Re: ReiserFS on a Firewall [was: Building Debian firewall]

To: <debian-firewall@lists.debian.org>
Subject: Re: ReiserFS on a Firewall [was: Building Debian firewall]
From: "Robert Davies" <Rob_Davies@NTLWorld.Com>
Date: Mon, 28 May 2001 14:48:08 +0100
Message-id: <[🔎] 001e01c0e77c$d74bbd80$060569d5@oak>
References: <[🔎] 20010527210133.D16446@wohnheim.fh-wedel.de> <[🔎] GCEGLPFGDCACHENIJHDDGEDACDAA.blacknet@phenixcable.net> <[🔎] 20010528001410.E16446@wohnheim.fh-wedel.de> <[🔎] 15121.37153.701549.13451@gargle.gargle.HOWL> <[🔎] 20010528010628.A22899@erich.xmldesign.de> <[🔎] 005901c0e714$797ef720$897601d5@oak> <[🔎] 20010528124727.H16446@wohnheim.fh-wedel.de>

> I think you should be careful about automatic apt-get anyway,
> because someone might be able to alter the sources.list or the dns
> reolve for your server, and inject manipulated files for this...

This is a very good point, that I wanted to put to the minimalist who argued
for using apt-get.  debs have to be extended with signing, but your security
is only as good as the ftp server you use at present, which is not ideal for
a firewall.

Using automatic apt-get update && apt-get upgrade, would not be wise for a
critical machine.  It's great for home use, but a corporate firewall...
that's real balls to the wall stuff.

Rob

Reply to:

References:
- Re: Building Debian firewall
  - From: "Arne P. Boettger" <apb@wohnheim.fh-wedel.de>
- RE: Building Debian firewall
  - From: "Ed Street" <blacknet@phenixcable.net>
- ReiserFS on a Firewall [was: Building Debian firewall]
  - From: "Arne P. Boettger" <apb@wohnheim.fh-wedel.de>
- Re: ReiserFS on a Firewall [was: Building Debian firewall]
  - From: S.Salman Ahmed <ssahmed@pathcom.com>
- Re: ReiserFS on a Firewall [was: Building Debian firewall]
  - From: erich@erich.xmldesign.de (Erich Schubert)
- Re: ReiserFS on a Firewall [was: Building Debian firewall]
  - From: "Robert Davies" <RaggedRob@Lineone.Net>
- Re: ReiserFS on a Firewall [was: Building Debian firewall]
  - From: "Arne P. Boettger" <apb@wohnheim.fh-wedel.de>

Prev by Date: Re: Building Debian firewall
Next by Date: Re: ReiserFS on a Firewall [was: Building Debian firewall]
Previous by thread: Re: ReiserFS on a Firewall [was: Building Debian firewall]
Next by thread: Re: ReiserFS on a Firewall [was: Building Debian firewall]
Index(es):
- Date
- Thread