Re: My first firewall
On Tue, May 21, 2002 at 11:26:51AM -0400, James wrote:
> > In addition to plain ole iptables masquerade, I'd personally
> > install squid, ntp, and bind. You may as well use squid to
> > get some benefit out of the 8 gig hard drive. "Obviously"
> > you want to dpkg --purge telnetd, etc.
>
> BIND has been statistically one of the largest *nix exploits. I would
> not recommend installing it on a firewall.
Well - if all you want to use it for is dns-cacheing then restrict
it to internal-only access and trust your users.
--
Ciao, Arne.
,``ò. -o)
>( ç@ GPG 1024D/913C2F81 2000-10-11 Arne P. Boettger <apb@createx.de> /\\
',,,' Fingerprint = 6ED9 9A64 CD8A EB6F D841 0391 2F08 8F86 913C 2F81 _\_V
--
To UNSUBSCRIBE, email to debian-firewall-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
Reply to: