Re: not using debian as firewall!

To: Hamish Moffatt <hamish@debian.org>
Cc: David Bristel <targon@targonia.com>, Matt Kern <Matt.Kern@pobox.com>, Debian Devel <debian-devel@lists.debian.org>
Subject: Re: not using debian as firewall!
From: Sven Rudolph <sr1@loom.sax.de>
Date: 13 Apr 1999 19:59:50 +0200
Message-id: <[🔎] 87iub0pfjd.fsf@loom.sax.de>
In-reply-to: Hamish Moffatt's message of "Tue, 13 Apr 1999 19:40:40 +1000"
References: <[🔎] Pine.LNX.3.96.990413024438.7176B-100000@xanadu.pet.cam.ac.uk> <[🔎] Pine.LNX.3.96.990412202900.5212B-100000@gateway.targonia.com> <[🔎] 19990413194040.A7365@rising.com.au>

Hamish Moffatt <hamish@debian.org> writes:

> On Mon, Apr 12, 1999 at 08:31:34PM -0700, David Bristel wrote:
> > Well, the problem with using ANY UNIX type system for a firewall is that it
> > allows for remote logins.  Now, a truely secure firewall won't allow for remote
> > logins, which means to disable most features on a system(telnet, ftp, etc...).
> 
> Err -- any reason you can't disable these services on Debian too?
> Not running inetd would kill most of them.

OTOH you aren't forced to disable the daemons. It might be sufficient
to shut down the relevant ports via IP packet filter ;-)

	Sven
-- 
Sven Rudolph <sr1@sax.de>		http://www.sax.de/~sr1/

Reply to:

Follow-Ups:
- Re: not using debian as firewall!
  - From: Daniel Martin <Daniel.Martin@jhu.edu>

References:
- Re: not using debian as firewall!
  - From: Matt Kern <mwk20@cam.ac.uk>
- Re: not using debian as firewall!
  - From: David Bristel <targon@targonia.com>
- Re: not using debian as firewall!
  - From: Hamish Moffatt <hamish@debian.org>

Prev by Date: Re: Intent to adopt: info
Next by Date: RFC: Will officially switch from kbd to console-tools
Previous by thread: Re: not using debian as firewall! (now off topic, to an extent)
Next by thread: Re: not using debian as firewall!
Index(es):
- Date
- Thread