[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: My first firewall

On Tue, May 21, 2002 at 11:26:51AM -0400, James wrote:
> > In addition to plain ole iptables masquerade, I'd personally 
> > install squid, ntp, and bind.  You may as well use squid to 
> > get some benefit out of the 8 gig hard drive.  "Obviously" 
> > you want to dpkg --purge telnetd, etc.
> BIND has been statistically one of the largest *nix exploits.  I would
> not recommend installing it on a firewall.

Well - if all you want to use it for is dns-cacheing then restrict
it to internal-only access and trust your users.

Ciao, Arne.
 ,``ò.                                                                   -o)
>(  ç@ GPG 1024D/913C2F81 2000-10-11 Arne P. Boettger <apb@createx.de>   /\\
 ',,,' Fingerprint = 6ED9 9A64 CD8A EB6F D841  0391 2F08 8F86 913C 2F81 _\_V

To UNSUBSCRIBE, email to debian-firewall-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Reply to: