[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: A better Linux based firewall installation?



Omer Zak <omerz@actcom.co.il> wrote:
> 
> The advantage is that even if the root is compromised, the cracker's
> ability to inflict actual damage will be limited.
 
I may be missing something here, but once an attacker have root access
to your firewall, what prevents her from modifying routing tables and even
more, changing the security policy to allow her access from any machine.
This does not require any disk space you know ...

Guy


Omer: sorry for the double post i mistakly sent to you any not the list.

=================================================================
To unsubscribe, send mail to linux-il-request@linux.org.il with
the word "unsubscribe" in the message body, e.g., run the command
echo unsubscribe | mail linux-il-request@linux.org.il