up 3 servers and I'd like to use this distro. :~So my question is: :~ :~when the stable release comes out? :~ :~one month? two? :~ Miguel (and others), Distro will be out very soon (less than one month), and I'm curious to hear answer to one question from you and other raders of this list: money. That is, what would you (or your customers) like to get from us (related to MandrakeSecurity), and how much are you willing to pay for it? I'm asking this question because of one really unpleasant detail: if everyone simply downloads the distribution, and we don't earn on it, I bet the distribution will eventually end up in trash can, and you will end up with unsupported (== no more security updates! == useless) distribution on your firewall. ;-) So: how much is your security worth to you, and what do you expect to have from Mandrakesoft in return? In my opinion, best thing to do would be some kind of long-term commitment from both sides, like: Customer: monthly fee of X$/server during next Y months (years). Mandrakesoft: commitment to do (whatever) during the same period. WDYT? Denis -- - Dr. Denis Havlik http://MandrakeForum.com Mandrakesoft ||| e-mail: [EMAIL PROTECTED] Community (@ @)(private: [EMAIL PROTECTED]) --oOO--(_)--OOo- The mailserver is on strike. It wants better working conditions, paid days off and a female connector. ([EMAIL PROTECTED])
Re: R: [Cooker-firewall] cooker-firewall
Hello, You have written a very thought provoking and relevant letter and I appreciate your candor. I for one would be willing to pay for your firewall product. The only money I've spent on anything related to Linux so far has been the occasional purchase of a GPL CD from someplace like lsl.com and I've been using Linux since 1994. With the production of LM Firewall, I believe that you have found a niche product that may, if handled correctly, provide you with a steady income from version purchases and security upgrades. Possibly by the per server service contract you indicated. I've tried other firewalls and they work alright if all you want is a packet switch and NAT router. I very much appreciate the extensibility of your product. For example, I've put SAMBA on the firewall and replaced my other full distro (LM 7.2) server for my home LAN. Support of ReiserFS is greatly appreciated as I have been running it since 7.2 came out. I don't want more than one machine laying around plugged into the wall doing nothing more than creating heat so a floppy firewall product is not for me. I also added Portsentry and am quite happy. Remote manageability and monitoring could be extended to include the full functionality of webmin and netsaint but I could just as easily set those up myself. There appears to be little if any indication of the existence of LM Firewall judging by your website, so if you want people to pay for a product/service, you need to let people know that it exists even if it's nothing more than link from your homepage.to a product feature page. One more small item before I finish; Maybe it's just me, but I couldn't find a way using your web manager to allow all (or filter) traffic on the internal network. It will allow filtering of IN - OUT and OUT - IN but not just on the Internal interface. I had to manually (via ssh) Insert an ipchains rule in the INPUT chain similar to the following ( ipchains -I input -b -i eth0 -j ACCEPT ). I know it probably looks dumb but I'm not a programmer so I hack at rules. That took care of opening the firewall for my LAN to pass SAMBA traffic, for instance. Anyway, great and useful product. Keep up the good work and everyone will benefit. Sincerely, Trent M. Gunnarson [EMAIL PROTECTED] Miguel (and others), Distro will be out very soon (less than one month), and I'm curious to hear answer to one question from you and other raders of this list: money. That is, what would you (or your customers) like to get from us (related to MandrakeSecurity), and how much are you willing to pay for it? I'm asking this question because of one really unpleasant detail: if everyone simply downloads the distribution, and we don't earn on it, I bet the distribution will eventually end up in trash can, and you will end up with unsupported (== no more security updates! == useless) distribution on your firewall. ;-) So: how much is your security worth to you, and what do you expect to have from Mandrakesoft in return? In my opinion, best thing to do would be some kind of long-term commitment from both sides, like: Customer: monthly fee of X$/server during next Y months (years). Mandrakesoft: commitment to do (whatever) during the same period. WDYT? Denis -- - Dr. Denis Havlik http://MandrakeForum.com Mandrakesoft ||| e-mail: [EMAIL PROTECTED] Community (@ @)(private: [EMAIL PROTECTED]) --oOO--(_)--OOo- The mailserver is on strike. It wants better working conditions, paid days off and a female connector. ([EMAIL PROTECTED])
RE: R: [Cooker-firewall] cooker-firewall
It's really quite simple... Free version... gets updates like everyone else... NO support. Updates acquired just like in Mandrake 8, via update util. Version for about $100 that gets install support for say 30 days via email? Version for say $250 - 500 (pricing of NetMax for example) that gets install support via email and perhaps 3 tech support incidents during the first year of use? Maybe even a priority ftp access to get updates? There should always be a free version though... it is a linux distro even if it is a custom one. I have many clients that would try it and love it at the free price but would not venture to pay for it if they were required. By the time you have a new version out they could be convinced to pay for the software to help support your efforts. Jason Williams Not sure exactly but this may be one of those things to charge a subscription for. If you want the download version go right ahead but if you want the security updates you still need to buy into the subcription service. Simiar to what Red Hat is doing, although your wording implies that updates are *ONLY* available to those who pay, which I don't like. This is were mandrake comes in. They are basicly charging for access to thier servers and timely updates to any security issues. If the download users don't choose ot pay for this service then maybe the updates can be put in a public download area after say 2 or 3 weeks. Or maybe don't make the updates available at all to non subscribers. The real user's out ther could always get the source and compile there own. Egads, this sounds horrible. Especially for security updates, but also for bug fixes and such. Imagine a really bad exploit is found in something. An updated package is released the next day to subscribers, they all apply it and are fine. The following day (and for the next 2-3 weeks while non-subscribers wait for an update), it spreads like wildfire across the Internet, making use of all the non-updated (non-subscribing) MandrakeFirewall systems. This just gave MandrakeFirewall a *HORRIBLE* reputation as being insecure, because they chose not to provide updates for people that didn't pay them money. Sounds like a good way to kill a productline/reputation/company, if you ask me. I have to admit I like the 2 or 3 week plan the best. Maybe even a month. That way business and security consious useres get imediate access to the updates and the casual users still are able to get the same upadates later on. Seeing as casual useres are not as prone to attack this might be a good comprimise. And just think about this red hat charges everyone for thier updates. Well, this isn't quite accurate. I haven't paid a dime to Red Hat since I bought RH52 a couple years ago, and I am able to mirror their 7.1 update tree without difficulty. They're charging for an automated update service, not the updates themselves. They can't charge for the software, it's (mostly) all GPL'd, remember? =) One last option might also be to have an update cd released every 3 or 4 months maybe sooner for big security issues. Kind of like mandrake freq. Make the cd imediatly available to those that subscribe to the service but the rest of the publick has to wait maybe for a quarterly release. This almost sounds good. I'd like to see those that subscribe get a CD delivered snail-mail to them on a regular basis, and those who don't have to either grab the ISO or not have access to a new CD it at all, leaving them in the normal position of having to apply individual updates by hand. Don Head SAIR LCA, CIW-P, Network+, A+ Systems Administrator [ [EMAIL PROTECTED] ] Web Designer[ 1 314 997-7847 ] [ AIM - Don Wave ] [ ICQ - 18804935 ] [ Yahoo - Don_Wave ]
