I think the gist of what he's saying is that because it's running on a
*nix, anyone can log in and install any software they want on it.
Ultimately this is a gaping security hole from certain perspectives.
I don't mean that the firewall software or the OS contains gaping
security holes. Don't get
I run snort on a net 5501 (500 MHz geode 512 mega ram). I run most of
the standard rules plus a good number of the Emerging Threats rules,
and I can run an inside and outside instance on a full cable pipe (12
mbits down). And net5501 NICs are interrupt hogs. An atom should be
fine. I run