[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Linux Firewalls/Routers - 3rd Round
- To: linux-il(at-nospam)linux.org.il
- Subject: Re: Linux Firewalls/Routers - 3rd Round
- From: Eli Marmor <marmor(at-nospam)netmask.it>
- Date: Tue, 30 Oct 2001 15:23:40 +0200
- Delivered-To: linux.org.il-linux-il@linux.org.il
- Organization: Netmask (El-Mar) Internet Technologies
- References: <Pine.GSO.4.33.0110301219411.28033-100000@techunix.technion.ac.il>
- Sender: root(at-nospam)main.aquanet.co.il
- Sender: linux-il-bounce(at-nospam)cs.huji.ac.il
On one hand, I wouldn't say that the threat is minor; There are many
services which use high ports (X, NFS, IRC, XFS, etc.), and it will not
be nice to find one day that a hacker used a buffer overflow or another
hole in one of them to break into your server.
On the other hand, we can't just stop everything because of this fear.
It is a little strange for me to believe that this threat is real,
exploitable, and that nobody has fixed it yet. I believe that one of
the hidden fixes to the recent kernels resolved the problem, and even
if not - it will be fixed soon, and all we will need to do is to
upgrade the kernel.
So back to my original question:
What do you know about the various Linux 2.4 based firewalls/routers?
Do you have any experience with them?
Please read the full question (in the starting message of this thread)
before answering.
--
Eli Marmor
marmor@netmask.it
CTO, Founder
Netmask (El-Mar) Internet Technologies Ltd.
__________________________________________________________
Tel.: +972-9-766-1020 8 Yad-Harutzim St.
Fax.: +972-9-766-1314 P.O.B. 7004
Mobile: +972-50-23-7338 Kfar-Saba 44641, Israel
=================================================================
To unsubscribe, send mail to linux-il-request@linux.org.il with
the word "unsubscribe" in the message body, e.g., run the command
echo unsubscribe | mail linux-il-request@linux.org.il